Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/vlSzuQs5bfY2L_nhMlE29c5gECU.roa
File: vlSzuQs5bfY2L_nhMlE29c5gECU.roa (raw, json)
Hash identifier: lAT/c3BWELsfDEPJwiUGGG3bT9EI9hI1ZBTlszZuelU=
Subject key identifier: BE:54:B3:B9:0B:39:6D:F6:36:2F:F9:E1:32:51:36:F5:CE:60:10:25
Certificate issuer: /CN=76637EEBEFEF70C538CEADDCF9848FAA79C736A5
Certificate serial: 0297
Authority key identifier: 76:63:7E:EB:EF:EF:70:C5:38:CE:AD:DC:F9:84:8F:AA:79:C7:36:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dmN-6-_vcMU4zq3c-YSPqnnHNqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/vlSzuQs5bfY2L_nhMlE29c5gECU.roa
Signing time: Mon 10 Feb 2025 13:57:14 +0000
ROA not before: Mon 10 Feb 2025 13:57:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7483
IP address blocks: 103.189.108.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663 (0x297)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76637EEBEFEF70C538CEADDCF9848FAA79C736A5
Validity
Not Before: Feb 10 13:57:14 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BE54B3B90B396DF6362FF9E1325136F5CE601025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0c:cd:30:cb:d6:d4:e9:6f:78:4b:ad:0f:4f:
3f:5e:28:0b:84:b1:fc:c9:8a:85:70:30:d9:60:70:
be:a7:02:44:58:ee:db:2d:97:b7:45:e5:e6:78:13:
34:66:10:55:5a:c9:1c:67:22:6d:48:c1:5e:70:f7:
eb:02:21:83:42:32:04:e3:ac:18:d2:9e:cc:66:d3:
6d:02:8f:48:50:fd:6d:5f:c5:09:b2:06:78:d7:74:
7e:7c:3d:4e:67:c4:b0:18:98:98:21:32:61:cb:f9:
f1:c1:f6:61:e7:7c:db:b8:47:90:ec:be:fb:4f:89:
40:22:be:1b:fc:be:db:06:e8:6f:45:63:e3:5c:e1:
76:56:01:16:81:9b:73:09:3b:db:79:3a:68:3b:07:
26:61:46:6e:16:52:cc:25:35:53:8a:05:b9:cf:2e:
f7:b9:6f:4c:b0:6e:be:c7:c0:0d:7e:2e:b3:a5:43:
98:11:a3:d6:dc:09:36:78:9e:0a:95:2c:50:84:51:
20:4a:07:c5:de:22:76:11:8e:47:47:8a:9e:4b:cd:
fc:cc:a5:d8:63:af:d6:2b:db:da:81:d9:52:e3:bc:
52:55:2a:e9:10:46:6c:2f:9f:09:c5:e1:e3:6c:03:
81:84:0c:46:9d:f8:d9:66:ea:09:1d:f6:76:a9:50:
b9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:54:B3:B9:0B:39:6D:F6:36:2F:F9:E1:32:51:36:F5:CE:60:10:25
X509v3 Authority Key Identifier:
keyid:76:63:7E:EB:EF:EF:70:C5:38:CE:AD:DC:F9:84:8F:AA:79:C7:36:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/dmN-6-_vcMU4zq3c-YSPqnnHNqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dmN-6-_vcMU4zq3c-YSPqnnHNqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/vlSzuQs5bfY2L_nhMlE29c5gECU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.108.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:3a:40:37:19:a1:b1:c1:00:9c:cc:d1:f0:1d:00:8e:fb:f0:
