Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/5P8Iu6qzJrhSwHbjLxz10nouHIU.roa
File: 5P8Iu6qzJrhSwHbjLxz10nouHIU.roa (raw, json)
Hash identifier: 2dfrqoOnOnCT2TIwoNpFKqeUidXHK9N7jnYiTE80oNg=
Subject key identifier: E4:FF:08:BB:AA:B3:26:B8:52:C0:76:E3:2F:1C:F5:D2:7A:2E:1C:85
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0D6C
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/5P8Iu6qzJrhSwHbjLxz10nouHIU.roa
Signing time: Mon 10 Feb 2025 14:13:19 +0000
ROA not before: Mon 10 Feb 2025 14:13:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 123.240.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3436 (0xd6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 10 14:13:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E4FF08BBAAB326B852C076E32F1CF5D27A2E1C85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cb:98:1d:89:d6:da:15:ce:78:02:a3:b7:e3:
50:5d:c2:31:a7:59:45:9c:ba:7c:23:6a:05:a6:3e:
e4:85:72:e0:ce:1d:5c:f6:5a:cd:26:68:87:b3:e3:
f4:5a:42:5e:47:b1:1b:28:db:2a:0a:fe:b8:26:fb:
cf:55:3e:75:82:bc:af:a5:dc:79:2c:c2:f1:92:1d:
48:19:db:e9:bd:a7:84:56:54:34:c0:3e:4d:9b:c1:
34:51:75:7a:04:cb:b2:a8:7d:51:47:24:fb:e3:2d:
7f:19:d5:2a:08:11:89:a5:80:56:69:52:50:b9:05:
ad:6f:cb:5f:81:3e:07:67:a1:bc:36:64:ac:1b:bd:
0e:19:fb:1c:e5:b8:83:72:60:5e:5a:6d:7b:e4:35:
02:f8:35:20:1f:5b:f6:a8:58:6b:ce:6a:49:ed:a8:
5e:d8:f0:95:04:23:d1:28:6c:b4:c4:a0:38:cb:22:
b8:16:81:af:b4:c9:dd:b0:ce:da:fd:f1:e1:ea:ac:
30:22:87:9f:94:63:19:02:99:68:50:9a:85:d9:6c:
79:8f:d7:01:8c:2e:65:9b:03:ff:1b:9b:cd:40:9d:
39:5f:b6:ce:34:6a:cb:15:d2:d9:5c:35:68:df:6f:
56:4a:16:ef:9a:d2:1d:35:b9:b2:a7:9c:76:b9:e2:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FF:08:BB:AA:B3:26:B8:52:C0:76:E3:2F:1C:F5:D2:7A:2E:1C:85
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/5P8Iu6qzJrhSwHbjLxz10nouHIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.240.0.0/15
Signature Algorithm: sha256WithRSAEncryption
73:3f:56:eb:93:ba:a8:e3:fc:7f:61:8b:86:57:6f:5b:f8:91:
7e:46:d4:d2:98:b8:d3:a1:ab:91:62:38:41:5d:ef:d1:dc:55:
13:36:c2:71:a2:7e:45:0d:94:7d:45:b4:8d:c0:ee:f1:9e:a4:
74:06:b4:ad:a7:61:72:05:2a:06:2c:6e:ff:12:6b:cb:9a:57:
32:ba:6e:2d:20:2c:04:3f:3d:cb:9a:a9:ca:b1:68:c8:9d:34:
a6:53:75:99:46:02:8a:77:60:84:8d:ad:cb:34:5a:84:3f:e8:
e1:ae:b9:8c:d4:f7:4e:70:fe:de:6f:31:30:35:ea:3d:bc:83:
b2:2e:a3:fd:80:d2:c2:84:b9:71:06:44:98:3d:6a:9c:e4:e3:
a9:a2:63:8d:d2:f4:8c:c8:40:02:a2:85:d4:5b:6c:56:2a:6f:
0a:b1:c5:21:7d:c3:07:34:31:e1:e7:e0:1a:a1:3a:4b:5a:d0:
bf:fe:36:8a:68:5b:60:89:2c:f2:63:d1:0b:b6:f0:5b:a9:de:
30:74:d9:c4:b7:b0:30:38:9c:76:fe:ca:45:0e:88:6e:95:7a:
71:ed:5a:76:97:56:70:5b:c3:db:bd:d7:3c:a2:da:cd:c6:3e:
bd:5b:08:29:db:33:b7:ff:6c:b4:33:9f:b2:b0:9d:1b:3b:23:
da:9d:80:6b
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx
NDEzMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0RkYwOEJCQUFCMzI2
Qjg1MkMwNzZFMzJGMUNGNUQyN0EyRTFDODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDny5gdidbaFc54AqO341BdwjGnWUWcunwjagWmPuSFcuDOHVz2
Ws0maIez4/RaQl5HsRso2yoK/rgm+89VPnWCvK+l3HkswvGSHUgZ2+m9p4RWVDTA
Pk2bwTRRdXoEy7KofVFHJPvjLX8Z1SoIEYmlgFZpUlC5Ba1vy1+BPgdnobw2ZKwb
vQ4Z+xzluINyYF5abXvkNQL4NSAfW/aoWGvOakntqF7Y8JUEI9EobLTEoDjLIrgW
ga+0yd2wztr98eHqrDAih5+UYxkCmWhQmoXZbHmP1wGMLmWbA/8bm81AnTlfts40
assV0tlcNWjfb1ZKFu+a0h01ubKnnHa54vVbAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU5P8Iu6qzJrhSwHbjLxz10nouHIUwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS81UDhJdTZxekpyaFN3SGJqTHh6
MTBub3VISVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBe/Aw
DQYJKoZIhvcNAQELBQADggEBAHM/VuuTuqjj/H9hi4ZXb1v4kX5G1NKYuNOhq5Fi
OEFd79HcVRM2wnGifkUNlH1FtI3A7vGepHQGtK2nYXIFKgYsbv8Sa8uaVzK6bi0g
LAQ/PcuaqcqxaMidNKZTdZlGAop3YISNrcs0WoQ/6OGuuYzU905w/t5vMTA16j28
g7Iuo/2A0sKEuXEGRJg9apzk46miY43S9IzIQAKihdRbbFYqbwqxxSF9wwc0MeHn
4BqhOkta0L/+NopoW2CJLPJj0Qu28Fup3jB02cS3sDA4nHb+ykUOiG6VenHtWnaX
VnBbw9u91zyi2s3GPr1bCCnbM7f/bLQzn7KwnRs7I9qdgGs=
-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:26 2025 by rpki-client