Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/X5NjnELHaSz5BOezqid-Drtc7zM.roa
File: X5NjnELHaSz5BOezqid-Drtc7zM.roa (raw, json)
Hash identifier: S8IQUmtITr6+nUfXJB5qa+k/Hn1rcPTnyoKsEVgKc1M=
Subject key identifier: 5F:93:63:9C:42:C7:69:2C:F9:04:E7:B3:AA:27:7E:0E:BB:5C:EF:33
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0EF4
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X5NjnELHaSz5BOezqid-Drtc7zM.roa
Signing time: Tue 18 Feb 2025 07:40:52 +0000
ROA not before: Tue 18 Feb 2025 07:40:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 140.129.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3828 (0xef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 18 07:40:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5F93639C42C7692CF904E7B3AA277E0EBB5CEF33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ca:c3:b5:0f:91:22:e8:d8:b4:3d:5c:25:cb:
7a:12:8a:06:89:ba:97:67:19:41:66:98:b0:42:42:
68:f8:61:0b:0f:c2:5f:24:e0:0c:75:9a:dc:ba:b4:
24:e8:d3:0c:bb:16:c1:4a:17:bf:6c:12:23:00:3e:
8d:d4:6b:98:0a:a2:a3:82:fb:d8:3e:98:3d:76:3b:
47:56:62:ef:b7:65:a4:c5:59:e4:d8:70:3d:a2:57:
ab:29:29:18:c4:2e:1f:9f:30:94:7c:94:77:77:d8:
fc:6e:46:02:7a:61:1c:c7:31:8e:3e:11:b5:5b:8b:
e5:9b:87:b2:d3:b3:e2:b6:f7:a2:cc:8d:97:0f:e2:
2f:60:81:fe:72:3e:d4:f1:db:3d:f3:57:ca:7f:12:
53:8b:35:66:ae:80:6a:af:9d:9a:9d:91:d6:c3:f5:
1d:80:23:58:a2:13:47:ea:98:1f:d9:2a:ff:b9:13:
c4:59:87:c1:8f:56:d2:da:80:8f:65:78:c5:f4:ec:
b9:5a:cd:94:16:f1:a5:d2:60:40:94:8a:69:60:49:
4e:b2:12:18:b2:cb:0d:cc:86:8a:24:98:46:e3:ea:
63:51:a0:03:a6:9e:98:8d:93:7a:5c:6f:8d:f3:79:
9c:9d:ad:8f:71:27:cd:03:1a:af:14:4e:b9:1c:df:
35:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:93:63:9C:42:C7:69:2C:F9:04:E7:B3:AA:27:7E:0E:BB:5C:EF:33
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X5NjnELHaSz5BOezqid-Drtc7zM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.112.0/22
Signature Algorithm: sha256WithRSAEncryption
63:c0:b3:0a:b2:d5:ff:10:b9:c4:38:a3:ab:9d:a6:23:f4:36:
d8:4e:22:bd:e7:97:e4:d3:cb:4d:59:13:44:ec:02:c1:fd:0b:
18:00:f8:53:c3:70:9e:4f:39:29:e4:a8:1e:de:26:a5:93:fb:
a9:f9:13:a9:70:89:18:e3:dd:d2:2c:5f:4f:7b:d0:37:83:33:
4e:45:26:56:df:00:0f:82:c0:ef:23:56:6c:6e:5e:89:e0:0c:
dd:f2:9d:38:68:ba:0a:c1:96:49:ea:50:87:bb:0a:37:21:60:
e9:a2:78:f6:a9:3c:b8:34:e9:bd:e4:74:65:37:b6:c7:cf:f9:
b6:a1:28:93:37:0b:dd:d0:b3:f4:bc:08:5c:67:64:41:46:bf:
63:2e:df:05:72:ed:82:46:13:09:09:dd:93:8d:2c:16:f5:d9:
b0:d8:13:73:51:a9:a8:9c:0d:da:ef:d6:67:5d:1d:b4:47:fd:
bd:ee:1f:21:e5:db:25:fc:80:75:49:cc:b1:e8:4b:ed:d8:57:
48:e3:e4:7e:42:81:33:cf:7a:50:67:3a:1b:39:5b:95:81:56:
97:91:41:67:b9:ad:2f:d1:4f:b3:bd:7c:45:0f:2e:70:75:18:
7f:ef:da:c7:0f:a7:fb:1e:b2:1e:70:92:fc:31:87:7d:91:08:
ec:fc:ac:20
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDvQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTgw
NzQwNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGOTM2MzlDNDJDNzY5
MkNGOTA0RTdCM0FBMjc3RTBFQkI1Q0VGMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvysO1D5Ei6Ni0PVwly3oSigaJupdnGUFmmLBCQmj4YQsPwl8k
4Ax1mty6tCTo0wy7FsFKF79sEiMAPo3Ua5gKoqOC+9g+mD12O0dWYu+3ZaTFWeTY
cD2iV6spKRjELh+fMJR8lHd32PxuRgJ6YRzHMY4+EbVbi+Wbh7LTs+K296LMjZcP
4i9ggf5yPtTx2z3zV8p/ElOLNWaugGqvnZqdkdbD9R2AI1iiE0fqmB/ZKv+5E8RZ
h8GPVtLagI9leMX07LlazZQW8aXSYECUimlgSU6yEhiyyw3MhookmEbj6mNRoAOm
npiNk3pcb43zeZydrY9xJ80DGq8UTrkc3zVzAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUX5NjnELHaSz5BOezqid+Drtc7zMwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9YNU5qbkVMSGFTejVCT2V6cWlk
LURydGM3ek0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjIFw
MA0GCSqGSIb3DQEBCwUAA4IBAQBjwLMKstX/ELnEOKOrnaYj9DbYTiK955fk08tN
WRNE7ALB/QsYAPhTw3CeTzkp5Kge3ialk/up+ROpcIkY493SLF9Pe9A3gzNORSZW
3wAPgsDvI1Zsbl6J4Azd8p04aLoKwZZJ6lCHuwo3IWDponj2qTy4NOm95HRlN7bH
z/m2oSiTNwvd0LP0vAhcZ2RBRr9jLt8Fcu2CRhMJCd2TjSwW9dmw2BNzUamonA3a
79ZnXR20R/297h8h5dsl/IB1Scyx6Evt2FdI4+R+QoEzz3pQZzobOVuVgVaXkUFn
ua0v0U+zvXxFDy5wdRh/79rHD6f7HrIecJL8MYd9kQjs/Kwg
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:31 2025 by rpki-client