Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/WxKlVCvXOBtmlKpNjt0G74gjopw.roa
File: WxKlVCvXOBtmlKpNjt0G74gjopw.roa (raw, json)
Hash identifier: yl8QOxSD/dAWjHM6giS0BdkuBIQsADCTT7YfUdUz4J0=
Subject key identifier: 5B:12:A5:54:2B:D7:38:1B:66:94:AA:4D:8E:DD:06:EF:88:23:A2:9C
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0CFB
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/WxKlVCvXOBtmlKpNjt0G74gjopw.roa
Signing time: Mon 10 Feb 2025 14:32:37 +0000
ROA not before: Mon 10 Feb 2025 14:32:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7539
IP address blocks: 203.145.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3323 (0xcfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Feb 10 14:32:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5B12A5542BD7381B6694AA4D8EDD06EF8823A29C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:22:1f:84:17:50:27:96:1a:91:fc:de:01:c3:
f8:61:60:b4:d7:85:66:f4:aa:b0:e2:f3:39:78:9b:
7f:24:a7:1f:21:06:38:bd:4b:ed:9f:d6:d2:21:44:
87:d3:fb:0b:0f:d5:e4:75:00:e6:cb:df:2b:bb:92:
9c:2f:02:4e:a7:d5:d4:b3:80:ae:0a:c0:c9:01:d8:
0c:23:1d:c9:12:18:0f:d2:3a:03:34:f6:0a:24:9f:
2d:4a:72:81:7b:24:c9:5e:e6:32:cc:3b:0c:8a:17:
c5:12:70:73:b1:8d:e7:0e:69:19:0c:f2:81:a3:24:
be:dd:a4:9f:d6:2a:8d:46:c2:23:6e:7a:a7:5d:89:
5e:57:f7:86:6e:37:fd:f5:19:b1:9c:69:b5:1e:e0:
8e:e0:e9:8f:ef:c0:fa:5f:8a:d5:5c:a3:9a:9d:36:
5c:b2:3c:e3:65:9d:98:24:15:54:9d:fd:b7:16:83:
26:07:09:9b:c8:32:a7:7e:0d:4e:30:3c:20:a8:b4:
f6:50:8e:b0:d2:41:77:bf:6d:34:0b:09:86:6f:b0:
98:1f:be:0e:69:71:81:55:bd:07:82:b6:e4:0a:a1:
3e:48:ad:90:89:d9:9c:1e:23:7c:d6:51:60:8e:bb:
aa:85:6c:6e:39:ab:e9:8d:e4:2a:31:10:ef:bb:79:
5e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:12:A5:54:2B:D7:38:1B:66:94:AA:4D:8E:DD:06:EF:88:23:A2:9C
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/WxKlVCvXOBtmlKpNjt0G74gjopw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.208.0/20
Signature Algorithm: sha256WithRSAEncryption
83:38:15:a1:df:18:bc:61:2b:28:54:43:90:0a:e0:55:0f:31:
7f:05:c6:05:60:60:db:13:1d:15:72:c3:0d:21:d7:30:58:99:
65:dc:a8:e5:5d:8f:03:c9:79:68:d2:98:a5:06:1b:8b:c5:5c:
83:e7:b8:a7:a9:f8:cf:d3:23:4a:fe:a4:5e:88:55:ad:28:01:
ba:94:af:b6:c1:27:fd:33:e0:78:ba:99:4b:eb:26:11:4a:e4:
e3:af:5d:ca:c2:59:54:38:34:43:c6:25:54:ca:2d:b9:01:83:
ca:8d:93:1e:bf:3d:06:5d:48:89:6a:9a:a7:fe:36:1e:49:b7:
ae:ec:86:c0:9f:fe:98:ce:33:24:6a:d0:1d:52:76:7b:06:a2:
dd:69:9b:6d:01:50:d4:8b:57:87:7e:9d:c1:0e:b6:eb:ea:db:
df:dd:52:32:b8:db:d2:81:41:6c:d6:1c:b2:94:d7:08:cd:ad:
bb:f6:95:57:91:97:28:63:48:de:06:8f:89:72:c4:f5:10:47:
26:1c:aa:50:ad:58:a8:99:bc:f0:c8:fe:bc:b3:2a:f3:cf:7d:
f6:b9:b6:bb:b3:3d:4a:f3:f6:65:e7:8b:d1:94:30:b9:23:6b:
43:42:ec:83:81:d4:8b:fd:b6:2d:a6:f8:2f:b5:12:cd:0c:04:
fc:4f:96:1d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx
RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yNTAyMTAx
NDMyMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVCMTJBNTU0MkJENzM4
MUI2Njk0QUE0RDhFREQwNkVGODgyM0EyOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDxIh+EF1AnlhqR/N4Bw/hhYLTXhWb0qrDi8zl4m38kpx8hBji9
S+2f1tIhRIfT+wsP1eR1AObL3yu7kpwvAk6n1dSzgK4KwMkB2AwjHckSGA/SOgM0
9gokny1KcoF7JMle5jLMOwyKF8UScHOxjecOaRkM8oGjJL7dpJ/WKo1GwiNueqdd
iV5X94ZuN/31GbGcabUe4I7g6Y/vwPpfitVco5qdNlyyPONlnZgkFVSd/bcWgyYH
CZvIMqd+DU4wPCCotPZQjrDSQXe/bTQLCYZvsJgfvg5pcYFVvQeCtuQKoT5IrZCJ
2ZweI3zWUWCOu6qFbG45q+mN5CoxEO+7eV5hAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUWxKlVCvXOBtmlKpNjt0G74gjopwwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p
AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S
Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvV3hLbFZDdlhPQnRtbEtwTmp0MEc3
NGdqb3B3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMuR0DAN
BgkqhkiG9w0BAQsFAAOCAQEAgzgVod8YvGErKFRDkArgVQ8xfwXGBWBg2xMdFXLD
DSHXMFiZZdyo5V2PA8l5aNKYpQYbi8Vcg+e4p6n4z9MjSv6kXohVrSgBupSvtsEn
/TPgeLqZS+smEUrk469dysJZVDg0Q8YlVMotuQGDyo2THr89Bl1IiWqap/42Hkm3
ruyGwJ/+mM4zJGrQHVJ2ewai3WmbbQFQ1ItXh36dwQ626+rb391SMrjb0oFBbNYc
spTXCM2tu/aVV5GXKGNI3gaPiXLE9RBHJhyqUK1YqJm88Mj+vLMq88999rm2u7M9
SvP2ZeeL0ZQwuSNrQ0Lsg4HUi/22Lab4L7USzQwE/E+WHQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 09:22:36 2025 by rpki-client