Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/crC5Fvw43gBQLqU2VLnnCU4fPR0.roa
File: crC5Fvw43gBQLqU2VLnnCU4fPR0.roa (raw, json)
Hash identifier: CbAAo0Q0LmET1KkSCbcFfvgOPAJ8ZeLQhUWI0xcByjQ=
Subject key identifier: 72:B0:B9:16:FC:38:DE:00:50:2E:A5:36:54:B9:E7:09:4E:1F:3D:1D
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0DA6
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/crC5Fvw43gBQLqU2VLnnCU4fPR0.roa
Signing time: Mon 10 Feb 2025 14:06:09 +0000
ROA not before: Mon 10 Feb 2025 14:06:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9416
IP address blocks: 115.43.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3494 (0xda6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 10 14:06:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=72B0B916FC38DE00502EA53654B9E7094E1F3D1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2e:02:b2:7a:71:29:f7:45:01:76:13:45:99:
96:39:23:f6:2f:e0:7f:e1:9e:69:a5:ba:98:64:25:
f8:e4:e6:28:af:25:05:ef:7a:66:52:85:71:41:12:
6d:8a:77:e4:84:77:13:e4:cb:63:71:0e:d0:f9:2b:
d4:93:c2:2b:a2:f6:1e:7c:0b:66:12:31:eb:c6:f6:
d5:1a:92:d3:bd:a5:37:d4:28:6f:fd:00:83:79:e5:
1e:48:ea:6c:10:7f:b1:24:1b:99:20:fb:88:ae:99:
ab:a0:35:88:75:16:38:4a:7d:db:31:2f:5c:c8:86:
1f:47:7e:e4:92:ed:a0:a8:ea:02:a4:09:05:ca:0c:
52:32:ee:8a:9c:f0:e2:85:2d:68:da:e2:1d:37:b5:
50:2b:f9:02:15:b1:55:1c:98:03:7f:88:47:72:67:
bb:97:db:a7:6c:a5:c3:58:39:e0:ed:92:b6:c1:8b:
a8:6e:4b:59:8e:b2:1e:f8:23:9a:59:07:79:9f:19:
16:1e:30:b0:4e:f2:a8:5a:e3:08:86:4c:66:fc:9f:
44:ea:e9:bf:f3:f2:5c:aa:25:5e:26:00:a4:1c:6e:
10:47:cc:76:f0:20:8f:41:5f:de:5b:06:b0:0a:f2:
a2:29:c6:3a:4b:9f:d3:16:ff:d5:b8:d7:b7:43:5d:
ae:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B0:B9:16:FC:38:DE:00:50:2E:A5:36:54:B9:E7:09:4E:1F:3D:1D
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/crC5Fvw43gBQLqU2VLnnCU4fPR0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:b7:32:f9:63:0c:e5:f6:ce:7d:7b:88:62:f7:4e:c2:46:fc:
c2:73:b7:4d:e3:18:de:6a:31:31:b1:82:db:c8:c5:50:8e:79:
d5:d6:8b:a6:aa:41:e5:98:f7:15:9d:39:1c:46:bb:39:fe:3b:
45:55:4b:a4:6f:06:20:02:96:9d:eb:f8:b2:92:49:dd:af:a3:
c1:ca:4c:4f:dd:ee:ad:11:f3:17:72:e8:c5:9b:7f:9c:47:e6:
cc:cb:fb:a7:a0:29:5a:8f:d7:ce:1c:a5:10:9e:88:af:98:5c:
e4:e4:c1:52:08:7e:6b:8e:c5:54:4f:5c:1b:e5:85:d5:3c:ae:
16:f6:7f:06:ce:f4:f8:c2:c2:2e:34:7f:b0:ab:92:9c:3e:2a:
75:ad:7e:38:58:33:91:d4:19:e5:3c:9a:d2:ab:7a:3f:f6:88:
cc:be:34:08:7e:e9:c2:b7:49:3b:0b:3e:f7:03:22:07:6e:78:
78:7c:97:cb:b3:6a:f2:c9:a3:a2:fb:19:6b:1c:4e:cd:f8:af:
92:cb:0e:8b:83:30:5c:21:24:a2:e5:09:8e:36:26:a7:f4:6d:
7b:96:13:6c:8f:e5:00:3b:02:87:6d:e7:32:c8:9e:71:ef:29:
84:3d:37:0e:c2:27:89:9f:d4:e3:b0:35:fa:a3:ae:42:90:7e:
f0:06:95:8b
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICDaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx
NDA2MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcyQjBCOTE2RkMzOERF
MDA1MDJFQTUzNjU0QjlFNzA5NEUxRjNEMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDELgKyenEp90UBdhNFmZY5I/Yv4H/hnmmluphkJfjk5iivJQXv
emZShXFBEm2Kd+SEdxPky2NxDtD5K9STwiui9h58C2YSMevG9tUaktO9pTfUKG/9
AIN55R5I6mwQf7EkG5kg+4iumaugNYh1FjhKfdsxL1zIhh9HfuSS7aCo6gKkCQXK
DFIy7oqc8OKFLWja4h03tVAr+QIVsVUcmAN/iEdyZ7uX26dspcNYOeDtkrbBi6hu
S1mOsh74I5pZB3mfGRYeMLBO8qha4wiGTGb8n0Tq6b/z8lyqJV4mAKQcbhBHzHbw
II9BX95bBrAK8qIpxjpLn9MW/9W417dDXa4fAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUcrC5Fvw43gBQLqU2VLnnCU4fPR0wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL2NyQzVGdnc0M2dCUUxxVTJW
TG5uQ1U0ZlBSMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBz
KzANBgkqhkiG9w0BAQsFAAOCAQEApLcy+WMM5fbOfXuIYvdOwkb8wnO3TeMY3mox
MbGC28jFUI551daLpqpB5Zj3FZ05HEa7Of47RVVLpG8GIAKWnev4spJJ3a+jwcpM
T93urRHzF3LoxZt/nEfmzMv7p6ApWo/XzhylEJ6Ir5hc5OTBUgh+a47FVE9cG+WF
1TyuFvZ/Bs70+MLCLjR/sKuSnD4qda1+OFgzkdQZ5Tya0qt6P/aIzL40CH7pwrdJ
Ows+9wMiB254eHyXy7Nq8smjovsZaxxOzfivkssOi4MwXCEkouUJjjYmp/Rte5YT
bI/lADsCh23nMsiece8phD03DsIniZ/U47A1+qOuQpB+8AaViw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:04 2025 by rpki-client