Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/ZSjMvu0Eyr49A4-DkMnRK7J4V0M.roa
File: ZSjMvu0Eyr49A4-DkMnRK7J4V0M.roa (raw, json)
Hash identifier: JZo70acgFK1AQwntRalHlPG9Hcs3ZLfEgvWwsBpLx04=
Subject key identifier: 65:28:CC:BE:ED:04:CA:BE:3D:03:8F:83:90:C9:D1:2B:B2:78:57:43
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0CC5
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/ZSjMvu0Eyr49A4-DkMnRK7J4V0M.roa
Signing time: Wed 04 Dec 2024 23:56:15 +0000
ROA not before: Wed 04 Dec 2024 23:56:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3269 (0xcc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 4 23:56:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6528CCBEED04CABE3D038F8390C9D12BB2785743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:db:5d:ca:b0:9b:d8:5d:71:5f:b8:f6:be:8e:
c3:56:16:b3:8c:5b:59:7e:74:e3:fc:63:bc:ed:80:
27:45:31:67:c4:2e:dd:38:0b:c6:4a:72:b6:fb:42:
a9:d3:5a:df:ad:fe:f9:e7:46:19:f3:9a:ad:98:ea:
16:35:a4:65:8e:19:0b:84:45:f6:c3:63:64:6c:c8:
bb:41:34:06:c3:fe:a6:11:40:5c:3e:9f:d3:31:b7:
71:8d:c1:ac:0c:a6:81:6e:ba:ae:1d:0c:0a:1c:18:
94:be:6b:0e:2c:21:5f:8c:2e:22:16:ce:f6:b6:9d:
60:2a:a7:d1:52:d5:e5:5f:47:69:8d:d0:16:bb:9e:
c1:6d:87:bc:bc:79:87:87:13:96:0e:0d:2c:3f:f8:
3a:5e:ad:7c:80:fb:2a:93:25:e0:98:4f:52:53:5b:
fb:1a:e7:42:c4:bf:5a:fa:e4:c7:3d:27:0f:7e:b0:
91:bd:1d:49:ab:51:08:3a:4e:68:7b:bc:e2:12:e9:
d4:92:c6:44:32:76:43:fd:39:37:51:de:a5:90:9b:
a9:8c:2a:f8:82:97:e0:57:a9:0a:c7:08:d9:f7:90:
b0:7a:d0:af:86:c5:cf:2a:3d:15:9b:38:a9:ef:69:
00:b8:f5:c0:f4:ec:a4:b3:9e:d9:f6:d8:3f:15:97:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:28:CC:BE:ED:04:CA:BE:3D:03:8F:83:90:C9:D1:2B:B2:78:57:43
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/ZSjMvu0Eyr49A4-DkMnRK7J4V0M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:47:31:b8:41:1c:1e:24:68:e8:73:57:9f:a2:58:69:30:cf:
70:e3:7a:a5:36:9b:0f:33:c5:c5:46:ef:dc:2a:35:d7:2d:06:
2b:34:7b:69:fc:df:79:29:24:5e:d9:43:a4:27:cd:35:bf:80:
31:14:08:ba:31:d8:f0:64:47:6c:a4:87:a9:f8:73:38:03:ab:
e1:ff:d7:43:a8:3e:d7:08:c7:5c:93:2e:0d:83:99:c3:6e:a1:
33:01:d1:a8:a7:99:c4:32:5f:f9:a3:14:68:8a:0c:6c:38:a7:
df:31:46:94:8a:a4:ed:7d:b6:9e:c1:b3:bf:15:19:f2:d6:48:
01:1d:fb:ef:a9:b3:b8:77:d5:99:32:f6:50:62:51:1d:87:fe:
93:c4:80:6a:1e:c1:b6:f9:0b:6c:81:0d:83:b2:11:4f:0f:f8:
ce:d2:39:ed:5c:2e:1b:5d:72:70:4f:09:46:6c:e0:f6:c1:1a:
04:a8:06:30:20:65:0a:2a:25:65:6a:42:17:fd:fa:d5:ff:74:
b8:fb:de:8f:68:75:71:6e:af:4d:3e:50:87:5c:1d:91:60:47:
5e:9e:24:12:1d:62:c5:47:61:58:29:6e:1c:f0:af:a0:cc:18:
10:7d:6e:81:7f:56:ac:eb:ed:4b:68:ed:d2:63:0b:26:56:26:
39:6c:78:e8
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDMUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzA4
NTE1QzhCOUZCNTNGOENFRDQ4OUQyMTM0RjY0NDFGRkFEQTA1RTAeFw0yNDEyMDQy
MzU2MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1MjhDQ0JFRUQwNENB
QkUzRDAzOEY4MzkwQzlEMTJCQjI3ODU3NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDo213KsJvYXXFfuPa+jsNWFrOMW1l+dOP8Y7ztgCdFMWfELt04
C8ZKcrb7QqnTWt+t/vnnRhnzmq2Y6hY1pGWOGQuERfbDY2RsyLtBNAbD/qYRQFw+
n9Mxt3GNwawMpoFuuq4dDAocGJS+aw4sIV+MLiIWzva2nWAqp9FS1eVfR2mN0Ba7
nsFth7y8eYeHE5YODSw/+DperXyA+yqTJeCYT1JTW/sa50LEv1r65Mc9Jw9+sJG9
HUmrUQg6Tmh7vOIS6dSSxkQydkP9OTdR3qWQm6mMKviCl+BXqQrHCNn3kLB60K+G
xc8qPRWbOKnvaQC49cD07KSzntn22D8VlxY7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZSjMvu0Eyr49A4+DkMnRK7J4V0MwHwYDVR0jBBgwFoAUwIUVyLn7U/jO1InS
E09kQf+toF4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElEQy93
SVVWeUxuN1Vfak8xSW5TRTA5a1FmLXRvRjQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3dJVVZ5TG43VV9qTzFJblNFMDlrUWYtdG9GNC5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJREMvWlNqTXZ1MEV5cjQ5QTQtRGtNblJL
N0o0VjBNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdjWDAN
BgkqhkiG9w0BAQsFAAOCAQEAq0cxuEEcHiRo6HNXn6JYaTDPcON6pTabDzPFxUbv
3Co11y0GKzR7afzfeSkkXtlDpCfNNb+AMRQIujHY8GRHbKSHqfhzOAOr4f/XQ6g+
1wjHXJMuDYOZw26hMwHRqKeZxDJf+aMUaIoMbDin3zFGlIqk7X22nsGzvxUZ8tZI
AR3776mzuHfVmTL2UGJRHYf+k8SAah7BtvkLbIENg7IRTw/4ztI57VwuG11ycE8J
Rmzg9sEaBKgGMCBlCiolZWpCF/361f90uPvej2h1cW6vTT5Qh1wdkWBHXp4kEh1i
xUdhWCluHPCvoMwYEH1ugX9WrOvtS2jt0mMLJlYmOWx46A==
-----END CERTIFICATE-----
Generated at Tue Apr 22 12:44:29 2025 by rpki-client