Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/HckYPpVNzl15mv5OEbnTgr0zY3g.roa
File: HckYPpVNzl15mv5OEbnTgr0zY3g.roa (raw, json)
Hash identifier: ZKKu7bXulj9P800La9JsBgooFN48D6t4v0E710GuAlI=
Subject key identifier: 1D:C9:18:3E:95:4D:CE:5D:79:9A:FE:4E:11:B9:D3:82:BD:33:63:78
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F9D
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/HckYPpVNzl15mv5OEbnTgr0zY3g.roa
Signing time: Wed 19 Feb 2025 02:34:49 +0000
ROA not before: Wed 19 Feb 2025 02:34:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18177
IP address blocks: 163.26.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3997 (0xf9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 19 02:34:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1DC9183E954DCE5D799AFE4E11B9D382BD336378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:40:d1:69:c3:17:df:57:97:c5:57:1a:45:e0:
6b:87:ac:a2:32:ae:e8:c6:9f:7d:83:8d:8d:e6:82:
39:cb:41:f2:32:9e:58:18:61:58:ce:69:66:e9:d2:
a5:fe:23:69:c8:40:3f:5b:fb:57:12:42:69:c7:68:
0b:d9:6d:e8:e6:91:90:16:66:cf:75:06:6b:47:34:
2b:d0:98:42:42:5b:ac:35:13:5f:39:6a:e5:58:aa:
25:65:8d:fb:f8:25:c5:c3:f5:5e:bf:da:97:3d:0e:
c2:c2:c7:3b:41:e2:a1:e0:13:df:af:8e:9d:eb:a0:
b0:0a:d7:47:9e:33:b8:75:2b:3b:12:5c:31:1a:7c:
51:9f:30:7d:f3:1b:b7:1c:cf:35:c6:70:9b:19:9a:
aa:9f:73:72:9f:b7:06:e0:bc:e8:31:1c:53:e6:a9:
69:52:84:b5:3d:6d:21:61:8d:52:60:6a:ac:03:d8:
c5:10:43:9e:0d:25:02:48:ec:5c:b5:b8:cd:4e:bc:
6d:67:1d:28:26:0a:c4:02:0c:1a:ef:e8:a0:4e:5e:
38:cb:bd:4f:1c:e2:48:b8:6b:90:b2:b0:e7:b6:25:
9a:f0:29:9c:a0:c6:63:d3:10:7f:79:2f:25:3e:0d:
03:4e:4e:bf:8b:71:de:51:cb:8c:e6:55:76:ca:4a:
a1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C9:18:3E:95:4D:CE:5D:79:9A:FE:4E:11:B9:D3:82:BD:33:63:78
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/HckYPpVNzl15mv5OEbnTgr0zY3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.26.0.0/16
Signature Algorithm: sha256WithRSAEncryption
83:8d:4c:c4:1c:f8:54:f1:50:83:a4:1f:a2:93:4b:8c:50:06:
f0:e8:f2:68:e2:44:66:de:fc:b0:91:f3:b6:c8:f3:b8:f3:21:
1d:65:6c:7a:4a:f6:b5:0a:d7:36:40:ba:f8:0b:7e:60:f2:c3:
c1:37:66:6e:ac:af:96:b3:b7:07:42:39:82:10:5c:69:e4:a5:
25:58:d4:f4:3d:dc:f2:6a:6f:1a:72:f4:7d:80:f0:e3:11:f7:
34:69:a9:e7:d0:2f:46:ec:a0:c5:4b:99:72:48:86:49:c9:84:
0d:62:93:91:2a:7e:5c:79:30:60:7e:b9:ee:dd:83:0a:f3:9c:
06:17:37:07:9c:7c:9d:06:dd:88:60:32:fd:00:5f:90:3e:82:
1c:2d:9d:bf:96:7e:ea:e5:9a:e3:97:e9:a1:e6:3c:13:fa:33:
1a:43:fb:92:89:8b:c7:92:0e:c8:71:88:45:e5:f8:f6:94:18:
af:24:32:45:4f:2e:50:13:2f:e4:02:24:0d:f1:c6:29:05:ae:
ed:1d:7f:42:79:7d:09:d6:61:ba:3c:2f:df:f2:3b:47:5c:f1:
09:a1:25:3c:27:7d:32:89:b1:8a:ee:14:a5:d2:93:fc:20:88:
56:19:22:ec:1c:00:76:9f:5f:bf:3d:f4:ec:ed:5c:e2:de:58:
2a:26:15:83
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICD50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTAyMTkw
MjM0NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFEQzkxODNFOTU0RENF
NUQ3OTlBRkU0RTExQjlEMzgyQkQzMzYzNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUQNFpwxffV5fFVxpF4GuHrKIyrujGn32DjY3mgjnLQfIynlgY
YVjOaWbp0qX+I2nIQD9b+1cSQmnHaAvZbejmkZAWZs91BmtHNCvQmEJCW6w1E185
auVYqiVljfv4JcXD9V6/2pc9DsLCxztB4qHgE9+vjp3roLAK10eeM7h1KzsSXDEa
fFGfMH3zG7cczzXGcJsZmqqfc3KftwbgvOgxHFPmqWlShLU9bSFhjVJgaqwD2MUQ
Q54NJQJI7Fy1uM1OvG1nHSgmCsQCDBrv6KBOXjjLvU8c4ki4a5CysOe2JZrwKZyg
xmPTEH95LyU+DQNOTr+Lcd5Ry4zmVXbKSqGvAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUHckYPpVNzl15mv5OEbnTgr0zY3gwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9IY2tZUHBWTnpsMTVtdjVPRWJu
VGdyMHpZM2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAoxow
DQYJKoZIhvcNAQELBQADggEBAIONTMQc+FTxUIOkH6KTS4xQBvDo8mjiRGbe/LCR
87bI87jzIR1lbHpK9rUK1zZAuvgLfmDyw8E3Zm6sr5aztwdCOYIQXGnkpSVY1PQ9
3PJqbxpy9H2A8OMR9zRpqefQL0bsoMVLmXJIhknJhA1ik5Eqflx5MGB+ue7dgwrz
nAYXNwecfJ0G3YhgMv0AX5A+ghwtnb+WfurlmuOX6aHmPBP6MxpD+5KJi8eSDshx
iEXl+PaUGK8kMkVPLlATL+QCJA3xxikFru0df0J5fQnWYbo8L9/yO0dc8QmhJTwn
fTKJsYruFKXSk/wgiFYZIuwcAHafX7899OztXOLeWComFYM=
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:18:08 2025 by rpki-client