Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/O9vKa5Ti5GuQoqdxd9N9gel17BY.roa
File: O9vKa5Ti5GuQoqdxd9N9gel17BY.roa (raw, json)
Hash identifier: 50vE/nA2JEm3HFV8BbK9aNwHShTfCSoOJ+fFOCGiJa4=
Subject key identifier: 3B:DB:CA:6B:94:E2:E4:6B:90:A2:A7:71:77:D3:7D:81:E9:75:EC:16
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0E81
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/O9vKa5Ti5GuQoqdxd9N9gel17BY.roa
Signing time: Mon 10 Feb 2025 14:16:26 +0000
ROA not before: Mon 10 Feb 2025 14:16:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7539
IP address blocks: 140.110.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3713 (0xe81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 10 14:16:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3BDBCA6B94E2E46B90A2A77177D37D81E975EC16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e5:3f:96:a5:f7:3d:3d:43:3a:50:a7:ce:b0:
b3:14:a9:fa:17:62:d5:27:60:9f:0f:cf:b6:39:c2:
49:75:d8:74:f5:0f:1d:8d:9f:08:da:92:34:af:e2:
6b:9e:aa:45:0a:d4:ef:0e:a2:ed:7e:e9:5c:b6:cd:
a6:f9:51:4b:93:14:aa:ba:ed:5e:90:be:5c:2e:1a:
ec:b9:97:e1:cf:d4:39:e2:ca:ce:62:d2:44:4f:8b:
75:88:5f:8a:00:84:d9:95:4d:1e:09:07:96:82:b6:
0a:71:e1:9f:8c:77:b4:3d:01:65:ce:d0:05:a5:bc:
db:d8:8b:ef:7b:5d:80:fa:07:dc:f0:35:95:f5:0b:
96:c1:60:46:7c:35:72:04:ca:17:95:ea:61:15:e9:
8d:be:3d:24:3e:85:e6:c6:43:27:77:2f:3a:8d:bd:
66:26:df:67:0a:28:c6:32:85:04:7b:ad:bb:29:32:
cb:07:4f:6b:84:3a:3e:eb:90:3f:3b:4e:db:9c:d0:
68:2a:9f:f8:cd:e9:60:00:9d:1a:83:21:3e:cb:b5:
85:be:b6:98:45:ee:ef:a5:fc:66:e0:c7:97:b1:af:
25:51:69:94:96:bd:92:bc:a9:bb:e0:63:c9:8d:4c:
30:d0:95:8f:4a:6a:46:a8:f0:44:01:75:85:11:32:
c2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DB:CA:6B:94:E2:E4:6B:90:A2:A7:71:77:D3:7D:81:E9:75:EC:16
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/O9vKa5Ti5GuQoqdxd9N9gel17BY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:ac:e5:4a:76:9f:ca:b4:f1:8d:a4:c8:5c:c6:63:74:fb:cd:
63:b2:e3:3d:2e:b4:5a:bd:bb:59:84:82:7e:a5:1a:48:bd:6a:
85:c6:89:34:04:0e:31:81:ea:c4:92:d6:7f:6b:80:28:01:07:
9a:2d:26:eb:15:2d:51:33:9e:b3:31:f0:a5:98:9b:cf:e3:ea:
2e:e0:5e:6e:07:9f:53:0b:d8:99:8d:5c:6d:71:be:6f:d5:7e:
e9:3f:bb:c3:65:15:12:33:a9:5b:4f:95:19:ed:f9:fd:61:17:
43:e3:4d:12:f0:00:db:43:bb:90:d2:e3:47:71:19:73:c2:88:
0f:dc:c3:11:06:06:40:95:41:ce:df:17:e3:29:fd:bd:c7:3a:
71:f9:e2:84:4d:4b:8f:83:c8:65:23:f4:6d:8d:ad:a9:4c:46:
8c:35:a5:c1:c2:5a:98:32:a2:bc:7e:5b:fe:75:9d:1c:32:fb:
14:0d:8d:10:cc:8e:ef:fa:c0:09:23:a2:22:29:ed:b0:b6:d7:
8f:93:62:d3:4e:a1:1c:a6:96:09:21:8a:de:9c:1c:2d:7e:d2:
c2:b7:92:8c:bc:66:09:87:57:6f:88:62:aa:a9:86:17:62:80:
1f:4f:26:12:ce:6d:0d:23:c2:2d:ee:7e:1e:9e:8b:7d:a7:c0:
0d:9b:22:cd
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDoEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx
NDE2MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCREJDQTZCOTRFMkU0
NkI5MEEyQTc3MTc3RDM3RDgxRTk3NUVDMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCc5T+Wpfc9PUM6UKfOsLMUqfoXYtUnYJ8Pz7Y5wkl12HT1Dx2N
nwjakjSv4mueqkUK1O8Oou1+6Vy2zab5UUuTFKq67V6QvlwuGuy5l+HP1Dniys5i
0kRPi3WIX4oAhNmVTR4JB5aCtgpx4Z+Md7Q9AWXO0AWlvNvYi+97XYD6B9zwNZX1
C5bBYEZ8NXIEyheV6mEV6Y2+PSQ+hebGQyd3LzqNvWYm32cKKMYyhQR7rbspMssH
T2uEOj7rkD87Ttuc0Ggqn/jN6WAAnRqDIT7LtYW+tphF7u+l/Gbgx5exryVRaZSW
vZK8qbvgY8mNTDDQlY9Kakao8EQBdYURMsLvAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUO9vKa5Ti5GuQoqdxd9N9gel17BYwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9POXZLYTVUaTVHdVFvcWR4ZDlO
OWdlbDE3Qlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjG4w
DQYJKoZIhvcNAQELBQADggEBAH6s5Up2n8q08Y2kyFzGY3T7zWOy4z0utFq9u1mE
gn6lGki9aoXGiTQEDjGB6sSS1n9rgCgBB5otJusVLVEznrMx8KWYm8/j6i7gXm4H
n1ML2JmNXG1xvm/Vfuk/u8NlFRIzqVtPlRnt+f1hF0PjTRLwANtDu5DS40dxGXPC
iA/cwxEGBkCVQc7fF+Mp/b3HOnH54oRNS4+DyGUj9G2NralMRow1pcHCWpgyorx+
W/51nRwy+xQNjRDMju/6wAkjoiIp7bC214+TYtNOoRymlgkhit6cHC1+0sK3koy8
ZgmHV2+IYqqphhdigB9PJhLObQ0jwi3ufh6ei32nwA2bIs0=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:53 2025 by rpki-client