Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/TB4OghHOYepbZGIguSbFaOXnyug.roa
File: TB4OghHOYepbZGIguSbFaOXnyug.roa (raw, json)
Hash identifier: WBlKAfz1GOqu/s2pyW1i1l2hbHGVVP9DmA7FYhvOyCk=
Subject key identifier: 4C:1E:0E:82:11:CE:61:EA:5B:64:62:20:B9:26:C5:68:E5:E7:CA:E8
Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE
Certificate serial: 027B
Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/TB4OghHOYepbZGIguSbFaOXnyug.roa
Signing time: Mon 10 Feb 2025 14:05:30 +0000
ROA not before: Mon 10 Feb 2025 14:05:30 +0000
ROA not after: Wed 15 Oct 2025 15:30:20 +0000
asID: 150766
IP address blocks: 160.191.8.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 635 (0x27b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE
Validity
Not Before: Feb 10 14:05:30 2025 GMT
Not After : Oct 15 15:30:20 2025 GMT
Subject: CN=4C1E0E8211CE61EA5B646220B926C568E5E7CAE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:61:7b:30:79:70:4c:4c:1e:88:aa:47:2c:23:
63:9b:10:73:54:95:af:2b:e2:4a:ea:ee:32:52:8a:
27:a0:98:6d:4a:0b:16:6a:61:5e:20:29:2f:15:cd:
64:9a:97:b5:9b:f0:85:a7:15:5e:9a:04:2a:34:18:
b9:fb:4b:d5:50:29:24:d4:ee:00:05:59:af:64:e4:
a9:c7:3e:e1:88:f6:b2:37:78:1f:cf:7c:fd:51:76:
8e:5c:e4:12:34:43:2c:68:17:1a:8f:30:5e:d8:18:
b2:31:2d:cb:a6:17:d3:25:83:a0:a6:40:14:97:e1:
35:59:f0:7e:f4:db:93:a1:a3:d8:53:3f:95:62:c0:
74:7f:d7:50:35:f0:9b:a5:cd:87:63:09:94:9a:98:
9a:25:f1:00:a8:11:9f:f4:81:83:35:63:15:4b:fc:
ff:ac:19:7d:14:4e:92:33:58:ae:3d:9f:e0:b3:13:
c1:af:f7:b5:e5:d3:7d:71:23:1d:e1:2b:73:84:a8:
1a:a7:8a:d2:7e:5c:09:96:ea:93:05:3f:a2:bd:1a:
65:4e:06:03:b3:b9:23:7b:8d:4a:fa:5f:84:17:ea:
87:8a:48:4d:7d:53:3e:0d:84:64:80:8f:3a:dc:b9:
2a:c2:5f:f9:6b:87:a6:14:b8:e8:25:74:2b:bb:6b:
83:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:1E:0E:82:11:CE:61:EA:5B:64:62:20:B9:26:C5:68:E5:E7:CA:E8
X509v3 Authority Key Identifier:
keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/TB4OghHOYepbZGIguSbFaOXnyug.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:31:fe:df:83:66:d8:ac:68:36:24:27:6f:d5:85:b9:ee:81:
79:d4:00:3b:93:97:04:fd:43:f9:29:3c:92:e8:6f:6e:a0:65:
2a:fe:03:a8:a8:a5:4d:3b:f7:1b:a9:9a:be:51:8d:76:5c:95:
84:1f:aa:04:17:f5:ad:ff:79:1d:c6:59:0c:1b:23:e3:91:a3:
f9:f5:13:31:07:b7:d7:7f:27:a7:8d:8c:37:f9:e8:36:81:62:
8b:9c:1b:e9:02:ca:02:2f:b5:b6:b5:55:d4:63:b0:ef:02:68:
5f:38:ff:3b:56:51:f1:cb:bb:d8:d1:a2:0e:a6:17:06:2a:78:
5e:53:d5:40:1d:15:e6:4f:68:e1:a7:ef:a0:f5:ac:d6:f4:0e:
ad:f6:6b:e8:9c:48:9e:c0:8d:d6:bb:47:cf:07:b1:7c:cd:78:
d5:f2:80:69:dd:1a:ba:0d:f8:88:d4:a6:56:02:82:0e:ad:b3:
f6:33:e2:a8:80:7d:30:2a:2a:b9:8d:19:92:31:2b:52:06:58:
fc:57:18:bd:c7:c7:f6:37:71:1c:1f:07:80:a2:8b:93:13:1f:
8c:71:00:a8:ec:7b:ed:28:6f:62:d3:dc:33:31:04:5d:4f:99:
8e:a9:4a:76:95:90:8f:4d:07:1e:04:49:ab:49:47:ca:e7:45:
29:67:1f:ce
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICAnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB
Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTAyMTAx
NDA1MzBaFw0yNTEwMTUxNTMwMjBaMDMxMTAvBgNVBAMTKDRDMUUwRTgyMTFDRTYx
RUE1QjY0NjIyMEI5MjZDNTY4RTVFN0NBRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtYXsweXBMTB6IqkcsI2ObEHNUla8r4krq7jJSiiegmG1KCxZq
YV4gKS8VzWSal7Wb8IWnFV6aBCo0GLn7S9VQKSTU7gAFWa9k5KnHPuGI9rI3eB/P
fP1Rdo5c5BI0QyxoFxqPMF7YGLIxLcumF9Mlg6CmQBSX4TVZ8H7025Oho9hTP5Vi
wHR/11A18JulzYdjCZSamJol8QCoEZ/0gYM1YxVL/P+sGX0UTpIzWK49n+CzE8Gv
97Xl031xIx3hK3OEqBqnitJ+XAmW6pMFP6K9GmVOBgOzuSN7jUr6X4QX6oeKSE19
Uz4NhGSAjzrcuSrCX/lrh6YUuOgldCu7a4O7AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUTB4OghHOYepbZGIguSbFaOXnyugwHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB
SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE
L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL1RCNE9naEhPWWVwYlpHSWd1
U2JGYU9Ybnl1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACg
vwgwDQYJKoZIhvcNAQELBQADggEBAF0x/t+DZtisaDYkJ2/VhbnugXnUADuTlwT9
Q/kpPJLob26gZSr+A6iopU079xupmr5RjXZclYQfqgQX9a3/eR3GWQwbI+ORo/n1
EzEHt9d/J6eNjDf56DaBYoucG+kCygIvtba1VdRjsO8CaF84/ztWUfHLu9jRog6m
FwYqeF5T1UAdFeZPaOGn76D1rNb0Dq32a+icSJ7Ajda7R88HsXzNeNXygGndGroN
+IjUplYCgg6ts/Yz4qiAfTAqKrmNGZIxK1IGWPxXGL3Hx/Y3cRwfB4Cii5MTH4xx
AKjse+0ob2LT3DMxBF1PmY6pSnaVkI9NBx4ESatJR8rnRSlnH84=
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:23 2025 by rpki-client