Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9YZtYAA4aD9EY5hAMD144JxuSfQ.roa
File: 9YZtYAA4aD9EY5hAMD144JxuSfQ.roa (raw, json)
Hash identifier: 8rwC/Vxqu4jw/8UgfgvPgOsWn72XmjpIzlh16rcjgKE=
Subject key identifier: F5:86:6D:60:00:38:68:3F:44:63:98:40:30:3D:78:E0:9C:6E:49:F4
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0D69
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9YZtYAA4aD9EY5hAMD144JxuSfQ.roa
Signing time: Mon 10 Feb 2025 13:51:07 +0000
ROA not before: Mon 10 Feb 2025 13:51:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 101.0.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3433 (0xd69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 10 13:51:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F5866D600038683F44639840303D78E09C6E49F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c8:97:a8:d7:a7:79:69:67:d6:79:9d:a1:68:
60:02:65:d8:57:a5:2a:2d:48:76:bf:03:31:ef:72:
fc:aa:81:99:a2:40:77:a2:ba:32:23:65:5b:70:c5:
20:fa:78:07:71:e9:e2:64:52:6e:dc:34:de:91:7e:
34:6c:ae:dc:1e:23:5a:54:dc:30:15:8b:c7:36:54:
79:f1:94:9f:28:7b:30:b0:f2:b5:a6:de:16:18:09:
d7:cf:6a:69:39:8d:b5:c6:d9:d3:c2:3e:92:a3:17:
d2:2c:da:61:97:d5:0e:41:7d:b4:e5:0e:a4:17:59:
80:01:ee:df:7a:61:d5:32:66:6e:41:3c:37:01:3e:
34:98:30:29:23:3d:9a:78:be:54:18:3b:8b:6d:1a:
17:6e:7c:45:6e:4a:77:99:87:9e:0a:22:95:93:8a:
76:11:64:51:f9:6a:b5:31:cc:81:eb:fe:36:ac:83:
55:e1:58:1a:a7:41:e9:81:44:10:36:e1:4a:f4:5e:
dc:f6:22:63:3d:fc:a1:44:3f:81:23:b2:b3:7e:e5:
f6:b2:8f:45:4b:6f:6f:26:f7:06:d3:77:6a:d9:59:
24:14:9c:57:b6:a7:69:04:62:e6:43:af:58:08:f2:
b3:d0:18:29:f7:2b:f8:e7:db:a5:3d:59:85:7b:56:
d8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:86:6D:60:00:38:68:3F:44:63:98:40:30:3D:78:E0:9C:6E:49:F4
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9YZtYAA4aD9EY5hAMD144JxuSfQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.128.0/18
Signature Algorithm: sha256WithRSAEncryption
4a:19:62:e6:9e:0d:a1:0c:c0:a6:46:77:47:f2:ee:38:73:c5:
3d:17:e9:00:ee:68:0b:0c:87:bd:e8:7e:e3:57:bd:61:93:f9:
4d:0d:c6:aa:d3:29:e6:18:3d:cc:93:86:6b:61:be:44:10:cc:
dd:58:a4:ff:1e:be:d5:f0:ea:9f:20:76:f4:ee:5f:10:17:9a:
48:8b:64:ba:7a:b0:3b:b9:9b:76:f5:39:57:ab:4e:4c:3f:c2:
eb:1e:4a:c6:e6:20:21:62:b4:91:c0:68:7d:46:d9:73:05:a5:
d1:3d:4c:44:2a:f6:8f:14:2b:eb:b6:18:47:04:8e:b1:4d:e9:
0f:64:51:ee:05:68:98:6b:2b:34:50:bd:77:aa:7f:dc:62:d8:
7b:19:ed:48:45:3c:c9:d0:e4:73:bc:60:81:4e:ed:f4:af:b8:
c0:a4:a0:26:56:68:c5:5f:6f:6f:b1:32:1c:c9:f3:24:51:37:
b0:74:de:60:ae:05:ef:52:87:80:2d:63:27:f4:56:f0:d5:5f:
05:cc:c1:00:3d:2d:fe:9c:af:13:d4:f7:2a:94:ee:7b:61:68:
28:56:20:bc:7d:e1:e4:c7:60:19:79:6c:82:cc:0f:ee:93:2a:
98:af:7a:9a:bd:e8:1f:68:31:44:ce:d3:39:99:d7:bf:76:a9:
c1:f0:28:36
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTAyMTAx
MzUxMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY1ODY2RDYwMDAzODY4
M0Y0NDYzOTg0MDMwM0Q3OEUwOUM2RTQ5RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDByJeo16d5aWfWeZ2haGACZdhXpSotSHa/AzHvcvyqgZmiQHei
ujIjZVtwxSD6eAdx6eJkUm7cNN6RfjRsrtweI1pU3DAVi8c2VHnxlJ8oezCw8rWm
3hYYCdfPamk5jbXG2dPCPpKjF9Is2mGX1Q5BfbTlDqQXWYAB7t96YdUyZm5BPDcB
PjSYMCkjPZp4vlQYO4ttGhdufEVuSneZh54KIpWTinYRZFH5arUxzIHr/jasg1Xh
WBqnQemBRBA24Ur0Xtz2ImM9/KFEP4EjsrN+5fayj0VLb28m9wbTd2rZWSQUnFe2
p2kEYuZDr1gI8rPQGCn3K/jn26U9WYV7VtivAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU9YZtYAA4aD9EY5hAMD144JxuSfQwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vOVladFlBQTRhRDlFWTVo
QU1EMTQ0Snh1U2ZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BmUAgDANBgkqhkiG9w0BAQsFAAOCAQEAShli5p4NoQzApkZ3R/LuOHPFPRfpAO5o
CwyHveh+41e9YZP5TQ3GqtMp5hg9zJOGa2G+RBDM3Vik/x6+1fDqnyB29O5fEBea
SItkunqwO7mbdvU5V6tOTD/C6x5KxuYgIWK0kcBofUbZcwWl0T1MRCr2jxQr67YY
RwSOsU3pD2RR7gVomGsrNFC9d6p/3GLYexntSEU8ydDkc7xggU7t9K+4wKSgJlZo
xV9vb7EyHMnzJFE3sHTeYK4F71KHgC1jJ/RW8NVfBczBAD0t/pyvE9T3KpTue2Fo
KFYgvH3h5MdgGXlsgswP7pMqmK96mr3oH2gxRM7TOZnXv3apwfAoNg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 13:17:18 2025 by rpki-client