Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Gz6K1OUajJU7q1TFaW3qQ0vA_2c.roa
File: Gz6K1OUajJU7q1TFaW3qQ0vA_2c.roa (raw, json)
Hash identifier: /+x6LoVCSfZAyoFZaGbM5PyHg1j1MvDb1BqgltLolCU=
Subject key identifier: 1B:3E:8A:D4:E5:1A:8C:95:3B:AB:54:C5:69:6D:EA:43:4B:C0:FF:67
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0E6F
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Gz6K1OUajJU7q1TFaW3qQ0vA_2c.roa
Signing time: Mon 10 Feb 2025 14:16:21 +0000
ROA not before: Mon 10 Feb 2025 14:16:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38844
IP address blocks: 140.122.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3695 (0xe6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 10 14:16:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1B3E8AD4E51A8C953BAB54C5696DEA434BC0FF67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1a:c7:b7:8b:a1:13:5b:91:4d:92:81:fd:df:
31:46:1c:f0:6d:ae:e7:54:80:d1:10:9c:e2:3b:a4:
25:e2:7b:64:8e:f0:9b:e3:02:51:72:6a:12:59:df:
4b:43:1e:14:26:dc:20:66:ea:ec:cd:a7:dd:29:05:
50:3a:8e:40:db:d2:b2:20:41:e3:ee:91:9b:f2:d4:
8d:42:ee:e5:75:65:39:dd:01:bd:f4:38:32:e5:d5:
1c:8e:ea:c0:3c:6e:ce:59:b7:06:c5:be:77:ff:02:
a4:eb:11:ad:b8:c9:d3:be:6b:a6:1f:5c:f7:03:28:
4f:1c:44:d7:95:09:4b:ba:64:3a:a6:93:e5:20:24:
49:be:1e:e8:03:1e:45:f7:9d:75:bd:c6:dd:b8:88:
2a:a3:46:f8:cf:0b:65:e2:21:61:d9:01:c0:5c:79:
f7:4b:8c:73:60:8e:47:52:f9:db:38:96:a7:fa:fd:
45:38:6a:e7:af:1f:c3:b2:bf:eb:2c:b6:b4:1a:ed:
f5:18:be:25:32:7a:43:4e:40:44:a2:15:43:76:83:
46:81:7f:01:ae:03:9b:d2:ff:c7:80:39:a9:6c:16:
c3:58:14:f6:7c:8c:19:dd:dc:dc:af:2e:af:c5:d2:
08:b3:84:3a:b0:77:14:a4:82:27:13:24:8d:7c:ff:
56:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3E:8A:D4:E5:1A:8C:95:3B:AB:54:C5:69:6D:EA:43:4B:C0:FF:67
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Gz6K1OUajJU7q1TFaW3qQ0vA_2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.122.0.0/17
Signature Algorithm: sha256WithRSAEncryption
91:62:33:b7:05:f8:bb:94:f2:89:78:b5:d9:9c:df:48:f4:c8:
9a:91:61:66:d9:05:07:cc:0a:18:f2:b2:2c:20:a1:d4:43:f8:
83:8d:49:1f:25:7a:43:b5:cc:31:b6:10:46:ab:30:f7:c7:76:
57:df:17:ea:a5:44:d0:a0:ba:ce:e7:df:2b:1f:68:3b:32:79:
dc:b6:36:f7:3f:68:52:19:13:67:98:c6:8c:22:bc:00:80:4d:
c9:fe:16:20:be:07:4c:e1:b8:90:22:17:cb:f7:c0:34:6f:46:
d3:31:7f:84:b1:b8:bf:ef:de:20:cf:eb:e5:6b:5f:e8:0a:aa:
fb:5e:a9:24:28:28:6a:83:22:54:ab:9e:8c:8f:35:67:af:cf:
83:07:57:9c:3e:35:e9:bf:57:10:ba:0b:77:35:02:d7:70:ff:
d4:ad:8e:d2:c6:96:6f:83:18:14:aa:45:e1:89:0f:54:84:3d:
f2:09:a2:f9:eb:26:69:dd:f7:b2:a9:b8:ec:c6:65:4d:72:3b:
5f:4e:b6:d8:a8:13:fd:99:2d:59:5e:08:3b:47:5d:e6:92:55:
02:a9:e0:24:4b:8a:ef:4b:36:f7:fb:07:33:22:10:80:8d:31:
5b:65:34:75:65:f9:cb:5c:af:2f:80:ab:4b:e0:84:1d:2d:4b:
e2:b5:84:66
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDm8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx
NDE2MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCM0U4QUQ0RTUxQThD
OTUzQkFCNTRDNTY5NkRFQTQzNEJDMEZGNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBGse3i6ETW5FNkoH93zFGHPBtrudUgNEQnOI7pCXie2SO8Jvj
AlFyahJZ30tDHhQm3CBm6uzNp90pBVA6jkDb0rIgQePukZvy1I1C7uV1ZTndAb30
ODLl1RyO6sA8bs5ZtwbFvnf/AqTrEa24ydO+a6YfXPcDKE8cRNeVCUu6ZDqmk+Ug
JEm+HugDHkX3nXW9xt24iCqjRvjPC2XiIWHZAcBcefdLjHNgjkdS+ds4lqf6/UU4
auevH8Oyv+sstrQa7fUYviUyekNOQESiFUN2g0aBfwGuA5vS/8eAOalsFsNYFPZ8
jBnd3NyvLq/F0gizhDqwdxSkgicTJI18/1bhAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUGz6K1OUajJU7q1TFaW3qQ0vA/2cwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HejZLMU9VYWpKVTdxMVRGYVcz
cVEwdkFfMmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHjHoA
MA0GCSqGSIb3DQEBCwUAA4IBAQCRYjO3Bfi7lPKJeLXZnN9I9MiakWFm2QUHzAoY
8rIsIKHUQ/iDjUkfJXpDtcwxthBGqzD3x3ZX3xfqpUTQoLrO598rH2g7Mnnctjb3
P2hSGRNnmMaMIrwAgE3J/hYgvgdM4biQIhfL98A0b0bTMX+Esbi/794gz+vla1/o
Cqr7XqkkKChqgyJUq56MjzVnr8+DB1ecPjXpv1cQugt3NQLXcP/UrY7SxpZvgxgU
qkXhiQ9UhD3yCaL56yZp3feyqbjsxmVNcjtfTrbYqBP9mS1ZXgg7R13mklUCqeAk
S4rvSzb3+wczIhCAjTFbZTR1ZfnLXK8vgKtL4IQdLUvitYRm
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:05 2025 by rpki-client