Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Z3c6DaZuXJmzBp1vp4481w4BN_o.roa
File: Z3c6DaZuXJmzBp1vp4481w4BN_o.roa (raw, json)
Hash identifier: KAwUc02UEizvpVhVFQRiT892YNTBh5dm1b5Qwbx03Z0=
Subject key identifier: 67:77:3A:0D:A6:6E:5C:99:B3:06:9D:6F:A7:8E:3C:D7:0E:01:37:FA
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0E80
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z3c6DaZuXJmzBp1vp4481w4BN_o.roa
Signing time: Mon 10 Feb 2025 14:16:26 +0000
ROA not before: Mon 10 Feb 2025 14:16:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 140.138.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3712 (0xe80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 10 14:16:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=67773A0DA66E5C99B3069D6FA78E3CD70E0137FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:3e:6b:fb:66:8e:11:9c:90:d8:68:28:49:3f:
60:8c:48:42:ea:cf:e9:9c:8c:1d:5e:a5:f3:a2:3b:
2d:82:14:09:7c:82:5b:c4:3d:f1:dc:f1:1f:d0:68:
b8:61:d5:cd:5c:3d:ef:23:57:4e:b5:b6:b9:5a:c5:
8c:4b:ab:b5:ef:fe:86:a3:49:1b:1f:f6:3c:e4:db:
56:b8:6b:3a:e7:2c:46:fc:2c:1c:b5:77:f5:59:24:
69:c9:d6:2a:a5:4c:3a:e6:92:46:da:36:0c:49:80:
18:bc:38:b7:8e:a4:39:ea:37:cd:fe:c4:a3:af:2e:
a0:0b:33:89:9f:d9:e7:33:ae:e4:78:c2:78:08:ec:
7a:6f:45:74:e2:5c:5e:ac:c4:b8:e9:7b:4d:d0:6c:
af:d2:44:3a:28:d3:4d:9c:c3:58:ea:d6:a2:67:d4:
54:df:1e:71:78:36:76:18:d5:75:d1:04:0a:9c:04:
f9:6a:fa:5a:02:70:29:e4:e9:46:05:da:8d:0a:ff:
d1:61:2c:20:eb:bd:a9:3f:b9:8f:5f:27:5d:a7:1f:
35:b5:22:96:d9:8b:e8:26:00:b3:80:87:90:a0:88:
70:65:36:e5:80:9c:73:6e:eb:d0:fc:54:94:95:05:
81:94:41:c0:4f:7f:4a:df:eb:e8:69:4a:3d:4d:41:
32:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:77:3A:0D:A6:6E:5C:99:B3:06:9D:6F:A7:8E:3C:D7:0E:01:37:FA
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z3c6DaZuXJmzBp1vp4481w4BN_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.138.0.0/16
Signature Algorithm: sha256WithRSAEncryption
30:4a:98:91:e8:6e:d5:87:4e:44:48:42:93:80:19:ae:04:fb:
6a:0a:46:5a:65:e0:ae:bf:84:fb:17:21:11:f3:a1:2d:35:a4:
6e:ba:23:0e:3b:06:a4:a7:04:6a:c7:a6:d1:d6:6e:ea:cd:be:
a8:d2:6d:72:a7:e7:47:92:dd:fc:31:b5:e9:71:07:ef:2b:07:
b7:26:77:97:1a:88:09:d6:0a:b9:d0:4a:70:ba:47:a1:71:a2:
58:25:b6:c2:21:40:7c:2b:52:30:de:d4:7d:53:f8:12:46:64:
b3:3a:8c:53:36:a6:16:df:16:ca:cb:2e:26:bd:b9:e2:92:2d:
c5:ed:e0:0a:3d:87:3c:86:e4:0e:d8:6c:72:f8:fe:d5:f2:e2:
04:f0:a9:d8:f0:51:e5:de:69:21:ec:fb:6f:df:21:cf:d4:62:
70:bb:53:b7:af:d4:fb:68:65:e0:28:79:79:5f:cd:1f:b7:89:
4f:4b:83:60:55:21:de:37:a2:cc:34:3c:82:6e:5d:af:e5:5d:
d1:a4:e7:5e:d0:b9:2c:12:af:3e:6d:bc:5c:36:43:cd:89:8f:
ee:ca:bd:63:3b:09:9a:86:a4:76:cb:7d:7a:27:d2:d4:48:41:
7b:87:15:32:89:0e:63:70:3a:18:5a:46:f3:e9:39:8b:02:72:
0a:a5:6b:c8
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx
NDE2MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3NzczQTBEQTY2RTVD
OTlCMzA2OUQ2RkE3OEUzQ0Q3MEUwMTM3RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXPmv7Zo4RnJDYaChJP2CMSELqz+mcjB1epfOiOy2CFAl8glvE
PfHc8R/QaLhh1c1cPe8jV061trlaxYxLq7Xv/oajSRsf9jzk21a4azrnLEb8LBy1
d/VZJGnJ1iqlTDrmkkbaNgxJgBi8OLeOpDnqN83+xKOvLqALM4mf2eczruR4wngI
7HpvRXTiXF6sxLjpe03QbK/SRDoo002cw1jq1qJn1FTfHnF4NnYY1XXRBAqcBPlq
+loCcCnk6UYF2o0K/9FhLCDrvak/uY9fJ12nHzW1IpbZi+gmALOAh5CgiHBlNuWA
nHNu69D8VJSVBYGUQcBPf0rf6+hpSj1NQTIhAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUZ3c6DaZuXJmzBp1vp4481w4BN/owHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9aM2M2RGFadVhKbXpCcDF2cDQ0
ODF3NEJOX28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIow
DQYJKoZIhvcNAQELBQADggEBADBKmJHobtWHTkRIQpOAGa4E+2oKRlpl4K6/hPsX
IRHzoS01pG66Iw47BqSnBGrHptHWburNvqjSbXKn50eS3fwxtelxB+8rB7cmd5ca
iAnWCrnQSnC6R6FxolgltsIhQHwrUjDe1H1T+BJGZLM6jFM2phbfFsrLLia9ueKS
LcXt4Ao9hzyG5A7YbHL4/tXy4gTwqdjwUeXeaSHs+2/fIc/UYnC7U7ev1PtoZeAo
eXlfzR+3iU9Lg2BVId43osw0PIJuXa/lXdGk517QuSwSrz5tvFw2Q82Jj+7KvWM7
CZqGpHbLfXon0tRIQXuHFTKJDmNwOhhaRvPpOYsCcgqla8g=
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:37 2025 by rpki-client