Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JDA/4_5tOUmng9CN-3I4Lg96RUYKErk.roa
File: 4_5tOUmng9CN-3I4Lg96RUYKErk.roa (raw, json)
Hash identifier: 5WFaUH/qL9DN1XZ8JRpjzr55K8i7w27mIS4n2BKYjts=
Subject key identifier: E3:FE:6D:39:49:A7:83:D0:8D:FB:72:38:2E:0F:7A:45:46:0A:12:B9
Certificate issuer: /CN=86F6D06B4049386A106E5ED22656A93D9F355274
Certificate serial: 0133
Authority key identifier: 86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/4_5tOUmng9CN-3I4Lg96RUYKErk.roa
Signing time: Mon 10 Feb 2025 13:45:01 +0000
ROA not before: Mon 10 Feb 2025 13:45:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18041
IP address blocks: 210.79.154.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307 (0x133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86F6D06B4049386A106E5ED22656A93D9F355274
Validity
Not Before: Feb 10 13:45:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E3FE6D3949A783D08DFB72382E0F7A45460A12B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2a:67:1d:0d:43:35:b7:c8:46:a7:68:35:a4:
98:13:df:b7:a4:d5:1b:df:7f:24:ea:61:68:6b:45:
5d:79:60:73:61:9e:5f:cf:52:97:c0:9f:37:74:89:
c5:e2:b5:3b:e2:51:04:b8:e0:f3:02:e4:19:fd:68:
e5:1d:65:74:c4:e6:06:15:a3:e9:b5:0c:4f:66:09:
e9:00:41:55:db:c9:dd:95:94:ff:43:64:9a:b1:ca:
cd:bb:54:09:88:19:a9:c2:a8:17:b0:21:99:a2:b4:
87:42:5f:dd:06:0f:40:28:d5:8c:34:94:62:47:89:
08:30:24:43:67:fc:ed:6d:4b:d6:9d:a3:26:2b:41:
99:fb:46:09:9c:1e:03:b9:96:86:51:4c:52:a9:dd:
6b:7c:9b:29:79:db:ac:c0:9e:50:00:85:b2:d6:51:
af:b3:12:b9:6a:72:3e:69:e1:8f:e4:6e:00:2b:31:
57:4d:45:a7:da:bd:c8:19:cc:23:0a:41:46:5f:90:
1c:40:83:12:62:e0:2f:02:74:3e:47:6f:c9:93:03:
69:19:d0:44:98:d2:96:84:51:ee:19:2e:a1:f2:d4:
e3:18:ab:f5:90:7f:22:e0:f8:08:3b:b7:8c:e2:36:
82:f8:7d:29:f2:e7:d8:e5:79:0d:32:e9:84:7f:44:
64:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FE:6D:39:49:A7:83:D0:8D:FB:72:38:2E:0F:7A:45:46:0A:12:B9
X509v3 Authority Key Identifier:
keyid:86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/4_5tOUmng9CN-3I4Lg96RUYKErk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.154.0/23
Signature Algorithm: sha256WithRSAEncryption
34:fc:75:32:5e:f0:47:b6:bc:49:49:af:e6:6f:d1:ef:5a:ad:
33:56:48:0e:8b:f8:8f:72:ce:0b:02:54:68:17:a4:0b:17:52:
36:92:66:65:89:3d:62:e1:1e:2f:e3:27:2e:f1:eb:c6:82:39:
b7:58:ff:16:0f:46:f4:45:f0:89:59:13:f6:87:d8:5b:06:f0:
b7:ab:d5:f3:65:9b:b3:9f:16:d9:db:eb:e0:8f:42:6d:42:db:
f7:b9:a6:e1:bb:95:0d:8e:82:73:ce:70:0a:57:7b:91:e6:d7:
34:c5:2f:cc:28:83:39:e6:e3:47:75:30:dc:f9:8e:0a:c3:17:
e9:62:67:24:13:54:d2:ff:aa:31:ba:09:ee:ca:fc:0a:75:9f:
4d:cf:e2:3f:9d:bd:eb:22:80:fd:66:0a:9e:c2:66:d2:94:39:
4f:05:d8:ec:10:af:2b:00:10:dc:f6:7b:ff:eb:a9:ee:7e:a7:
0d:0a:f2:d4:52:23:15:42:16:9e:19:2b:8d:21:c1:1f:47:00:
a4:11:92:99:3a:6b:dd:50:67:42:f9:93:21:8f:b8:12:a4:47:
fb:e1:af:d6:5e:e0:8e:76:a7:71:08:ee:bc:54:89:6d:66:ae:
61:d2:8b:18:c9:db:d2:be:fc:9e:68:3f:15:ab:f0:7d:1b:c3:
4a:0f:14:2c
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZG
NkQwNkI0MDQ5Mzg2QTEwNkU1RUQyMjY1NkE5M0Q5RjM1NTI3NDAeFw0yNTAyMTAx
MzQ1MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzRkU2RDM5NDlBNzgz
RDA4REZCNzIzODJFMEY3QTQ1NDYwQTEyQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5KmcdDUM1t8hGp2g1pJgT37ek1RvffyTqYWhrRV15YHNhnl/P
UpfAnzd0icXitTviUQS44PMC5Bn9aOUdZXTE5gYVo+m1DE9mCekAQVXbyd2VlP9D
ZJqxys27VAmIGanCqBewIZmitIdCX90GD0Ao1Yw0lGJHiQgwJENn/O1tS9adoyYr
QZn7RgmcHgO5loZRTFKp3Wt8myl526zAnlAAhbLWUa+zErlqcj5p4Y/kbgArMVdN
RafavcgZzCMKQUZfkBxAgxJi4C8CdD5Hb8mTA2kZ0ESY0paEUe4ZLqHy1OMYq/WQ
fyLg+Ag7t4ziNoL4fSny59jleQ0y6YR/RGRjAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU4/5tOUmng9CN+3I4Lg96RUYKErkwHwYDVR0jBBgwFoAUhvbQa0BJOGoQbl7S
JlapPZ81UnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkRBL2h2
YlFhMEJKT0dvUWJsN1NKbGFwUFo4MVVuUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
aHZiUWEwQkpPR29RYmw3U0psYXBQWjgxVW5RLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvSkRBLzRfNXRPVW1uZzlDTi0zSTRMZzk2UlVZ
S0Vyay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHST5owDQYJ
KoZIhvcNAQELBQADggEBADT8dTJe8Ee2vElJr+Zv0e9arTNWSA6L+I9yzgsCVGgX
pAsXUjaSZmWJPWLhHi/jJy7x68aCObdY/xYPRvRF8IlZE/aH2FsG8Ler1fNlm7Of
Ftnb6+CPQm1C2/e5puG7lQ2OgnPOcApXe5Hm1zTFL8wogznm40d1MNz5jgrDF+li
ZyQTVNL/qjG6Ce7K/Ap1n03P4j+dvesigP1mCp7CZtKUOU8F2OwQrysAENz2e//r
qe5+pw0K8tRSIxVCFp4ZK40hwR9HAKQRkpk6a91QZ0L5kyGPuBKkR/vhr9Ze4I52
p3EI7rxUiW1mrmHSixjJ29K+/J5oPxWr8H0bw0oPFCw=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:39:32 2025 by rpki-client