Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/d6--kc_-LPc7njgWpOllWG1RVNI.roa
File: d6--kc_-LPc7njgWpOllWG1RVNI.roa (raw, json)
Hash identifier: pI7ZTp5Oouh19/M1FkjdCyoxYWUD2tDFtNeV/TnCfjI=
Subject key identifier: 77:AF:BE:91:CF:FE:2C:F7:3B:9E:38:16:A4:E9:65:58:6D:51:54:D2
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 08E4
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/d6--kc_-LPc7njgWpOllWG1RVNI.roa
Signing time: Mon 10 Feb 2025 14:00:48 +0000
ROA not before: Mon 10 Feb 2025 14:00:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2405:fbc0:112::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2276 (0x8e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Feb 10 14:00:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=77AFBE91CFFE2CF73B9E3816A4E965586D5154D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fa:6c:8f:95:ac:7b:b3:3f:37:88:e8:ba:c3:
49:f4:f2:8f:64:fb:dc:b0:0e:df:83:5e:e8:f3:a3:
e1:bf:e3:3d:a0:f8:41:3e:49:fa:74:6a:cd:e8:8f:
6e:1a:bf:fd:bc:e1:29:cd:7f:46:0f:f9:04:c6:82:
aa:54:ce:e4:fa:54:87:09:30:5f:72:21:8a:d8:a9:
92:a4:58:01:e1:1a:67:e4:3a:2e:20:fc:e6:fd:6b:
85:10:dc:ed:fb:7e:28:d3:b2:ad:66:c1:b6:24:ca:
da:34:de:73:ae:bf:97:74:0d:24:ba:29:98:9e:fe:
4f:48:3a:e7:fb:6e:65:0c:20:75:07:84:e6:ea:43:
a6:4e:58:67:f0:1b:64:08:83:db:67:39:73:94:f3:
f3:66:1c:7d:ec:60:c0:14:98:96:01:18:26:49:ba:
61:1b:b0:74:02:09:3f:8f:68:d7:e8:4a:a9:4d:6c:
16:23:d8:a6:55:0b:02:15:9f:c2:29:0d:00:68:76:
74:dc:15:de:d8:20:ec:44:1b:49:96:f9:53:2f:4b:
b1:a0:e3:31:7a:21:25:46:b9:cc:b6:a7:b2:ef:12:
3b:b2:cb:cd:f1:9f:29:37:31:08:a9:e9:de:f0:ae:
d8:86:8f:43:6c:63:51:c5:dd:52:c3:f6:4b:34:15:
83:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AF:BE:91:CF:FE:2C:F7:3B:9E:38:16:A4:E9:65:58:6D:51:54:D2
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/d6--kc_-LPc7njgWpOllWG1RVNI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:fbc0:112::/48
Signature Algorithm: sha256WithRSAEncryption
69:ce:00:74:78:f1:fc:5a:b8:e6:bd:d4:37:95:cb:66:61:4a:
e1:6b:2b:12:6d:40:db:e2:13:4b:29:02:a8:be:40:03:f1:c8:
94:fa:87:ec:44:d5:cc:63:20:1a:62:c3:2d:16:1e:94:cf:b9:
04:97:ba:f3:f0:b4:57:37:87:1c:b7:36:94:ea:a5:a0:9e:a1:
2f:f4:61:f4:0d:e5:24:92:2f:8a:33:1a:b3:a6:0c:cb:c0:81:
d6:e1:91:bb:1d:73:f7:d0:7f:93:ed:75:24:87:1c:1e:e1:49:
db:fb:85:e3:94:cb:83:2e:04:84:fa:70:34:27:88:12:e6:66:
56:52:64:2f:c6:c2:1f:e3:16:d2:75:da:ea:67:5f:71:1a:e4:
21:b7:4e:6e:f1:f1:1a:fc:9e:9f:7f:3a:83:5c:e3:66:59:b2:
79:e6:d1:4e:09:86:27:80:65:10:08:9a:2e:1b:45:c7:1b:75:
0b:f1:51:79:22:22:d9:71:6f:4f:36:2d:1b:c2:e7:4a:ac:ab:
ef:a6:b5:3b:dd:01:9e:69:30:d1:f0:9a:f8:1b:9f:b2:a3:fb:
a8:57:a8:cb:9a:c6:39:b5:41:c8:95:46:a5:26:17:18:70:f2:
bd:1d:01:b9:03:a0:03:c4:99:ba:68:3a:74:e2:16:ca:e0:7a:
2b:11:77:22
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICCOQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FE
NTI3MDIyQzhDRDA3NTY4RUM5RkM4MkExQ0UwRERFNUIyQzRBQzAeFw0yNTAyMTAx
NDAwNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc3QUZCRTkxQ0ZGRTJD
RjczQjlFMzgxNkE0RTk2NTU4NkQ1MTU0RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQ+myPlax7sz83iOi6w0n08o9k+9ywDt+DXujzo+G/4z2g+EE+
Sfp0as3oj24av/284SnNf0YP+QTGgqpUzuT6VIcJMF9yIYrYqZKkWAHhGmfkOi4g
/Ob9a4UQ3O37fijTsq1mwbYkyto03nOuv5d0DSS6KZie/k9IOuf7bmUMIHUHhObq
Q6ZOWGfwG2QIg9tnOXOU8/NmHH3sYMAUmJYBGCZJumEbsHQCCT+PaNfoSqlNbBYj
2KZVCwIVn8IpDQBodnTcFd7YIOxEG0mW+VMvS7Gg4zF6ISVGucy2p7LvEjuyy83x
nyk3MQip6d7wrtiGj0NsY1HF3VLD9ks0FYMTAgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUd6++kc/+LPc7njgWpOllWG1RVNIwHwYDVR0jBBgwFoAUytUnAiyM0HVo7J/I
Khzg3eWyxKwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdCRVNU
V0FSRS95dFVuQWl5TTBIVm83Sl9JS2h6ZzNlV3l4S3cuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL3l0VW5BaXlNMEhWbzdKX0lLaHpnM2VXeXhLdy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXQkVTVFdBUkUvZDYtLWtjXy1M
UGM3bmpnV3BPbGxXRzFSVk5JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC
AAIwCQMHACQF+8ABEjANBgkqhkiG9w0BAQsFAAOCAQEAac4AdHjx/Fq45r3UN5XL
ZmFK4WsrEm1A2+ITSykCqL5AA/HIlPqH7ETVzGMgGmLDLRYelM+5BJe68/C0VzeH
HLc2lOqloJ6hL/Rh9A3lJJIvijMas6YMy8CB1uGRux1z99B/k+11JIccHuFJ2/uF
45TLgy4EhPpwNCeIEuZmVlJkL8bCH+MW0nXa6mdfcRrkIbdObvHxGvyen386g1zj
ZlmyeebRTgmGJ4BlEAiaLhtFxxt1C/FReSIi2XFvTzYtG8LnSqyr76a1O90Bnmkw
0fCa+BufsqP7qFeoy5rGObVByJVGpSYXGHDyvR0BuQOgA8SZumg6dOIWyuB6KxF3
Ig==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:23:55 2025 by rpki-client