Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Rcmw_EqifKuhNsCxGxFmQX2JE10.roa
File: Rcmw_EqifKuhNsCxGxFmQX2JE10.roa (raw, json)
Hash identifier: pAbEqM/9H4dqsjzC38gg395umLnfZ7rXFaKPY5ovwSA=
Subject key identifier: 45:C9:B0:FC:4A:A2:7C:AB:A1:36:C0:B1:1B:11:66:41:7D:89:13:5D
Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Certificate serial: 27
Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Rcmw_EqifKuhNsCxGxFmQX2JE10.roa
Signing time: Mon 03 Jun 2024 17:12:00 +0000
ROA not before: Mon 03 Jun 2024 17:12:00 +0000
ROA not after: Sat 26 Apr 2025 10:00:55 +0000
asID: 399624
IP address blocks: 157.66.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39 (0x27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Validity
Not Before: Jun 3 17:12:00 2024 GMT
Not After : Apr 26 10:00:55 2025 GMT
Subject: CN=45C9B0FC4AA27CABA136C0B11B1166417D89135D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:1e:40:c5:6c:f9:ba:1e:97:a2:3a:2f:1c:
cf:96:13:42:b4:41:5d:01:b3:dd:a6:7e:d8:bf:e6:
51:fd:34:d2:10:c7:2e:70:70:57:d3:a6:b4:16:52:
9f:7b:1b:b9:eb:16:91:68:1e:01:f7:23:90:b0:70:
b1:64:57:49:82:20:c2:38:f9:21:62:d1:70:db:08:
8e:00:66:16:f0:33:25:f6:c1:f1:67:ec:42:5b:e4:
60:32:49:eb:9e:7d:b5:f1:2f:c0:5d:56:6f:2e:37:
5d:96:02:04:ec:db:48:ae:78:00:cc:e6:0c:59:70:
1c:b8:47:3a:be:dd:ae:ce:23:41:33:87:44:d2:42:
92:6c:45:38:a3:61:8d:21:89:a2:75:3b:3f:d2:98:
69:5b:43:d5:26:dd:6d:7a:30:43:e7:d1:3b:16:74:
dd:c3:a1:81:52:43:92:65:07:fb:c7:78:b9:74:dd:
3e:0c:87:c3:79:d8:67:2a:2f:03:8b:0c:73:1a:a3:
59:d4:87:2d:a2:e0:fa:25:c8:2a:f3:7d:cb:44:9a:
58:09:c7:9b:26:77:43:5b:fa:f7:89:36:e4:60:ef:
f8:6c:26:82:12:8a:13:d1:8e:3c:bb:7d:29:67:c8:
95:a3:2f:88:19:6b:f7:02:80:fa:71:87:7a:de:72:
9b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C9:B0:FC:4A:A2:7C:AB:A1:36:C0:B1:1B:11:66:41:7D:89:13:5D
X509v3 Authority Key Identifier:
keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Rcmw_EqifKuhNsCxGxFmQX2JE10.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.66.167.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:e2:b8:7d:f1:15:44:f3:e0:1d:ae:3f:d4:9e:16:a1:20:3e:
b3:ab:23:d1:db:5e:3b:bb:d0:12:17:3c:eb:73:85:8d:88:68:
a5:40:37:17:b1:5e:c3:6c:65:44:14:a5:2e:04:05:75:7d:8b:
ef:88:5b:b4:ca:68:2a:37:78:93:52:f4:a6:20:9b:79:60:b0:
33:45:0a:38:89:db:3e:5e:5f:b3:83:ba:9e:b4:b6:e1:de:ee:
3a:c7:0a:13:02:5f:95:88:ad:82:48:17:c6:65:85:e1:34:86:
61:7b:6a:b7:54:17:66:58:05:a7:86:97:26:48:40:81:91:27:
65:80:45:b8:9f:3e:1b:04:10:00:09:20:6d:7b:fb:35:53:61:
ec:72:6c:63:b2:d7:ed:9f:cd:fd:ef:a9:d0:b0:d2:40:89:01:
63:13:64:0d:b8:49:a3:d2:5f:da:4b:ba:82:30:30:89:09:a6:
1a:c0:75:07:24:04:cd:18:58:67:c6:b0:c0:f5:39:35:f2:24:
9e:b3:86:b2:25:67:d8:75:2a:db:70:50:2f:f9:c3:da:91:e0:
71:46:06:a0:4a:bd:e0:a9:d5:60:d4:33:8a:55:ba:27:70:ca:
bf:27:6e:12:0e:37:71:b4:1b:09:f8:ff:6e:d9:71:ee:f1:e1:
09:8b:29:9f
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOTY2
QjU1OTA5MzI0MTgwQTg4QTQ1RTFGNjgzQ0Y0RDJFRDlCQ0E1MB4XDTI0MDYwMzE3
MTIwMFoXDTI1MDQyNjEwMDA1NVowMzExMC8GA1UEAxMoNDVDOUIwRkM0QUEyN0NB
QkExMzZDMEIxMUIxMTY2NDE3RDg5MTM1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALPbHkDFbPm6HpeiOi8cz5YTQrRBXQGz3aZ+2L/mUf000hDHLnBw
V9OmtBZSn3sbuesWkWgeAfcjkLBwsWRXSYIgwjj5IWLRcNsIjgBmFvAzJfbB8Wfs
QlvkYDJJ6559tfEvwF1Wby43XZYCBOzbSK54AMzmDFlwHLhHOr7drs4jQTOHRNJC
kmxFOKNhjSGJonU7P9KYaVtD1SbdbXowQ+fROxZ03cOhgVJDkmUH+8d4uXTdPgyH
w3nYZyovA4sMcxqjWdSHLaLg+iXIKvN9y0SaWAnHmyZ3Q1v694k25GDv+GwmghKK
E9GOPLt9KWfIlaMviBlr9wKA+nGHet5ymzECAwEAAaOCAewwggHoMB0GA1UdDgQW
BBRFybD8SqJ8q6E2wLEbEWZBfYkTXTAfBgNVHSMEGDAWgBTZZrVZCTJBgKiKReH2
g89NLtm8pTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO
oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8y
V2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzJXYTFXUWt5UVlDb2lrWGg5b1BQVFM3WnZLVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0xJUlVOL1JjbXdfRXFpZkt1aE5zQ3hHeEZt
UVgySkUxMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y
cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQqcw
DQYJKoZIhvcNAQELBQADggEBANDiuH3xFUTz4B2uP9SeFqEgPrOrI9HbXju70BIX
POtzhY2IaKVANxexXsNsZUQUpS4EBXV9i++IW7TKaCo3eJNS9KYgm3lgsDNFCjiJ
2z5eX7ODup60tuHe7jrHChMCX5WIrYJIF8ZlheE0hmF7ardUF2ZYBaeGlyZIQIGR
J2WARbifPhsEEAAJIG17+zVTYexybGOy1+2fzf3vqdCw0kCJAWMTZA24SaPSX9pL
uoIwMIkJphrAdQckBM0YWGfGsMD1OTXyJJ6zhrIlZ9h1KttwUC/5w9qR4HFGBqBK
veCp1WDUM4pVuidwyr8nbhION3G0Gwn4/27Zce7x4QmLKZ8=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:12:35 2025 by rpki-client