Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/xPZo6rRkMnAY1lFdWn6-4t_rpYg.roa
File: xPZo6rRkMnAY1lFdWn6-4t_rpYg.roa (raw, json)
Hash identifier: QRgwiv0ltpLRMf6U41E7c08Khrx2p6clQZrHzbZ6DzI=
Subject key identifier: C4:F6:68:EA:B4:64:32:70:18:D6:51:5D:5A:7E:BE:E2:DF:EB:A5:88
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: 0256
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/xPZo6rRkMnAY1lFdWn6-4t_rpYg.roa
Signing time: Mon 10 Feb 2025 14:01:31 +0000
ROA not before: Mon 10 Feb 2025 14:01:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152179
IP address blocks: 103.14.170.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 598 (0x256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Feb 10 14:01:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C4F668EAB464327018D6515D5A7EBEE2DFEBA588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4c:7e:6b:0a:89:64:4f:67:60:0f:53:f2:04:
74:fc:1b:9d:95:e7:0d:46:d6:26:5f:11:44:25:3f:
b4:e6:6c:cc:d4:44:c7:6e:10:21:93:8b:3e:35:64:
2f:06:d0:3e:8c:3f:d7:9f:6d:ac:ad:b9:d9:a2:5d:
76:c6:07:52:1c:e9:7a:04:3a:48:fd:d6:65:3d:75:
4c:07:e9:21:19:12:e0:af:c6:90:1c:8f:36:6a:14:
14:50:a9:3c:8b:b0:a3:54:d1:50:81:ac:b3:f1:ad:
2f:14:ee:9f:d1:71:e1:27:59:26:9a:e0:b0:62:b9:
87:53:a2:9e:cf:95:ec:16:9c:76:58:b4:be:3e:e3:
00:73:8d:1e:79:54:86:3b:a6:29:e9:d4:7d:b5:a6:
47:e8:6e:9b:c2:d3:f6:8a:23:81:35:3b:7f:8e:81:
42:0c:ff:77:c7:39:9c:a2:d1:53:fb:1b:e7:e1:7b:
41:93:b1:f0:72:5a:bb:3a:4a:5c:01:ca:8f:ba:83:
c5:2f:65:d3:a8:8e:0c:d8:a8:6e:58:55:e9:41:d4:
7f:ff:f9:ba:d8:d8:2b:c8:7b:36:40:84:b9:e8:fb:
91:52:13:23:fd:76:e7:6b:5a:f9:04:2a:b7:32:b3:
93:83:90:ae:6f:86:eb:42:c9:23:5f:2b:9e:65:fe:
99:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F6:68:EA:B4:64:32:70:18:D6:51:5D:5A:7E:BE:E2:DF:EB:A5:88
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/xPZo6rRkMnAY1lFdWn6-4t_rpYg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.170.0/23
Signature Algorithm: sha256WithRSAEncryption
25:cb:c0:d7:5c:18:0f:f5:3a:4f:d4:fd:c1:c5:c1:4b:b1:08:
55:ff:18:f1:43:63:4c:68:95:ba:39:78:04:9b:f9:c8:89:7b:
a8:57:66:fc:a0:94:2d:24:40:64:a2:74:c3:92:7a:11:d9:7c:
29:66:21:0f:b9:46:fb:9f:9b:be:ed:de:a2:56:16:e0:bf:1d:
14:6f:a1:d7:04:bf:e2:80:d1:d1:ba:d2:ed:cd:75:c4:8e:67:
0c:71:e5:05:f0:1c:90:34:54:ec:ed:46:0f:a8:16:5b:1d:48:
93:8d:65:51:21:98:8f:bc:bd:f9:2e:ea:30:a1:d9:8b:f5:1f:
e3:80:ab:e3:c9:c6:e2:f1:1a:82:0f:84:7c:86:15:85:fa:ef:
b8:a9:27:28:8b:62:77:c9:66:74:93:c1:26:cf:9d:9c:f6:34:
bc:56:77:90:59:5e:c7:6e:aa:6f:07:86:b1:d1:0b:2c:de:51:
31:c5:d2:d1:43:82:4b:bf:12:4b:61:f9:a2:94:8f:70:3f:2c:
49:b6:8b:09:8e:e9:73:b5:3b:87:79:61:36:9a:4e:23:52:4d:
b3:69:d0:f2:d2:bb:ba:e8:d1:af:ab:8f:73:aa:38:ce:21:7e:
55:f0:86:47:b3:6b:bc:00:e7:31:42:2b:74:94:3a:fb:71:80:
21:df:12:2e
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4
Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNTAyMTAx
NDAxMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM0RjY2OEVBQjQ2NDMy
NzAxOEQ2NTE1RDVBN0VCRUUyREZFQkE1ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUTH5rColkT2dgD1PyBHT8G52V5w1G1iZfEUQlP7TmbMzURMdu
ECGTiz41ZC8G0D6MP9efbaytudmiXXbGB1Ic6XoEOkj91mU9dUwH6SEZEuCvxpAc
jzZqFBRQqTyLsKNU0VCBrLPxrS8U7p/RceEnWSaa4LBiuYdTop7PlewWnHZYtL4+
4wBzjR55VIY7pinp1H21pkfobpvC0/aKI4E1O3+OgUIM/3fHOZyi0VP7G+fhe0GT
sfByWrs6SlwByo+6g8UvZdOojgzYqG5YVelB1H//+brY2CvIezZAhLno+5FSEyP9
dudrWvkEKrcys5ODkK5vhutCySNfK55l/plhAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUxPZo6rRkMnAY1lFdWn6+4t/rpYgwHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G
oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv
SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy94UFpvNnJSa01uQVkxbEZkV242
LTR0X3JwWWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw6q
MA0GCSqGSIb3DQEBCwUAA4IBAQAly8DXXBgP9TpP1P3BxcFLsQhV/xjxQ2NMaJW6
OXgEm/nIiXuoV2b8oJQtJEBkonTDknoR2XwpZiEPuUb7n5u+7d6iVhbgvx0Ub6HX
BL/igNHRutLtzXXEjmcMceUF8ByQNFTs7UYPqBZbHUiTjWVRIZiPvL35LuowodmL
9R/jgKvjycbi8RqCD4R8hhWF+u+4qScoi2J3yWZ0k8Emz52c9jS8VneQWV7Hbqpv
B4ax0Qss3lExxdLRQ4JLvxJLYfmilI9wPyxJtosJjulztTuHeWE2mk4jUk2zadDy
0ru66NGvq49zqjjOIX5V8IZHs2u8AOcxQit0lDr7cYAh3xIu
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:00:12 2025 by rpki-client