Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/p-Ascxf_LjO5wQcuUv-fK4V63JQ.roa
File: p-Ascxf_LjO5wQcuUv-fK4V63JQ.roa (raw, json)
Hash identifier: /TmqB/LGA6B/nBoczSsKnPAn+3ZLE6jnRrcVRIfxEl8=
Subject key identifier: A7:E0:2C:73:17:FF:2E:33:B9:C1:07:2E:52:FF:9F:2B:85:7A:DC:94
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0D2F
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/p-Ascxf_LjO5wQcuUv-fK4V63JQ.roa
Signing time: Mon 10 Feb 2025 13:51:19 +0000
ROA not before: Mon 10 Feb 2025 13:51:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 61.63.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3375 (0xd2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Feb 10 13:51:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A7E02C7317FF2E33B9C1072E52FF9F2B857ADC94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:01:3c:24:4a:f1:33:6d:b1:52:04:68:8a:06:
01:9c:63:93:a0:15:26:36:92:e8:1a:9c:ac:ad:31:
87:98:45:18:86:99:c1:8b:19:14:8c:ea:5b:73:59:
c1:c5:2d:27:5f:22:d9:3b:76:03:e3:55:c6:fb:dc:
75:2f:e5:ea:c1:37:a2:9f:1b:34:8f:14:e8:a8:5f:
43:2c:ea:73:1c:df:ae:4c:85:94:fd:bf:cc:53:57:
77:10:27:5b:ab:34:e7:b5:43:82:f7:ba:d8:13:35:
9d:fa:a5:c3:7f:eb:ba:df:b7:3f:2e:6f:33:39:a4:
81:fc:af:4b:1c:3b:3b:ed:ad:c1:09:cc:fd:f4:f5:
a9:49:83:0d:3b:0c:1e:82:5a:47:11:52:e3:ed:56:
34:41:41:98:fe:d7:a9:e6:e8:7f:6b:dc:ee:de:6d:
d4:c0:a9:7e:9b:39:9d:55:a4:5a:bf:2c:6c:64:f0:
66:e9:fa:ba:e2:f6:1b:b3:93:5b:0f:f9:5f:d5:22:
35:28:f6:8a:87:a7:3a:bb:11:56:da:b7:37:cc:4d:
95:bb:30:36:5c:79:aa:51:9b:e2:7b:d0:18:96:b0:
a7:a4:7b:09:a0:31:78:19:eb:0e:7d:58:d3:3d:73:
ad:e5:a8:0c:7c:2c:ab:63:dd:8b:78:d3:ed:a5:15:
f5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E0:2C:73:17:FF:2E:33:B9:C1:07:2E:52:FF:9F:2B:85:7A:DC:94
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/p-Ascxf_LjO5wQcuUv-fK4V63JQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.32.0/19
Signature Algorithm: sha256WithRSAEncryption
5d:1d:4f:88:87:79:5c:d8:43:52:5f:71:1e:47:f6:c5:12:c2:
77:bf:f2:67:53:62:fc:36:2f:52:50:7d:6f:9f:45:95:b4:ea:
96:d2:fc:79:24:5f:93:2f:0e:28:cc:8b:f3:19:47:2d:44:31:
f0:5d:16:be:eb:be:81:a7:a0:3f:96:c0:c6:51:bb:79:8d:2d:
b1:84:6e:a5:0e:4d:bd:02:39:da:56:8a:33:2b:20:fe:2e:c9:
f1:f4:d9:31:81:0b:f3:cc:97:c4:8a:36:37:54:c2:37:1e:af:
10:c8:25:37:01:4e:4a:f2:78:b4:93:73:eb:79:a7:ff:82:b7:
d6:a8:2e:94:87:ab:12:cd:b2:52:ad:0a:5f:87:4c:0c:38:99:
2c:82:2c:84:f6:42:41:e8:99:5d:9a:38:28:38:c0:f0:f9:2d:
f8:ab:bd:31:d5:32:eb:0b:6d:54:84:26:70:af:e6:bf:75:4f:
40:73:41:5e:fc:da:66:a9:e6:dd:a7:4f:b3:a2:cf:2b:b4:da:
fb:ff:cb:aa:26:d5:fe:ac:c7:b8:d2:7a:4c:33:30:db:26:71:
82:02:7c:08:71:eb:a3:ca:e2:b4:fc:64:39:bc:71:c6:8f:20:
01:8c:57:9f:08:5f:5c:a2:a9:e2:75:c8:65:89:cf:6c:23:62:
65:d6:5c:3f
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC
RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNTAyMTAx
MzUxMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3RTAyQzczMTdGRjJF
MzNCOUMxMDcyRTUyRkY5RjJCODU3QURDOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOATwkSvEzbbFSBGiKBgGcY5OgFSY2kuganKytMYeYRRiGmcGL
GRSM6ltzWcHFLSdfItk7dgPjVcb73HUv5erBN6KfGzSPFOioX0Ms6nMc365MhZT9
v8xTV3cQJ1urNOe1Q4L3utgTNZ36pcN/67rftz8ubzM5pIH8r0scOzvtrcEJzP30
9alJgw07DB6CWkcRUuPtVjRBQZj+16nm6H9r3O7ebdTAqX6bOZ1VpFq/LGxk8Gbp
+rri9huzk1sP+V/VIjUo9oqHpzq7EVbatzfMTZW7MDZceapRm+J70BiWsKekewmg
MXgZ6w59WNM9c63lqAx8LKtj3Yt40+2lFfXnAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUp+Ascxf/LjO5wQcuUv+fK4V63JQwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe
JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi
N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL3AtQXNjeGZfTGpPNXdRY3VVdi1mSzRW
NjNKUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9PyAwDQYJ
KoZIhvcNAQELBQADggEBAF0dT4iHeVzYQ1JfcR5H9sUSwne/8mdTYvw2L1JQfW+f
RZW06pbS/HkkX5MvDijMi/MZRy1EMfBdFr7rvoGnoD+WwMZRu3mNLbGEbqUOTb0C
OdpWijMrIP4uyfH02TGBC/PMl8SKNjdUwjcerxDIJTcBTkryeLSTc+t5p/+Ct9ao
LpSHqxLNslKtCl+HTAw4mSyCLIT2QkHomV2aOCg4wPD5LfirvTHVMusLbVSEJnCv
5r91T0BzQV782map5t2nT7Oizyu02vv/y6om1f6sx7jSekwzMNsmcYICfAhx66PK
4rT8ZDm8ccaPIAGMV58IX1yiqeJ1yGWJz2wjYmXWXD8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:04 2025 by rpki-client