Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/TmlCRrQH_ZLGsowWn2MGN-22W-I.roa
File: TmlCRrQH_ZLGsowWn2MGN-22W-I.roa (raw, json)
Hash identifier: m23nLpaBhjVbcVxvuPO9op3J4BF8efTuEcRjn7Rpb+E=
Subject key identifier: 4E:69:42:46:B4:07:FD:92:C6:B2:8C:16:9F:63:06:37:ED:B6:5B:E2
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0D31
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/TmlCRrQH_ZLGsowWn2MGN-22W-I.roa
Signing time: Mon 10 Feb 2025 13:51:19 +0000
ROA not before: Mon 10 Feb 2025 13:51:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 61.67.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3377 (0xd31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Feb 10 13:51:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4E694246B407FD92C6B28C169F630637EDB65BE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3d:2c:e4:ce:c6:33:4a:25:87:7c:92:87:8d:
30:a7:ea:3c:90:2e:8a:af:2e:1a:ff:49:24:8b:5e:
33:a1:b4:b7:40:e8:a8:8b:cb:f8:4a:3b:d0:ae:69:
49:d3:41:b4:9c:08:be:89:04:7d:de:9b:23:70:b9:
88:db:61:eb:7f:e0:1d:05:b3:b6:04:7b:c7:de:33:
b8:5e:cb:af:3d:9a:2a:72:48:b5:ba:aa:89:5f:8b:
64:69:e4:6d:97:5a:f5:93:9f:a1:84:f4:59:a0:3d:
4e:4c:e1:98:c5:7a:18:13:17:7b:d4:0f:38:32:22:
5d:da:3f:81:e9:2f:95:9e:10:dd:d8:5c:7d:98:10:
b5:d9:13:1b:64:55:4c:58:d2:22:f0:3b:9a:6e:ef:
3a:1d:2a:dd:a5:a1:1a:82:c3:ad:90:b4:b9:ed:87:
4f:d7:8a:fe:19:e1:56:51:a9:0e:40:7b:5f:5f:92:
0e:46:36:29:b0:d4:16:11:23:9a:ce:65:70:e6:29:
18:48:cc:52:15:e2:f1:15:ff:87:cf:5c:85:22:50:
f5:c6:c3:a9:7d:27:41:90:da:db:19:b6:08:a5:e4:
ba:2f:91:89:e4:ba:e7:c0:4d:fa:0c:28:5d:0a:24:
f6:9a:1c:06:7f:13:ba:cd:d6:23:17:25:14:60:93:
83:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:69:42:46:B4:07:FD:92:C6:B2:8C:16:9F:63:06:37:ED:B6:5B:E2
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/TmlCRrQH_ZLGsowWn2MGN-22W-I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.207.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e6:ab:6b:3c:c6:89:fd:db:1d:17:7b:0d:f3:12:a1:e5:ad:
cc:f6:c3:96:07:62:48:dd:03:75:1c:cd:68:f0:d6:26:fd:78:
5f:49:dd:36:0f:90:63:63:00:9f:ef:70:9c:4b:af:29:69:1b:
a3:61:28:01:b1:d2:07:2e:ff:73:9b:12:56:ff:55:05:35:fa:
65:0a:6b:37:54:59:9d:2d:6b:7b:ed:4c:d2:ca:62:e9:11:fa:
0e:64:c7:a2:4a:e3:76:a8:02:2d:6f:7a:2e:02:10:ff:51:e3:
48:ad:71:9e:38:0a:5e:9f:e5:df:10:70:1a:9d:5a:f9:e7:0a:
44:54:02:4d:cf:c4:c9:b0:7d:98:38:72:e3:a2:ea:85:22:b6:
f5:63:8a:15:e2:e7:24:1f:97:37:0d:dd:9f:47:41:a8:db:ff:
51:b7:0b:f5:01:ff:94:a9:d2:b8:98:e1:3e:81:9f:d2:a1:23:
d0:f7:f2:7c:a3:cb:9d:14:8d:de:36:9d:65:35:4d:5b:f9:8f:
25:a0:5c:6e:b0:6e:fb:52:4a:ce:66:ca:bb:46:22:8a:e2:d6:
f8:67:0f:45:34:c2:37:5d:69:55:04:eb:3d:3b:ad:ad:9f:1e:
d1:ff:27:95:72:05:8e:ef:0e:2f:bf:ec:eb:28:54:86:d4:cf:
68:73:13:8e
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDTEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC
RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNTAyMTAx
MzUxMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRFNjk0MjQ2QjQwN0ZE
OTJDNkIyOEMxNjlGNjMwNjM3RURCNjVCRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCPSzkzsYzSiWHfJKHjTCn6jyQLoqvLhr/SSSLXjOhtLdA6KiL
y/hKO9CuaUnTQbScCL6JBH3emyNwuYjbYet/4B0Fs7YEe8feM7hey689mipySLW6
qolfi2Rp5G2XWvWTn6GE9FmgPU5M4ZjFehgTF3vUDzgyIl3aP4HpL5WeEN3YXH2Y
ELXZExtkVUxY0iLwO5pu7zodKt2loRqCw62QtLnth0/Xiv4Z4VZRqQ5Ae19fkg5G
Nimw1BYRI5rOZXDmKRhIzFIV4vEV/4fPXIUiUPXGw6l9J0GQ2tsZtgil5LovkYnk
uufATfoMKF0KJPaaHAZ/E7rN1iMXJRRgk4PNAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUTmlCRrQH/ZLGsowWn2MGN+22W+IwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe
JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi
N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL1RtbENSclFIX1pMR3Nvd1duMk1HTi0y
MlctSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9Q88wDQYJ
KoZIhvcNAQELBQADggEBAE7mq2s8xon92x0Xew3zEqHlrcz2w5YHYkjdA3UczWjw
1ib9eF9J3TYPkGNjAJ/vcJxLrylpG6NhKAGx0gcu/3ObElb/VQU1+mUKazdUWZ0t
a3vtTNLKYukR+g5kx6JK43aoAi1vei4CEP9R40itcZ44Cl6f5d8QcBqdWvnnCkRU
Ak3PxMmwfZg4cuOi6oUitvVjihXi5yQflzcN3Z9HQajb/1G3C/UB/5Sp0riY4T6B
n9KhI9D38nyjy50Ujd42nWU1TVv5jyWgXG6wbvtSSs5myrtGIori1vhnD0U0wjdd
aVUE6z07ra2fHtH/J5VyBY7vDi+/7OsoVIbUz2hzE44=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:30:53 2025 by rpki-client