Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKPC/r4wp8qvMKuyMx1GE-y0mmLXvnMg.roa
File: r4wp8qvMKuyMx1GE-y0mmLXvnMg.roa (raw, json)
Hash identifier: 3Nre5P5ctG3YLsRXu+QTi1rGCPAeEwaxsmP1u9YfhsE=
Subject key identifier: AF:8C:29:F2:AB:CC:2A:EC:8C:C7:51:84:FB:2D:26:98:B5:EF:9C:C8
Certificate issuer: /CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Certificate serial: 0E1F
Authority key identifier: CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/r4wp8qvMKuyMx1GE-y0mmLXvnMg.roa
Signing time: Mon 10 Feb 2025 14:29:58 +0000
ROA not before: Mon 10 Feb 2025 14:29:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131645
IP address blocks: 2405:14c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3615 (0xe1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Validity
Not Before: Feb 10 14:29:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AF8C29F2ABCC2AEC8CC75184FB2D2698B5EF9CC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1c:46:b7:d8:81:80:74:6e:a6:0b:2f:56:dd:
ad:0a:bb:a0:0c:2f:4f:16:cd:8f:cb:22:66:c0:36:
a2:db:a1:34:aa:33:a8:f0:28:02:e6:b7:f0:59:fb:
e8:55:e3:b5:ee:00:f7:ae:80:20:5e:e3:d9:bb:d4:
43:e1:b7:d0:d6:91:4c:95:24:8d:c5:4e:b7:4b:e8:
74:7f:11:67:5d:70:ea:14:cd:e7:39:8a:e8:39:15:
97:47:ce:07:14:e5:2d:68:f3:44:18:e4:61:86:a0:
d7:da:f3:6e:97:da:06:47:96:f4:32:38:d5:1e:57:
63:2a:d5:12:5d:55:d3:5a:71:11:db:70:39:7c:3d:
b2:cd:34:47:00:8f:7c:df:99:6e:7c:23:82:ba:24:
58:4a:45:e6:52:40:14:1d:cc:85:71:90:56:d3:d7:
4b:60:68:ff:c1:53:b2:9f:38:f1:0c:7d:e1:bf:5b:
00:f1:ca:c9:8b:d0:aa:04:8a:b0:ca:82:97:35:e7:
b6:d4:02:96:81:4b:07:0b:4e:5b:83:e4:68:9e:c5:
c3:9d:c4:2a:28:0b:4f:3a:52:c6:be:15:a2:30:bf:
fc:7c:8e:6a:75:16:13:21:95:93:9a:f0:af:e2:88:
58:df:d7:4c:d0:21:b1:25:8d:2d:12:ee:91:cb:d0:
cf:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:8C:29:F2:AB:CC:2A:EC:8C:C7:51:84:FB:2D:26:98:B5:EF:9C:C8
X509v3 Authority Key Identifier:
keyid:CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/r4wp8qvMKuyMx1GE-y0mmLXvnMg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:14c0::/32
Signature Algorithm: sha256WithRSAEncryption
72:1a:67:d1:b5:8e:e7:b7:0b:be:48:64:81:39:67:70:01:6f:
5e:04:f6:c4:28:0a:42:36:6e:5b:3f:c1:18:eb:39:e7:70:2d:
8c:51:51:3b:ee:53:77:db:4b:79:59:aa:c1:ed:ab:aa:70:c0:
ba:27:40:8b:2a:fc:f4:ea:cd:52:a9:d2:4d:a9:cc:31:98:5c:
b1:bc:ac:a0:bd:2f:cf:27:93:c0:73:36:e4:25:8f:fa:53:3c:
33:8d:39:d3:28:3d:f6:5d:a9:8e:10:09:c4:44:85:f4:49:09:
bf:5e:0e:d3:0f:51:59:ad:35:02:04:fd:ad:35:c0:90:0b:04:
cd:bc:cd:33:9e:5b:59:19:7b:77:9b:b4:9e:68:3f:3c:61:14:
a7:f2:48:27:73:4e:f6:62:1a:0d:04:37:45:df:a9:3c:44:89:
5a:fd:71:4e:69:21:29:e6:90:60:33:c8:b5:54:1d:23:c2:a3:
ce:31:63:f2:00:08:fa:da:41:32:4c:59:b3:d5:6c:0d:aa:fb:
bb:0a:5b:9f:36:f6:55:1e:ae:96:50:6c:38:13:88:c2:34:3a:
cd:db:3d:5a:9a:a8:97:13:2d:9a:96:f1:b0:6a:cf:8c:81:cb:
cb:05:ab:97:00:da:41:c9:da:4c:81:3c:32:3b:58:d1:03:a6:
2e:33:cb:8a
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Uz
N0Q3Qzk5MTg1QTNEOUFDNjExNzE4REE3ODU1OUI2RTk5QTMxQjAeFw0yNTAyMTAx
NDI5NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGOEMyOUYyQUJDQzJB
RUM4Q0M3NTE4NEZCMkQyNjk4QjVFRjlDQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCWHEa32IGAdG6mCy9W3a0Ku6AML08WzY/LImbANqLboTSqM6jw
KALmt/BZ++hV47XuAPeugCBe49m71EPht9DWkUyVJI3FTrdL6HR/EWddcOoUzec5
iug5FZdHzgcU5S1o80QY5GGGoNfa826X2gZHlvQyONUeV2Mq1RJdVdNacRHbcDl8
PbLNNEcAj3zfmW58I4K6JFhKReZSQBQdzIVxkFbT10tgaP/BU7KfOPEMfeG/WwDx
ysmL0KoEirDKgpc157bUApaBSwcLTluD5GiexcOdxCooC086Usa+FaIwv/x8jmp1
FhMhlZOa8K/iiFjf10zQIbEljS0S7pHL0M/VAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUr4wp8qvMKuyMx1GE+y0mmLXvnMgwHwYDVR0jBBgwFoAUzjfXyZGFo9msYRcY
2nhVm26ZoxswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tQQy96
amZYeVpHRm85bXNZUmNZMm5oVm0yNlpveHMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3pqZlh5WkdGbzltc1lSY1kybmhWbTI2Wm94cy5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0tLUEMvcjR3cDhxdk1LdXlNeDFHRS15MG1t
TFh2bk1nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFFMAw
DQYJKoZIhvcNAQELBQADggEBAHIaZ9G1jue3C75IZIE5Z3ABb14E9sQoCkI2bls/
wRjrOedwLYxRUTvuU3fbS3lZqsHtq6pwwLonQIsq/PTqzVKp0k2pzDGYXLG8rKC9
L88nk8BzNuQlj/pTPDONOdMoPfZdqY4QCcREhfRJCb9eDtMPUVmtNQIE/a01wJAL
BM28zTOeW1kZe3ebtJ5oPzxhFKfySCdzTvZiGg0EN0XfqTxEiVr9cU5pISnmkGAz
yLVUHSPCo84xY/IACPraQTJMWbPVbA2q+7sKW5829lUerpZQbDgTiMI0Os3bPVqa
qJcTLZqW8bBqz4yBy8sFq5cA2kHJ2kyBPDI7WNEDpi4zy4o=
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:01:36 2025 by rpki-client