Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RYKudM5ng4YAEw8SOt5VIttRPFM.roa
File: RYKudM5ng4YAEw8SOt5VIttRPFM.roa (raw, json)
Hash identifier: IIEniaW1uCybS3xEGSMWNy3xeKQxrLL2dKDvFkgmHj8=
Subject key identifier: 45:82:AE:74:CE:67:83:86:00:13:0F:12:3A:DE:55:22:DB:51:3C:53
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0D71
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RYKudM5ng4YAEw8SOt5VIttRPFM.roa
Signing time: Mon 10 Feb 2025 14:13:20 +0000
ROA not before: Mon 10 Feb 2025 14:13:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.58.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3441 (0xd71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 10 14:13:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4582AE74CE67838600130F123ADE5522DB513C53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:78:6b:c7:b1:f3:ae:0c:e4:5f:c2:77:54:d1:
12:46:8f:48:5b:aa:44:b8:15:11:c0:79:db:b9:8d:
bf:5d:3f:11:f7:b9:01:ed:71:27:33:e3:38:5d:d2:
dd:08:7c:5c:ea:a0:ac:2a:59:45:8a:dc:0b:b5:b7:
93:bc:ec:ef:80:3a:f8:0c:83:bd:20:92:cb:99:06:
a6:0d:88:a5:db:88:9d:de:1f:9b:3f:3f:3d:20:3a:
fb:62:e1:af:a8:3c:97:42:2d:96:ee:e2:f4:de:22:
db:b8:fb:76:df:09:c8:df:0e:cb:79:4c:83:97:ca:
9b:44:72:4e:c1:f7:82:c0:10:ca:72:d4:c3:1f:61:
c3:a7:b4:ed:ca:e1:48:f1:e1:76:ee:e3:83:c7:68:
48:23:be:d0:0d:c9:3a:e8:ed:07:c7:6e:04:f6:95:
39:c4:cc:c2:6a:ad:3e:93:4c:8a:2c:bf:29:07:8e:
01:cb:30:42:b4:72:42:05:f5:9c:d0:90:60:e3:95:
20:b5:d7:32:e1:88:b6:46:e8:52:9d:8b:de:90:46:
5e:a7:62:d3:15:14:1c:73:de:dd:07:f4:16:4b:ec:
bc:4b:2d:27:9a:68:b8:de:20:8f:bf:37:93:bf:2b:
4f:4f:a2:ce:40:c4:9c:69:f8:8d:73:62:13:ed:4a:
43:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:82:AE:74:CE:67:83:86:00:13:0F:12:3A:DE:55:22:DB:51:3C:53
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RYKudM5ng4YAEw8SOt5VIttRPFM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:9e:e5:81:51:63:c7:18:2f:57:32:c3:86:f2:72:dd:aa:a2:
a2:d4:eb:da:e3:f2:75:cc:98:da:e7:bc:62:99:ba:68:a4:00:
80:8b:45:4a:37:20:f2:68:80:45:aa:37:ad:45:68:9d:3c:79:
d6:da:ec:90:1b:d7:d8:d5:55:cb:6d:18:ea:b5:ce:54:12:dd:
95:5a:65:3f:5f:4e:a5:92:00:5b:6f:e8:a0:06:b7:49:cc:87:
43:5f:ee:51:0c:66:96:01:da:01:2a:01:88:8b:69:e0:f0:c4:
b1:53:2c:7d:dd:24:e4:37:69:ad:d4:57:26:6f:43:89:6d:14:
3f:43:2e:e3:4c:c1:34:3e:90:7c:1c:0c:17:e0:60:7a:f1:6c:
ff:6e:b5:18:e1:bb:40:64:f8:fa:71:62:8d:26:0e:3f:a5:a9:
85:c7:c0:be:57:59:cb:8e:58:84:6e:71:bd:c0:95:ea:e9:be:
57:4f:f9:f8:87:24:8c:a2:e4:85:d9:3e:f3:42:52:24:c6:f7:
c9:2a:dd:6f:a6:31:a2:c9:10:af:4e:f7:5e:c8:5c:c4:d3:e4:
50:e7:35:57:ab:62:f9:d4:52:4b:a7:cd:f6:ab:d0:e8:df:7b:
0e:47:54:ff:82:a0:a4:b9:fa:0b:8f:7a:c8:b3:3a:e1:b3:87:
de:d7:8e:10
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx
NDEzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1ODJBRTc0Q0U2Nzgz
ODYwMDEzMEYxMjNBREU1NTIyREI1MTNDNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYeGvHsfOuDORfwndU0RJGj0hbqkS4FRHAedu5jb9dPxH3uQHt
cScz4zhd0t0IfFzqoKwqWUWK3Au1t5O87O+AOvgMg70gksuZBqYNiKXbiJ3eH5s/
Pz0gOvti4a+oPJdCLZbu4vTeItu4+3bfCcjfDst5TIOXyptEck7B94LAEMpy1MMf
YcOntO3K4Ujx4Xbu44PHaEgjvtANyTro7QfHbgT2lTnEzMJqrT6TTIosvykHjgHL
MEK0ckIF9ZzQkGDjlSC11zLhiLZG6FKdi96QRl6nYtMVFBxz3t0H9BZL7LxLLSea
aLjeII+/N5O/K09Pos5AxJxp+I1zYhPtSkMlAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQURYKudM5ng4YAEw8SOt5VIttRPFMwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9SWUt1ZE01bmc0WUFFdzhTT3Q1
Vkl0dFJQRk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTpQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAvnuWBUWPHGC9XMsOG8nLdqqKi1Ova4/J1zJja
57ximbpopACAi0VKNyDyaIBFqjetRWidPHnW2uyQG9fY1VXLbRjqtc5UEt2VWmU/
X06lkgBbb+igBrdJzIdDX+5RDGaWAdoBKgGIi2ng8MSxUyx93STkN2mt1Fcmb0OJ
bRQ/Qy7jTME0PpB8HAwX4GB68Wz/brUY4btAZPj6cWKNJg4/pamFx8C+V1nLjliE
bnG9wJXq6b5XT/n4hySMouSF2T7zQlIkxvfJKt1vpjGiyRCvTvdeyFzE0+RQ5zVX
q2L51FJLp832q9Do33sOR1T/gqCkufoLj3rIszrhs4fe144Q
-----END CERTIFICATE-----
Generated at Tue Apr 8 08:04:33 2025 by rpki-client