6f:95:91:4f:57:2b:5c:28:8a:fb:5a:93:4e:7c:83:09:af:1a:
99:de:5a:8a:df:08:ad:23:3a:bc:e5:59:5b:ce:96:8c:58:b0:
ec:c2:69:4f:75:ea:1d:d3:cb:2d:47:3c:27:df:14:0a:b9:6c:
89:98:9b:e4:c1:97:c3:df:7e:8a:d9:5f:75:26:41:a6:31:24:
e2:c0:e0:17:9d:1f:f5:03:47:a3:b2:ff:3a:78:35:dd:ec:89:
c3:b3:f3:a6:0a:2f:8c:82:11:44:6f:2d:26:65:b7:e2:99:c8:
57:10:92:60:b9:6c:1a:c2:81:a6:81:49:c6:ce:45:dd:18:b3:
ce:a1:d3:83:d0:49:00:4c:c8:c3:39:8c:18:1c:3d:49:f9:72:
da:4e:d4:b0:34:d8:ea:cf:34:4d:10:2b:66:d8:70:bc:d2:e5:
78:98:c0:41:50:ff:36:6c:34:42:8b:30:9d:35:e7:50:05:30:
07:6e:e6:ef:2f:32:2f:56:b2:c6:1d:0d:9f:00:32:c6:83:1e:
36:02:bb:5a:22:3d:74:57:e0:9b:75:4c:83:03:91:4b:50:a7:
6b:14:33:90:ea:da:2a:c6:63:bc:75:42:fe:0f:b3:2f:87:31:
1c:0c:86:b3
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICApcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzY2
MzdFRUJFRkVGNzBDNTM4Q0VBRERDRjk4NDhGQUE3OUM3MzZBNTAeFw0yNTAyMTAx
MzU3MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFNTRCM0I5MEIzOTZE
RjYzNjJGRjlFMTMyNTEzNkY1Q0U2MDEwMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtDM0wy9bU6W94S60PTz9eKAuEsfzJioVwMNlgcL6nAkRY7tst
l7dF5eZ4EzRmEFVayRxnIm1IwV5w9+sCIYNCMgTjrBjSnsxm020Cj0hQ/W1fxQmy
BnjXdH58PU5nxLAYmJghMmHL+fHB9mHnfNu4R5DsvvtPiUAivhv8vtsG6G9FY+Nc
4XZWARaBm3MJO9t5Omg7ByZhRm4WUswlNVOKBbnPLve5b0ywbr7HwA1+LrOlQ5gR
o9bcCTZ4ngqVLFCEUSBKB8XeInYRjkdHip5LzfzMpdhjr9Yr29qB2VLjvFJVKukQ
RmwvnwnF4eNsA4GEDEad+Nlm6gkd9napULlNAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUvlSzuQs5bfY2L/nhMlE29c5gECUwHwYDVR0jBBgwFoAUdmN+6+/vcMU4zq3c
+YSPqnnHNqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFJRkVO
R1RXL2RtTi02LV92Y01VNHpxM2MtWVNQcW5uSE5xVS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvZG1OLTYtX3ZjTVU0enEzYy1ZU1Bxbm5ITnFVLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFJRkVOR1RXL3ZsU3p1UXM1YmZZ
MkxfbmhNbEUyOWM1Z0VDVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFnvWwwDQYJKoZIhvcNAQELBQADggEBADw6QDcZobHBAJzM0fAdAI778G+V
kU9XK1woivtak058gwmvGpneWorfCK0jOrzlWVvOloxYsOzCaU916h3Tyy1HPCff
FAq5bImYm+TBl8PfforZX3UmQaYxJOLA4BedH/UDR6Oy/zp4Nd3sicOz86YKL4yC
EURvLSZlt+KZyFcQkmC5bBrCgaaBScbORd0Ys86h04PQSQBMyMM5jBgcPUn5ctpO
1LA02OrPNE0QK2bYcLzS5XiYwEFQ/zZsNEKLMJ0151AFMAdu5u8vMi9WssYdDZ8A
MsaDHjYCu1oiPXRX4Jt1TIMDkUtQp2sUM5Dq2irGY7x1Qv4Psy+HMRwMhrM=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:14 2025 by rpki-client