Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/IUU1vbE-MbvVuTSpEqqyHbS22Vw.roa
File: IUU1vbE-MbvVuTSpEqqyHbS22Vw.roa (raw, json)
Hash identifier: OqGrgHVwWEjhzTVn9WVKsXtxqVXAU3rn2x+mwsvFk3I=
Subject key identifier: 21:45:35:BD:B1:3E:31:BB:D5:B9:34:A9:12:AA:B2:1D:B4:B6:D9:5C
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0CD2
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/IUU1vbE-MbvVuTSpEqqyHbS22Vw.roa
Signing time: Mon 10 Feb 2025 13:49:56 +0000
ROA not before: Mon 10 Feb 2025 13:49:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131662
IP address blocks: 2403:a2c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3282 (0xcd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Feb 10 13:49:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=214535BDB13E31BBD5B934A912AAB21DB4B6D95C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:21:d0:0c:55:70:0c:d7:f6:74:c4:f5:54:5d:
62:63:84:d8:19:15:5d:1a:4e:16:c1:de:68:91:5f:
28:2d:bd:a3:f3:e9:63:2c:67:65:8e:dc:8d:f3:97:
f3:9c:b1:ff:97:d0:17:e2:8f:13:f3:ef:46:08:77:
c3:b9:71:e4:ed:7b:ce:94:ce:2c:36:bb:ae:4f:f9:
cf:d9:00:fc:09:53:ff:79:a0:94:df:26:2d:cb:1e:
f0:ad:d5:56:06:ec:7d:bf:ec:89:fa:75:8a:25:b1:
86:cc:9f:32:8b:7a:68:15:a3:09:80:05:c4:ac:dc:
3d:b0:db:e0:e0:b8:46:7e:ee:de:b3:5d:e8:63:57:
c9:22:ec:b2:fa:2c:c5:a8:4a:6d:bb:f9:7e:83:d2:
d4:1a:84:49:75:26:e6:6b:2d:67:c8:9f:56:18:61:
31:d6:4f:bd:55:81:90:6c:8b:a5:88:d9:fa:9e:81:
a7:91:1b:ae:d6:f0:62:34:21:8b:9c:2b:c8:de:ba:
22:6e:03:c7:71:7e:bc:b9:1b:dd:b5:82:2a:6c:3b:
1d:86:3f:36:80:1d:42:fa:b2:1e:4c:d5:19:ba:9d:
d4:69:6c:49:98:93:e6:55:04:ad:ad:fc:39:06:3c:
9a:ec:2e:08:11:95:a8:db:f3:81:59:a3:14:81:b2:
85:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:45:35:BD:B1:3E:31:BB:D5:B9:34:A9:12:AA:B2:1D:B4:B6:D9:5C
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/IUU1vbE-MbvVuTSpEqqyHbS22Vw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a2c0::/32
Signature Algorithm: sha256WithRSAEncryption
09:b4:49:64:29:a6:0d:c6:1d:c3:ed:83:36:b9:46:da:e7:e7:
8b:72:39:f3:0f:2c:1c:4b:5f:5c:f7:77:f1:82:fa:0a:d1:f1:
f7:88:7f:77:ab:d1:b7:a6:bc:bd:cd:66:3f:0b:1a:4d:64:e4:
cd:9d:7f:d6:5f:9b:29:ba:eb:2b:1c:e9:c1:bc:48:39:bd:a1:
16:cc:69:b0:16:59:47:c1:9c:07:ce:54:82:47:2d:bc:4d:5e:
2b:a3:15:87:92:95:64:d7:3b:96:c0:15:d3:e7:5e:96:01:f2:
00:94:04:d8:be:85:ed:ce:b3:15:ec:f9:a2:dc:01:f0:b2:84:
9a:ee:91:b1:aa:65:82:2b:71:7f:ae:32:af:c9:90:3d:bb:63:
09:37:ad:7c:f5:af:9a:52:33:bb:ab:67:20:b7:37:12:21:bc:
a3:8c:38:dd:be:f7:0e:7c:5b:3e:78:4a:da:ad:e8:59:46:71:
49:cd:ff:fe:96:74:04:61:bf:3b:e8:30:67:5f:3b:96:cc:53:
79:5c:bf:6c:ca:c8:1b:11:23:e8:73:29:35:22:39:d2:9c:22:
59:b0:85:d6:36:36:10:7a:ce:ee:f1:2f:b5:84:22:b9:58:88:
c4:d6:da:78:6b:74:9b:cc:07:2a:76:2f:5f:ce:25:a1:0d:8f:
d9:d5:bb:0f
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF
RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNTAyMTAx
MzQ5NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIxNDUzNUJEQjEzRTMx
QkJENUI5MzRBOTEyQUFCMjFEQjRCNkQ5NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDvIdAMVXAM1/Z0xPVUXWJjhNgZFV0aThbB3miRXygtvaPz6WMs
Z2WO3I3zl/Ocsf+X0BfijxPz70YId8O5ceTte86Uziw2u65P+c/ZAPwJU/95oJTf
Ji3LHvCt1VYG7H2/7In6dYolsYbMnzKLemgVowmABcSs3D2w2+DguEZ+7t6zXehj
V8ki7LL6LMWoSm27+X6D0tQahEl1JuZrLWfIn1YYYTHWT71VgZBsi6WI2fqegaeR
G67W8GI0IYucK8jeuiJuA8dxfry5G921gipsOx2GPzaAHUL6sh5M1Rm6ndRpbEmY
k+ZVBK2t/DkGPJrsLggRlajb84FZoxSBsoWPAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUIUU1vbE+MbvVuTSpEqqyHbS22VwwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc
TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ
Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vSVVVMXZiRS1NYnZWdVRT
cEVxcXlIYlMyMlZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQDosAwDQYJKoZIhvcNAQELBQADggEBAAm0SWQppg3GHcPtgza5Rtrn54tyOfMP
LBxLX1z3d/GC+grR8feIf3er0bemvL3NZj8LGk1k5M2df9Zfmym66ysc6cG8SDm9
oRbMabAWWUfBnAfOVIJHLbxNXiujFYeSlWTXO5bAFdPnXpYB8gCUBNi+he3OsxXs
+aLcAfCyhJrukbGqZYIrcX+uMq/JkD27Ywk3rXz1r5pSM7urZyC3NxIhvKOMON2+
9w58Wz54Stqt6FlGcUnN//6WdARhvzvoMGdfO5bMU3lcv2zKyBsRI+hzKTUiOdKc
IlmwhdY2NhB6zu7xL7WEIrlYiMTW2nhrdJvMByp2L1/OJaENj9nVuw8=
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:08:29 2025 by rpki-client