Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/_18mvRMypvE6fZGaMRfgrh7sXeE.roa
File: _18mvRMypvE6fZGaMRfgrh7sXeE.roa (raw, json)
Hash identifier: cHsQFhTL7h19mo+JHiMlAjv7tsbvDMgFNBk97VCIZd4=
Subject key identifier: FF:5F:26:BD:13:32:A6:F1:3A:7D:91:9A:31:17:E0:AE:1E:EC:5D:E1
Certificate issuer: /CN=9A0CC0BB631D15131023849083D941A2DBCDFA65
Certificate serial: 03
Authority key identifier: 9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/_18mvRMypvE6fZGaMRfgrh7sXeE.roa
Signing time: Tue 15 Oct 2024 07:23:35 +0000
ROA not before: Tue 15 Oct 2024 07:23:35 +0000
ROA not after: Tue 14 Oct 2025 15:30:23 +0000
asID: 134823
IP address blocks: 160.191.4.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A0CC0BB631D15131023849083D941A2DBCDFA65
Validity
Not Before: Oct 15 07:23:35 2024 GMT
Not After : Oct 14 15:30:23 2025 GMT
Subject: CN=FF5F26BD1332A6F13A7D919A3117E0AE1EEC5DE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:60:c9:f1:ea:49:49:39:d1:d5:d9:23:2b:1a:
f0:b6:5d:cc:be:62:1f:27:a7:d2:e0:ac:26:02:1a:
a5:cc:cd:51:80:1e:f0:79:a0:4f:1f:b7:2b:93:0c:
2d:e3:2f:1e:9b:a9:96:11:34:b8:49:94:30:5f:7d:
23:e0:79:42:eb:70:47:b2:8a:66:9c:0b:bc:fe:2d:
47:7d:70:3f:c1:a4:f6:9f:f8:6a:66:3b:86:40:57:
1e:46:0c:e9:b6:d4:7f:ea:65:42:9e:14:59:55:4f:
4e:18:f0:d0:db:cc:e1:99:7b:0c:17:39:99:9f:9e:
2d:4e:e4:05:83:51:e8:c6:3f:31:c1:cf:0a:e9:89:
ce:ba:45:5d:0d:b8:08:92:4a:20:23:99:9a:53:16:
7d:66:f5:77:80:e4:1d:b2:f9:0b:f6:56:9f:79:0a:
f8:54:82:b6:e1:9b:3b:b9:5f:1e:7c:95:3d:5a:46:
8c:b1:20:fb:c2:de:93:54:82:ad:99:5d:f0:87:6c:
4e:6b:8c:79:9c:75:36:af:8d:fe:5e:1c:3e:6c:5a:
2b:3b:ae:4d:69:46:b2:e0:52:6d:eb:18:3a:29:cd:
57:a7:aa:35:fc:51:25:15:05:24:b3:22:96:29:a4:
40:1e:4a:52:9e:ca:3a:66:bd:84:bc:62:5a:6b:93:
97:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:5F:26:BD:13:32:A6:F1:3A:7D:91:9A:31:17:E0:AE:1E:EC:5D:E1
X509v3 Authority Key Identifier:
keyid:9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/_18mvRMypvE6fZGaMRfgrh7sXeE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.4.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:94:24:5d:f7:73:cb:59:1d:00:d3:18:cf:85:15:54:07:08:
9b:50:cc:5b:d3:f8:07:8f:f7:76:f8:f3:12:e5:6f:80:b2:74:
3e:f4:1e:df:bf:bc:ac:d1:1d:3b:89:b9:cc:f6:95:0d:f1:0a:
d8:a2:2c:7d:73:25:da:16:8b:81:a4:78:67:cb:1f:32:96:d3:
9b:a0:65:1a:11:6c:7a:c7:c9:03:da:df:3d:c8:7b:8d:1b:b3:
66:c7:2b:9c:e2:8c:20:a5:71:7f:57:48:98:c7:55:e3:9f:ca:
dc:af:33:1a:79:b3:0e:21:15:90:c5:d6:6b:c2:52:7c:22:b0:
25:75:46:1b:ea:70:d6:59:92:0b:8e:83:b9:4a:83:84:c8:91:
de:14:5c:1d:55:be:71:c7:ef:b2:92:ec:9f:30:33:ff:24:8f:
9d:fd:22:e9:42:06:b5:f7:64:a9:6d:79:8e:97:92:f4:3a:75:
42:7d:24:9f:ba:35:7b:90:a8:87:cf:0e:5e:ca:36:9c:1c:07:
8e:51:ee:a8:2e:ef:5b:39:72:b7:46:05:6d:a4:a2:70:4f:a3:
89:91:04:fc:b5:6c:43:a7:b7:b9:59:4f:a1:d0:3b:0e:29:87:
de:b9:b6:20:97:fa:ed:7d:e2:4e:b9:23:91:36:56:16:d0:f3:
a3:fd:fd:17
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5QTBD
QzBCQjYzMUQxNTEzMTAyMzg0OTA4M0Q5NDFBMkRCQ0RGQTY1MB4XDTI0MTAxNTA3
MjMzNVoXDTI1MTAxNDE1MzAyM1owMzExMC8GA1UEAxMoRkY1RjI2QkQxMzMyQTZG
MTNBN0Q5MTlBMzExN0UwQUUxRUVDNURFMTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMNgyfHqSUk50dXZIysa8LZdzL5iHyen0uCsJgIapczNUYAe8Hmg
Tx+3K5MMLeMvHpuplhE0uEmUMF99I+B5QutwR7KKZpwLvP4tR31wP8Gk9p/4amY7
hkBXHkYM6bbUf+plQp4UWVVPThjw0NvM4Zl7DBc5mZ+eLU7kBYNR6MY/McHPCumJ
zrpFXQ24CJJKICOZmlMWfWb1d4DkHbL5C/ZWn3kK+FSCtuGbO7lfHnyVPVpGjLEg
+8Lek1SCrZld8IdsTmuMeZx1Nq+N/l4cPmxaKzuuTWlGsuBSbesYOinNV6eqNfxR
JRUFJLMilimkQB5KUp7KOma9hLxiWmuTl7sCAwEAAaOCAewwggHoMB0GA1UdDgQW
BBT/Xya9EzKm8Tp9kZoxF+CuHuxd4TAfBgNVHSMEGDAWgBSaDMC7Yx0VExAjhJCD
2UGi2836ZTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO
oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTVlLTC9t
Z3pBdTJNZEZSTVFJNFNRZzlsQm90dk4tbVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L21nekF1Mk1kRlJNUUk0U1FnOWxCb3R2Ti1tVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0lNWUtML18xOG12Uk15cHZFNmZaR2FNUmZn
cmg3c1hlRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y
cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgvwQw
DQYJKoZIhvcNAQELBQADggEBAFqUJF33c8tZHQDTGM+FFVQHCJtQzFvT+AeP93b4
8xLlb4CydD70Ht+/vKzRHTuJucz2lQ3xCtiiLH1zJdoWi4GkeGfLHzKW05ugZRoR
bHrHyQPa3z3Ie40bs2bHK5zijCClcX9XSJjHVeOfytyvMxp5sw4hFZDF1mvCUnwi
sCV1RhvqcNZZkguOg7lKg4TIkd4UXB1VvnHH77KS7J8wM/8kj539IulCBrX3ZKlt
eY6XkvQ6dUJ9JJ+6NXuQqIfPDl7KNpwcB45R7qgu71s5crdGBW2konBPo4mRBPy1
bEOnt7lZT6HQOw4ph965tiCX+u194k65I5E2VhbQ86P9/Rc=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:37 2025 by rpki-client