Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/WFZhHwnDq5fSdRpEoNZ81Jb-MTI.roa
File: WFZhHwnDq5fSdRpEoNZ81Jb-MTI.roa (raw, json)
Hash identifier: NgFTfh2dQpDjSsvdZLO00vjzLbw8CbSfjPR5s+tfSgY=
Subject key identifier: 58:56:61:1F:09:C3:AB:97:D2:75:1A:44:A0:D6:7C:D4:96:FE:31:32
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0CF2
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/WFZhHwnDq5fSdRpEoNZ81Jb-MTI.roa
Signing time: Mon 10 Feb 2025 14:01:01 +0000
ROA not before: Mon 10 Feb 2025 14:01:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 202.12.76.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3314 (0xcf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 10 14:01:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5856611F09C3AB97D2751A44A0D67CD496FE3132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d3:84:ca:33:b3:8d:9e:f2:2e:75:bf:a1:c6:
16:ee:f2:c1:38:ae:1c:0b:a4:99:98:fe:35:a9:21:
4b:d2:6b:ee:73:dd:84:59:8c:91:b9:5f:a7:64:0e:
70:69:b7:82:29:29:dc:f5:1d:8d:94:02:d2:60:eb:
1c:02:c1:97:16:a2:da:19:9d:4b:41:07:2d:1e:b6:
90:c7:8d:b5:6f:ea:f9:c5:10:35:28:e6:9d:9b:c2:
1d:e4:21:d7:8d:e0:e1:41:39:4a:9d:27:da:38:0a:
b9:ca:7a:0c:bc:4b:9f:6d:35:f1:b2:cf:9e:7e:80:
f2:f3:b8:56:81:bd:b8:c1:be:e7:a9:90:c8:d9:dc:
24:52:ee:85:64:60:8d:fa:2c:c2:bd:ef:e4:a8:53:
ac:91:e4:db:26:fb:a0:61:19:31:46:9f:83:12:c4:
5b:fc:b6:bd:1a:cc:d6:d5:c4:c8:69:96:55:f5:72:
20:54:13:c3:79:27:b8:a2:9d:f7:a0:56:2b:89:0f:
e3:dd:b5:1f:1c:ac:b1:81:69:72:b8:19:2c:d5:41:
33:cc:9a:1d:4b:e3:db:2f:66:bf:f5:f6:b9:20:2c:
fe:c7:0b:3f:40:a7:db:b1:ea:e6:1d:db:60:0d:52:
1e:49:5c:21:13:64:92:a9:e3:dc:a6:a0:cc:65:98:
5e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:56:61:1F:09:C3:AB:97:D2:75:1A:44:A0:D6:7C:D4:96:FE:31:32
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/WFZhHwnDq5fSdRpEoNZ81Jb-MTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.76.0/22
Signature Algorithm: sha256WithRSAEncryption
83:5f:62:5a:f4:72:16:05:f2:1c:95:dd:6d:2b:e7:73:0e:53:
1e:69:95:f8:dd:81:a6:99:25:28:41:62:6e:4b:7d:ef:a2:5b:
7a:1b:04:1d:4d:5b:3b:ac:1f:7a:e9:e0:8e:53:bd:de:cc:50:
21:2e:68:10:f8:12:83:86:f7:b4:a6:73:fa:44:f9:61:f4:6b:
78:f2:20:ff:54:3d:ba:5a:b4:77:1b:5b:37:d5:cd:95:fa:c3:
3c:6b:72:51:11:19:d1:ee:27:44:b0:b0:fe:41:69:64:38:72:
04:fa:e7:19:f7:23:ee:34:12:b7:35:b6:fd:a5:0d:44:fe:8d:
db:d0:29:36:58:47:3c:d0:ad:6c:ac:4b:d6:1f:4b:d9:8c:75:
29:30:d5:5f:8a:08:7b:a2:a8:78:6b:16:72:13:26:85:8c:9a:
8f:5e:76:ba:e2:60:6f:71:e8:cf:77:8f:87:9d:29:cc:d8:0e:
84:a2:93:80:9e:6a:d4:0c:bb:b2:41:c9:de:d6:b5:fd:9e:b8:
be:58:1b:5a:e9:78:6c:63:2e:2b:d4:5a:f6:5a:57:01:71:6e:
fd:20:84:06:a7:b0:51:cc:08:6a:55:2b:d0:86:33:b0:11:6e:
70:98:d5:bf:e7:eb:91:d5:d3:8f:7c:cf:fd:bc:d7:fa:0e:70:
03:df:96:de
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB
NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTAyMTAx
NDAxMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4NTY2MTFGMDlDM0FC
OTdEMjc1MUE0NEEwRDY3Q0Q0OTZGRTMxMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI04TKM7ONnvIudb+hxhbu8sE4rhwLpJmY/jWpIUvSa+5z3YRZ
jJG5X6dkDnBpt4IpKdz1HY2UAtJg6xwCwZcWotoZnUtBBy0etpDHjbVv6vnFEDUo
5p2bwh3kIdeN4OFBOUqdJ9o4CrnKegy8S59tNfGyz55+gPLzuFaBvbjBvuepkMjZ
3CRS7oVkYI36LMK97+SoU6yR5Nsm+6BhGTFGn4MSxFv8tr0azNbVxMhpllX1ciBU
E8N5J7iinfegViuJD+PdtR8crLGBaXK4GSzVQTPMmh1L49svZr/19rkgLP7HCz9A
p9ux6uYd22ANUh5JXCETZJKp49ymoMxlmF5LAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUWFZhHwnDq5fSdRpEoNZ81Jb+MTIwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe
Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI
RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9XRlpoSHduRHE1ZlNk
UnBFb05aODFKYi1NVEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCygxMMA0GCSqGSIb3DQEBCwUAA4IBAQCDX2Ja9HIWBfIcld1tK+dzDlMeaZX4
3YGmmSUoQWJuS33volt6GwQdTVs7rB966eCOU73ezFAhLmgQ+BKDhve0pnP6RPlh
9Gt48iD/VD26WrR3G1s31c2V+sM8a3JRERnR7idEsLD+QWlkOHIE+ucZ9yPuNBK3
Nbb9pQ1E/o3b0Ck2WEc80K1srEvWH0vZjHUpMNVfigh7oqh4axZyEyaFjJqPXna6
4mBvcejPd4+HnSnM2A6EopOAnmrUDLuyQcne1rX9nri+WBta6XhsYy4r1Fr2WlcB
cW79IIQGp7BRzAhqVSvQhjOwEW5wmNW/5+uR1dOPfM/9vNf6DnAD35be
-----END CERTIFICATE-----
Generated at Wed Apr 9 11:14:08 2025 by rpki-client