Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qP0LQeEa5alqV1PANHjOdy0mIQM.roa
File: qP0LQeEa5alqV1PANHjOdy0mIQM.roa (raw, json)
Hash identifier: zN3IO10ssO25l7P3ELfE38NPRv2vGSM/BJ+GYZt0Xd8=
Subject key identifier: A8:FD:0B:41:E1:1A:E5:A9:6A:57:53:C0:34:78:CE:77:2D:26:21:03
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1723
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qP0LQeEa5alqV1PANHjOdy0mIQM.roa
Signing time: Wed 12 Feb 2025 01:36:26 +0000
ROA not before: Wed 12 Feb 2025 01:36:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 202.39.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5923 (0x1723)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 12 01:36:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A8FD0B41E11AE5A96A5753C03478CE772D262103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:71:a4:4a:12:96:1e:1d:5f:5a:eb:98:63:42:
f9:66:9a:60:37:a0:02:46:14:78:e4:74:ec:f8:2b:
37:cc:1e:66:08:34:fd:53:b9:da:3e:0d:39:be:e3:
ea:73:0e:88:2a:b0:fb:d8:bb:5f:66:84:52:f4:f5:
06:fa:e9:e6:e8:63:7a:4f:d4:c5:f9:a4:9f:4c:5f:
ce:2b:0f:fa:2e:9d:49:e7:1f:d8:7a:96:0b:fa:13:
e4:b0:0b:9f:08:62:0e:54:1e:51:5f:5a:61:b0:91:
58:f8:8e:6a:67:8c:42:a0:76:a4:5d:fe:15:6d:e5:
31:60:46:3d:5c:24:90:1d:f1:cd:33:86:02:3c:cf:
32:22:99:ab:c4:b6:15:54:ee:c5:04:29:c5:03:cb:
35:a8:c9:d4:04:18:e7:20:2c:23:ec:03:ba:d6:bf:
88:d2:c9:5f:77:d9:c0:79:76:a3:f9:90:80:b7:3b:
4e:5e:6c:ba:04:5b:45:2d:2f:7a:80:9f:82:38:ee:
2f:5a:8b:67:72:9c:42:d0:0a:bb:46:8f:6b:a2:a9:
39:52:cc:dd:78:4e:ba:dc:90:4c:40:d8:0b:3f:aa:
0b:28:0d:5c:d2:91:7d:3d:93:51:8a:ec:e1:89:6f:
0f:0d:8e:17:6e:d6:8a:cd:b3:0f:48:65:ad:01:7c:
a1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FD:0B:41:E1:1A:E5:A9:6A:57:53:C0:34:78:CE:77:2D:26:21:03
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qP0LQeEa5alqV1PANHjOdy0mIQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.128.0/17
Signature Algorithm: sha256WithRSAEncryption
67:11:b4:f0:cd:b5:cc:f9:ab:a9:22:6b:f0:a2:a1:97:ee:8d:
e2:38:f2:fc:d8:f8:5a:e0:6a:3e:ae:ee:87:fd:19:e7:6c:a8:
35:7a:cb:82:ab:b8:09:ba:ac:36:94:c1:f8:fa:76:97:a0:b3:
a6:87:03:6c:4c:e2:05:70:f4:02:13:b5:0d:25:ee:16:b2:aa:
02:ec:a7:5b:d5:de:07:76:9b:35:4c:13:1f:05:b9:e2:2f:53:
25:56:76:66:e3:27:fb:ab:d2:f4:5a:f3:2b:f6:26:b7:6f:28:
ec:34:f3:48:c0:bb:40:97:a4:05:1f:c3:ed:82:1a:8a:d4:a8:
61:f2:e4:f7:12:fd:87:90:8a:41:11:a4:4b:67:38:f7:46:09:
38:4a:8b:bc:c8:cc:e7:c5:1a:d6:14:29:83:d9:c6:d9:0e:a4:
a3:17:21:a2:72:63:a9:c0:b3:6f:25:b5:79:23:86:92:3f:52:
2b:78:22:2c:02:53:61:fd:88:76:25:54:f6:bf:6f:12:d4:fd:
61:15:a1:72:53:de:d1:83:f2:ca:4c:a3:f9:dc:b7:99:d2:e7:
6a:5f:dd:16:63:5c:9e:86:67:20:6f:6c:14:a9:02:1e:e8:72:
23:54:24:6c:dc:a3:3f:3a:19:e8:96:13:f6:ec:76:18:64:de:
bf:34:40:3b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFyMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw
MTM2MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4RkQwQjQxRTExQUU1
QTk2QTU3NTNDMDM0NzhDRTc3MkQyNjIxMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzcaRKEpYeHV9a65hjQvlmmmA3oAJGFHjkdOz4KzfMHmYINP1T
udo+DTm+4+pzDogqsPvYu19mhFL09Qb66eboY3pP1MX5pJ9MX84rD/ounUnnH9h6
lgv6E+SwC58IYg5UHlFfWmGwkVj4jmpnjEKgdqRd/hVt5TFgRj1cJJAd8c0zhgI8
zzIimavEthVU7sUEKcUDyzWoydQEGOcgLCPsA7rWv4jSyV932cB5dqP5kIC3O05e
bLoEW0UtL3qAn4I47i9ai2dynELQCrtGj2uiqTlSzN14TrrckExA2As/qgsoDVzS
kX09k1GK7OGJbw8Njhdu1orNsw9IZa0BfKGdAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUqP0LQeEa5alqV1PANHjOdy0mIQMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9xUDBMUWVFYTVhbHFWMVBBTkhq
T2R5MG1JUU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHyieA
MA0GCSqGSIb3DQEBCwUAA4IBAQBnEbTwzbXM+aupImvwoqGX7o3iOPL82Pha4Go+
ru6H/RnnbKg1esuCq7gJuqw2lMH4+naXoLOmhwNsTOIFcPQCE7UNJe4WsqoC7Kdb
1d4Hdps1TBMfBbniL1MlVnZm4yf7q9L0WvMr9ia3byjsNPNIwLtAl6QFH8PtghqK
1Khh8uT3Ev2HkIpBEaRLZzj3Rgk4Sou8yMznxRrWFCmD2cbZDqSjFyGicmOpwLNv
JbV5I4aSP1IreCIsAlNh/Yh2JVT2v28S1P1hFaFyU97Rg/LKTKP53LeZ0udqX90W
Y1yehmcgb2wUqQIe6HIjVCRs3KM/OhnolhP27HYYZN6/NEA7
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:07:59 2025 by rpki-client