Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/X4Ir-wb2q862lqnZwYhfFOsztgo.roa
File: X4Ir-wb2q862lqnZwYhfFOsztgo.roa (raw, json)
Hash identifier: 1QnuOq3cIqiBSD40VN2XGT88lnToa/NET6w7kFUPYkA=
Subject key identifier: 5F:82:2B:FB:06:F6:AB:CE:B6:96:A9:D9:C1:88:5F:14:EB:33:B6:0A
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0CF7
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/X4Ir-wb2q862lqnZwYhfFOsztgo.roa
Signing time: Mon 10 Feb 2025 14:01:02 +0000
ROA not before: Mon 10 Feb 2025 14:01:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 103.17.8.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3319 (0xcf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 10 14:01:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5F822BFB06F6ABCEB696A9D9C1885F14EB33B60A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2a:75:1c:15:00:2f:97:f1:b8:0b:45:24:40:
e5:51:a6:9f:c1:b9:92:23:b9:a5:d1:cf:47:78:f7:
11:50:a8:2d:1f:27:77:c9:93:46:64:da:fb:ae:e2:
99:59:f5:36:7b:9e:fa:f8:65:2d:bc:61:80:80:88:
36:88:89:48:78:94:18:ac:d4:fa:e5:84:2d:d9:f5:
08:18:86:7b:57:7a:56:28:98:9e:b4:f4:af:f2:77:
6e:fc:d2:0c:73:a0:eb:15:fd:2d:3b:e3:64:cd:f9:
28:46:35:ec:42:e8:e1:30:36:ab:49:d5:cf:4a:f2:
b5:4e:3f:76:98:27:18:5c:f2:84:34:90:6e:be:b8:
5f:09:d5:de:fd:23:89:fb:4c:fa:c3:d1:ce:be:ce:
dc:22:c7:0c:a4:31:9c:d1:32:a7:00:88:7a:a3:5a:
ac:02:89:92:47:fb:16:af:75:82:28:e0:e1:28:35:
c6:e2:7c:65:58:5b:f2:4e:b3:30:4f:77:a2:6c:9a:
17:c1:52:20:09:5e:95:92:fd:75:c2:7f:85:5c:a6:
65:e9:f6:bb:db:47:66:a4:e5:02:dd:92:7e:84:95:
86:9c:f8:71:0c:d3:ca:18:05:9b:76:a0:b3:56:62:
64:bf:dc:b3:fc:5e:db:26:5d:3a:ef:00:95:56:a0:
80:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:82:2B:FB:06:F6:AB:CE:B6:96:A9:D9:C1:88:5F:14:EB:33:B6:0A
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/X4Ir-wb2q862lqnZwYhfFOsztgo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.17.8.0/22
Signature Algorithm: sha256WithRSAEncryption
27:2f:85:e2:fc:09:b8:20:a1:9d:9e:7d:43:2d:ca:ed:db:e6:
b6:2d:66:9e:a9:26:ac:84:c5:55:f2:6b:ab:86:07:ac:72:03:
0c:85:72:06:34:9c:01:8c:31:fa:7b:cb:37:23:2f:6d:e6:bb:
5a:66:8e:10:eb:2c:a6:16:44:06:0c:52:08:58:ac:03:a8:0c:
92:62:7f:82:a6:3d:26:82:05:66:1c:20:df:5f:fa:5a:ce:94:
9c:5c:33:42:74:3c:8a:c9:f3:62:0d:39:1e:88:8f:eb:51:71:
a5:8f:30:a7:83:6d:43:24:79:75:a8:29:13:aa:dc:28:62:74:
20:b2:0b:e9:3a:a5:85:16:6c:58:e7:aa:bb:cd:ee:5d:df:54:
3d:66:b0:ac:68:06:6b:d9:a5:4a:5c:ae:72:c5:24:35:7a:29:
6a:68:36:51:3f:42:f2:e1:25:a8:c4:5f:0f:bb:fa:ce:cd:b9:
5d:25:58:a3:2d:92:63:c0:ed:03:3b:8c:84:ee:50:52:f8:b1:
1a:d7:6d:d3:28:84:29:59:08:e1:11:15:df:7c:dc:55:b5:e0:
79:2d:7d:e1:fe:f7:65:8b:13:ef:af:0f:8a:10:3d:5d:1d:23:
0f:18:ff:4d:0b:5a:ff:e7:55:a0:d8:1b:65:ab:e3:ca:5c:33:
6e:41:18:61
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDPcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB
NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTAyMTAx
NDAxMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGODIyQkZCMDZGNkFC
Q0VCNjk2QTlEOUMxODg1RjE0RUIzM0I2MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCRKnUcFQAvl/G4C0UkQOVRpp/BuZIjuaXRz0d49xFQqC0fJ3fJ
k0Zk2vuu4plZ9TZ7nvr4ZS28YYCAiDaIiUh4lBis1PrlhC3Z9QgYhntXelYomJ60
9K/yd2780gxzoOsV/S0742TN+ShGNexC6OEwNqtJ1c9K8rVOP3aYJxhc8oQ0kG6+
uF8J1d79I4n7TPrD0c6+ztwixwykMZzRMqcAiHqjWqwCiZJH+xavdYIo4OEoNcbi
fGVYW/JOszBPd6JsmhfBUiAJXpWS/XXCf4VcpmXp9rvbR2ak5QLdkn6ElYac+HEM
08oYBZt2oLNWYmS/3LP8XtsmXTrvAJVWoIBjAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUX4Ir+wb2q862lqnZwYhfFOsztgowHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe
Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI
RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9YNElyLXdiMnE4NjJs
cW5ad1loZkZPc3p0Z28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZxEIMA0GCSqGSIb3DQEBCwUAA4IBAQAnL4Xi/Am4IKGdnn1DLcrt2+a2LWae
qSashMVV8murhgescgMMhXIGNJwBjDH6e8s3Iy9t5rtaZo4Q6yymFkQGDFIIWKwD
qAySYn+Cpj0mggVmHCDfX/pazpScXDNCdDyKyfNiDTkeiI/rUXGljzCng21DJHl1
qCkTqtwoYnQgsgvpOqWFFmxY56q7ze5d31Q9ZrCsaAZr2aVKXK5yxSQ1eilqaDZR
P0Ly4SWoxF8Pu/rOzbldJVijLZJjwO0DO4yE7lBS+LEa123TKIQpWQjhERXffNxV
teB5LX3h/vdlixPvrw+KED1dHSMPGP9NC1r/51Wg2Btlq+PKXDNuQRhh
-----END CERTIFICATE-----
Generated at Wed Apr 9 11:22:21 2025 by rpki-client