Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RENREN/qTVvhIXNOYKmIClU-T68w4lTA-o.roa
File: qTVvhIXNOYKmIClU-T68w4lTA-o.roa (raw, json)
Hash identifier: TdFqb3KMolgqiTUk+LvFvplAugD6hrIjY6zAnQ3plgc=
Subject key identifier: A9:35:6F:84:85:CD:39:82:A6:20:29:54:F9:3E:BC:C3:89:53:03:EA
Certificate issuer: /CN=DB27F7B21D588E1F393973F41C56CA41F8099334
Certificate serial: 0173
Authority key identifier: DB:27:F7:B2:1D:58:8E:1F:39:39:73:F4:1C:56:CA:41:F8:09:93:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/qTVvhIXNOYKmIClU-T68w4lTA-o.roa
Signing time: Mon 10 Feb 2025 13:43:22 +0000
ROA not before: Mon 10 Feb 2025 13:43:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.69.48.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371 (0x173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB27F7B21D588E1F393973F41C56CA41F8099334
Validity
Not Before: Feb 10 13:43:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A9356F8485CD3982A6202954F93EBCC3895303EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:52:3c:07:3b:1f:17:10:ed:ad:99:23:3a:e6:
48:a4:7b:8c:b8:a5:5f:26:84:e2:b3:7c:56:71:17:
32:6d:79:30:80:b8:e2:4e:5e:62:bf:2e:5a:4c:c9:
0e:04:ea:0c:b9:77:e8:83:9b:30:2f:93:1b:e2:44:
50:4f:92:db:a9:74:bc:8b:9e:94:e8:74:90:80:35:
0e:55:b7:24:2f:88:43:d3:63:3a:e4:ac:1b:db:27:
3a:cc:7a:49:10:32:8c:01:84:a9:cf:68:75:da:8c:
1e:4f:be:e7:ae:16:9d:c0:d2:06:45:72:a1:15:1d:
50:29:72:3c:ef:a0:76:7a:9d:31:d6:e1:81:c8:ca:
09:99:75:15:fd:43:8a:a7:14:ba:fe:0c:0f:80:f5:
75:94:4f:14:6e:49:21:e6:bc:80:cb:c6:b7:f1:56:
48:9b:11:b1:9e:27:b4:79:e1:1e:dd:3b:06:cf:4a:
7b:7e:6d:a5:b1:f2:b5:68:67:dd:86:d6:a7:cd:4a:
30:56:74:00:7f:8c:d9:f6:c0:a2:fb:56:b9:1f:13:
1f:dc:8f:2c:90:61:43:c4:08:b5:77:26:03:e8:68:
07:73:73:cb:d8:34:fe:a9:de:58:21:1a:49:63:aa:
66:56:f9:8b:d7:c0:38:28:5c:95:b8:27:ea:e0:ee:
9a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:35:6F:84:85:CD:39:82:A6:20:29:54:F9:3E:BC:C3:89:53:03:EA
X509v3 Authority Key Identifier:
keyid:DB:27:F7:B2:1D:58:8E:1F:39:39:73:F4:1C:56:CA:41:F8:09:93:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/qTVvhIXNOYKmIClU-T68w4lTA-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.48.0/23
Signature Algorithm: sha256WithRSAEncryption
70:a9:bb:f9:af:df:1f:be:75:af:9d:06:44:ec:15:e3:ee:7d:
64:06:9e:51:09:3b:7d:a7:d7:89:28:49:59:a2:a9:87:0f:99:
3b:c4:af:03:80:18:11:c4:0c:f6:52:ef:5a:95:19:2a:c2:f2:
c8:28:af:f9:6c:00:8c:44:31:ac:1d:ab:42:b7:d9:4b:2c:e9:
b0:af:89:e5:98:ab:da:63:d5:2a:34:43:fd:15:58:7c:d7:fd:
5f:5e:23:02:b0:62:b3:03:b2:64:73:e7:2c:21:63:04:34:29:
a3:e5:50:8c:81:b9:bb:61:28:95:7a:51:f7:28:c8:ca:bd:e0:
fa:05:aa:c4:6b:b7:b8:78:ef:c5:99:fa:ed:27:89:16:a3:fa:
28:5c:58:97:e7:b4:7b:64:5b:44:38:71:10:3c:04:26:47:ed:
21:16:7a:05:77:3d:45:5e:6f:30:28:52:02:13:09:36:68:a0:
f0:f1:99:56:0d:fc:d1:ee:64:82:53:49:e0:f1:10:c0:36:ce:
1a:74:5b:a5:36:7a:12:20:f4:8c:17:83:63:93:de:51:cd:40:
18:d7:bd:aa:ea:b7:93:95:4e:b3:58:e2:52:d5:ae:52:7e:db:
95:be:b1:4a:6b:f4:6b:4b:2c:05:da:ee:16:5b:df:94:2b:a2:
c4:01:8c:03
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIy
N0Y3QjIxRDU4OEUxRjM5Mzk3M0Y0MUM1NkNBNDFGODA5OTMzNDAeFw0yNTAyMTAx
MzQzMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5MzU2Rjg0ODVDRDM5
ODJBNjIwMjk1NEY5M0VCQ0MzODk1MzAzRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDpUjwHOx8XEO2tmSM65kike4y4pV8mhOKzfFZxFzJteTCAuOJO
XmK/LlpMyQ4E6gy5d+iDmzAvkxviRFBPktupdLyLnpTodJCANQ5VtyQviEPTYzrk
rBvbJzrMekkQMowBhKnPaHXajB5PvueuFp3A0gZFcqEVHVApcjzvoHZ6nTHW4YHI
ygmZdRX9Q4qnFLr+DA+A9XWUTxRuSSHmvIDLxrfxVkibEbGeJ7R54R7dOwbPSnt+
baWx8rVoZ92G1qfNSjBWdAB/jNn2wKL7VrkfEx/cjyyQYUPECLV3JgPoaAdzc8vY
NP6p3lghGkljqmZW+YvXwDgoXJW4J+rg7poTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUqTVvhIXNOYKmIClU+T68w4lTA+owHwYDVR0jBBgwFoAU2yf3sh1Yjh85OXP0
HFbKQfgJkzQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVOUkVO
LzJ5ZjNzaDFZamg4NU9YUDBIRmJLUWZnSmt6US5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvMnlmM3NoMVlqaDg1T1hQMEhGYktRZmdKa3pRLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVOUkVOL3FUVnZoSVhOT1lLbUlDbFUt
VDY4dzRsVEEtby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn
RTAwDQYJKoZIhvcNAQELBQADggEBAHCpu/mv3x++da+dBkTsFePufWQGnlEJO32n
14koSVmiqYcPmTvErwOAGBHEDPZS71qVGSrC8sgor/lsAIxEMawdq0K32Uss6bCv
ieWYq9pj1So0Q/0VWHzX/V9eIwKwYrMDsmRz5ywhYwQ0KaPlUIyBubthKJV6Ufco
yMq94PoFqsRrt7h478WZ+u0niRaj+ihcWJfntHtkW0Q4cRA8BCZH7SEWegV3PUVe
bzAoUgITCTZooPDxmVYN/NHuZIJTSeDxEMA2zhp0W6U2ehIg9IwXg2OT3lHNQBjX
varqt5OVTrNY4lLVrlJ+25W+sUpr9GtLLAXa7hZb35QrosQBjAM=
-----END CERTIFICATE-----
Generated at Thu Apr 17 13:10:18 2025 by rpki-client