Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Co6PbR8k5BcjCVRUl5y7PwFTY7I.roa
File: Co6PbR8k5BcjCVRUl5y7PwFTY7I.roa (raw, json)
Hash identifier: OXJuvCS8/SnnJRhpsRWUrkIqILWLszVjv3EyBuWbMnI=
Subject key identifier: 0A:8E:8F:6D:1F:24:E4:17:23:09:54:54:97:9C:BB:3F:01:53:63:B2
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F09
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Co6PbR8k5BcjCVRUl5y7PwFTY7I.roa
Signing time: Mon 10 Feb 2025 14:16:19 +0000
ROA not before: Mon 10 Feb 2025 14:16:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 120.96.240.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3849 (0xf09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0A8E8F6D1F24E41723095454979CBB3F015363B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ad:e6:a7:aa:36:16:fd:4b:31:35:76:a9:a1:
78:f5:fe:72:8e:7d:fd:5d:6c:53:8e:fd:58:67:69:
85:3a:b2:92:60:07:f9:dc:c0:67:8c:0d:f0:c8:4b:
53:47:44:60:73:23:db:93:e5:88:6d:85:d4:ef:5e:
e7:71:f5:0e:10:70:c5:7f:7f:3d:05:48:33:40:7b:
00:a8:f6:80:6d:94:3b:5d:da:f6:0c:26:b9:07:f0:
c2:76:65:da:26:86:45:61:ce:a1:81:08:68:69:87:
77:f7:7c:30:c0:ef:bc:c9:7d:0e:c7:6b:ee:69:06:
65:4b:cb:89:f5:02:3d:8b:c0:e6:ad:c0:ed:43:99:
c7:3b:02:a7:e7:be:2e:13:26:58:e8:b6:c0:7c:bb:
28:30:31:b3:ec:cd:3f:3e:ea:a6:4a:8e:b0:72:ff:
fc:1d:2f:29:e0:74:16:cf:20:29:4b:97:d6:33:d5:
2e:b3:b9:13:cf:61:0a:8f:3a:b9:9b:2b:40:99:de:
ea:f4:cb:1b:9d:4d:61:7b:28:61:f4:56:8d:2f:39:
d2:2d:86:0c:65:2d:2d:93:91:60:0f:20:71:aa:b4:
42:2d:0c:c1:8d:30:27:f1:93:45:a5:dd:e7:19:c6:
5a:f0:72:31:98:75:d1:bf:c4:48:ee:28:4a:9a:2c:
90:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8E:8F:6D:1F:24:E4:17:23:09:54:54:97:9C:BB:3F:01:53:63:B2
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Co6PbR8k5BcjCVRUl5y7PwFTY7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.240.0/21
Signature Algorithm: sha256WithRSAEncryption
5d:50:bb:5c:31:4d:3d:b5:36:19:d4:08:34:25:7a:33:30:65:
38:0f:7e:b7:fa:a2:38:b8:cb:7e:2a:34:ab:29:b6:19:9e:a8:
4c:68:60:a4:9e:b0:e5:13:66:ca:50:f1:9f:7d:85:bc:16:a9:
90:7f:1c:06:0e:73:5f:f6:0e:42:e6:6c:b0:c0:52:46:95:33:
11:3e:af:ae:d8:85:a2:56:d8:96:d0:2c:1a:07:8a:06:1f:37:
9c:71:2f:05:3b:5f:14:2c:52:ea:e3:f6:f2:ac:b9:fb:a2:0b:
0f:d0:b3:d6:79:9e:04:f3:7f:cc:c5:61:3c:28:1a:26:27:9d:
a6:fc:53:14:1e:a8:c9:29:8b:34:82:33:93:9d:8d:2e:74:d7:
a9:6c:4e:eb:3f:c3:d8:ce:34:80:ce:86:6f:68:91:11:e3:0b:
94:ca:eb:ee:a5:26:30:63:40:41:1d:77:f5:f1:50:84:ea:53:
01:09:9d:62:30:27:48:2e:15:0d:6f:47:78:78:85:b2:b1:bf:
1f:ca:fe:30:51:54:ba:de:4e:d0:81:3f:45:88:ff:c7:81:ff:
81:83:6e:3d:d9:a1:70:33:17:f8:a7:0a:32:5c:81:3e:5f:c7:
09:9f:2f:8e:19:22:c6:07:85:12:06:14:7a:54:dd:01:76:de:
1d:79:51:f1
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDwkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTAyMTAx
NDE2MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBBOEU4RjZEMUYyNEU0
MTcyMzA5NTQ1NDk3OUNCQjNGMDE1MzYzQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDereanqjYW/UsxNXapoXj1/nKOff1dbFOO/VhnaYU6spJgB/nc
wGeMDfDIS1NHRGBzI9uT5YhthdTvXudx9Q4QcMV/fz0FSDNAewCo9oBtlDtd2vYM
JrkH8MJ2ZdomhkVhzqGBCGhph3f3fDDA77zJfQ7Ha+5pBmVLy4n1Aj2LwOatwO1D
mcc7Aqfnvi4TJljotsB8uygwMbPszT8+6qZKjrBy//wdLyngdBbPIClLl9Yz1S6z
uRPPYQqPOrmbK0CZ3ur0yxudTWF7KGH0Vo0vOdIthgxlLS2TkWAPIHGqtEItDMGN
MCfxk0Wl3ecZxlrwcjGYddG/xEjuKEqaLJBvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUCo6PbR8k5BcjCVRUl5y7PwFTY7IwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9DbzZQYlI4azVCY2pDVlJVbDV5
N1B3RlRZN0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDeGDw
MA0GCSqGSIb3DQEBCwUAA4IBAQBdULtcMU09tTYZ1Ag0JXozMGU4D363+qI4uMt+
KjSrKbYZnqhMaGCknrDlE2bKUPGffYW8FqmQfxwGDnNf9g5C5mywwFJGlTMRPq+u
2IWiVtiW0CwaB4oGHzeccS8FO18ULFLq4/byrLn7ogsP0LPWeZ4E83/MxWE8KBom
J52m/FMUHqjJKYs0gjOTnY0udNepbE7rP8PYzjSAzoZvaJER4wuUyuvupSYwY0BB
HXf18VCE6lMBCZ1iMCdILhUNb0d4eIWysb8fyv4wUVS63k7QgT9FiP/Hgf+Bg249
2aFwMxf4pwoyXIE+X8cJny+OGSLGB4USBhR6VN0Bdt4deVHx
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:04:15 2025 by rpki-client