Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DG0Twt6hjQAjaQ48tN49Hvj-a-c.roa
File: DG0Twt6hjQAjaQ48tN49Hvj-a-c.roa (raw, json)
Hash identifier: NvzLsIzD6QH+2pFOWYGxRMGzqJdhifcD8jUAC01ge1g=
Subject key identifier: 0C:6D:13:C2:DE:A1:8D:00:23:69:0E:3C:B4:DE:3D:1E:F8:FE:6B:E7
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0DAE
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DG0Twt6hjQAjaQ48tN49Hvj-a-c.roa
Signing time: Mon 10 Feb 2025 14:06:11 +0000
ROA not before: Mon 10 Feb 2025 14:06:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9416
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3502 (0xdae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 10 14:06:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0C6D13C2DEA18D0023690E3CB4DE3D1EF8FE6BE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:81:c9:21:36:f7:2d:43:c7:8f:de:02:27:
db:5f:01:95:f5:2d:c8:a0:61:be:46:e4:cb:27:c3:
ed:e5:f3:d0:97:ba:fa:34:00:e7:69:34:77:86:71:
0c:ae:ab:c1:74:c9:b0:40:33:3e:51:62:17:c4:95:
3d:9e:ce:bd:ab:50:7d:19:ea:2e:1c:6e:85:05:99:
cc:09:ef:cb:83:d5:d7:56:58:4a:e7:6d:3b:9a:d4:
4e:e1:f1:2d:cf:c8:6b:89:b1:0b:d2:36:88:b0:9c:
81:20:f6:73:4f:8d:f9:ab:51:76:80:ce:c3:85:77:
9e:a8:fa:55:cd:90:2e:2e:0e:aa:48:4c:a8:18:02:
f3:93:24:6e:99:34:58:8e:7b:62:72:d2:96:f2:7f:
18:1e:d9:16:16:e5:9c:99:05:1e:ec:67:68:cd:8e:
d8:63:7e:32:d3:c7:02:46:75:29:d0:85:49:16:b5:
67:7e:8b:64:9c:0b:79:e6:46:28:ae:64:5b:41:b7:
ae:22:6f:e3:69:41:60:f9:43:5d:19:e6:9b:f4:2e:
a3:ab:61:56:00:ae:78:a1:ba:bb:46:6f:5b:cf:63:
21:11:8b:37:8b:9e:4b:54:c7:b4:b7:fe:1a:cf:5f:
c2:9f:19:31:a9:69:f2:52:db:6b:eb:97:22:53:16:
f9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6D:13:C2:DE:A1:8D:00:23:69:0E:3C:B4:DE:3D:1E:F8:FE:6B:E7
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DG0Twt6hjQAjaQ48tN49Hvj-a-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
58:68:36:cc:5a:71:b9:b9:1b:cc:99:53:fc:59:51:7e:f4:53:
d0:bc:12:d2:8d:a2:8e:84:d1:28:25:4c:90:59:a4:b1:8b:fa:
6a:aa:3a:c8:99:43:a8:37:28:30:ec:67:a1:3e:de:f1:fd:5a:
2a:64:d5:b2:dd:a3:a5:c8:ab:a0:f7:24:4f:a5:a1:16:d0:8b:
0a:13:80:e7:8f:7c:2a:62:10:a6:09:c5:11:a6:ed:de:e6:cd:
59:81:7a:ca:a8:86:1b:e0:73:d6:cc:33:57:6b:98:d6:82:69:
82:fd:c9:2a:98:22:62:13:65:3b:77:8d:2d:23:be:04:eb:07:
bc:e6:7c:52:a3:87:31:23:fb:59:df:d7:5e:eb:f8:a2:ce:5a:
3a:55:29:75:91:14:cc:bb:28:1e:7f:dd:2c:e0:24:db:b7:de:
b2:0f:83:6d:b4:a5:af:ad:52:88:19:58:1a:32:fa:10:3a:49:
f8:c1:08:93:c6:d8:09:9b:f1:58:0c:07:6c:2f:02:64:18:5a:
12:84:04:ef:37:c8:ba:1f:ab:24:10:02:31:cc:00:96:4e:7f:
07:7d:bd:b0:68:fa:70:f1:05:91:80:90:39:14:b5:64:78:3f:
dc:c4:82:e0:9c:f2:a2:bf:0d:74:ee:c0:e7:cb:b1:cb:5e:f9:
b4:9a:88:97
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx
NDA2MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBDNkQxM0MyREVBMThE
MDAyMzY5MEUzQ0I0REUzRDFFRjhGRTZCRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqx4HJITb3LUPHj94CJ9tfAZX1LcigYb5G5Msnw+3l89CXuvo0
AOdpNHeGcQyuq8F0ybBAMz5RYhfElT2ezr2rUH0Z6i4cboUFmcwJ78uD1ddWWErn
bTua1E7h8S3PyGuJsQvSNoiwnIEg9nNPjfmrUXaAzsOFd56o+lXNkC4uDqpITKgY
AvOTJG6ZNFiOe2Jy0pbyfxge2RYW5ZyZBR7sZ2jNjthjfjLTxwJGdSnQhUkWtWd+
i2ScC3nmRiiuZFtBt64ib+NpQWD5Q10Z5pv0LqOrYVYArnihurtGb1vPYyERizeL
nktUx7S3/hrPX8KfGTGpafJS22vrlyJTFvlpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUDG0Twt6hjQAjaQ48tN49Hvj+a+cwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL0RHMFR3dDZoalFBamFRNDh0
TjQ5SHZqLWEtYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3
DoAwDQYJKoZIhvcNAQELBQADggEBAFhoNsxacbm5G8yZU/xZUX70U9C8EtKNoo6E
0SglTJBZpLGL+mqqOsiZQ6g3KDDsZ6E+3vH9Wipk1bLdo6XIq6D3JE+loRbQiwoT
gOePfCpiEKYJxRGm7d7mzVmBesqohhvgc9bMM1drmNaCaYL9ySqYImITZTt3jS0j
vgTrB7zmfFKjhzEj+1nf117r+KLOWjpVKXWRFMy7KB5/3SzgJNu33rIPg220pa+t
UogZWBoy+hA6SfjBCJPG2Amb8VgMB2wvAmQYWhKEBO83yLofqyQQAjHMAJZOfwd9
vbBo+nDxBZGAkDkUtWR4P9zEguCc8qK/DXTuwOfLscte+bSaiJc=
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:24 2025 by rpki-client