Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/f0wsi4kSFpUCzInaZcEyd8n7Y0Q.roa
File: f0wsi4kSFpUCzInaZcEyd8n7Y0Q.roa (raw, json)
Hash identifier: AHQvsfog67am09IMRRV1kjLSR++C6+BxxKaYl9tnTpE=
Subject key identifier: 7F:4C:2C:8B:89:12:16:95:02:CC:89:DA:65:C1:32:77:C9:FB:63:44
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0E8F
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/f0wsi4kSFpUCzInaZcEyd8n7Y0Q.roa
Signing time: Mon 10 Feb 2025 14:16:30 +0000
ROA not before: Mon 10 Feb 2025 14:16:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38845
IP address blocks: 140.136.164.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3727 (0xe8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 10 14:16:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7F4C2C8B8912169502CC89DA65C13277C9FB6344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:73:c5:7e:98:01:ff:d5:42:b5:2d:0f:ea:d5:
dc:1a:27:4d:25:0f:2a:d0:ae:b2:3b:5a:5b:2d:ed:
1e:98:32:c4:e0:b6:39:79:af:03:00:c3:99:f3:42:
59:4f:c3:fc:5f:23:40:3c:8e:a0:1d:61:b2:4a:bc:
90:1f:89:e4:f4:e0:65:57:a2:16:17:8a:09:5b:41:
ad:98:88:c9:65:3c:c5:90:9d:a1:83:b8:3b:3b:b0:
de:9f:af:d3:5d:a7:85:d5:d0:4b:e5:08:e5:ed:7b:
66:ac:2d:56:2c:51:cb:02:b9:63:65:ad:d1:16:2f:
f8:a0:32:f6:2d:6e:60:82:ef:93:3c:bb:0a:1c:5f:
65:b8:a9:5e:66:cf:7c:2d:8d:22:d3:d7:01:95:c8:
93:05:a2:86:09:c9:b7:27:6a:89:4b:54:1b:9d:d1:
cc:c1:aa:a8:cb:1e:d9:85:68:ac:c8:3b:24:19:1d:
17:d3:62:40:e1:db:d3:3c:69:6f:a9:0e:9e:59:d5:
3a:66:3a:7f:af:43:6d:ed:11:5b:38:81:3f:d9:6c:
72:30:36:87:dc:74:dd:09:60:6a:bb:87:d5:32:c7:
91:92:b3:31:f6:31:13:cf:d4:11:b4:61:57:6a:05:
90:d1:a4:fa:7e:2a:ad:88:4e:ce:88:39:5e:46:40:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4C:2C:8B:89:12:16:95:02:CC:89:DA:65:C1:32:77:C9:FB:63:44
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/f0wsi4kSFpUCzInaZcEyd8n7Y0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.164.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:57:b1:f1:a3:20:23:14:97:42:f1:15:38:df:fa:fc:8f:20:
af:a5:47:64:14:c9:33:06:cd:48:3e:80:2c:a7:5b:95:46:41:
6f:9f:8a:e6:ad:f0:d4:b0:db:cb:3d:cb:c6:44:a6:1b:4f:cb:
98:12:ad:e5:84:1a:16:f6:44:93:e3:1a:6f:77:67:22:d1:d1:
b3:a9:4d:66:a1:1d:21:65:b6:aa:4e:22:a4:54:b6:ce:26:86:
c8:69:33:f7:9b:cc:51:c0:7a:4d:7d:0c:38:3e:90:24:0b:89:
40:de:5d:7f:7d:a7:a6:0f:3f:26:91:10:09:e5:a9:88:92:f4:
ef:40:5c:02:2c:cb:23:3d:e6:6b:09:eb:da:02:a5:79:25:93:
cf:6d:96:c8:34:47:65:89:9d:0a:37:0c:1f:82:f5:18:ac:ba:
71:6e:84:33:21:4a:89:b0:3f:e5:d9:79:55:8f:1e:94:2b:64:
f8:29:84:96:2c:04:20:95:4f:00:9f:f7:09:7d:73:62:ab:28:
fa:82:15:02:6c:71:7e:8c:22:98:3b:cf:ea:1d:b8:a3:58:2a:
32:b3:eb:2a:b1:f5:44:fc:b7:0d:01:6e:43:89:a4:e1:15:b5:
16:dc:ad:32:c1:8e:ea:69:c1:45:39:fd:54:51:30:1c:54:97:
26:1f:4e:ca
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTAyMTAx
NDE2MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdGNEMyQzhCODkxMjE2
OTUwMkNDODlEQTY1QzEzMjc3QzlGQjYzNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCXc8V+mAH/1UK1LQ/q1dwaJ00lDyrQrrI7Wlst7R6YMsTgtjl5
rwMAw5nzQllPw/xfI0A8jqAdYbJKvJAfieT04GVXohYXiglbQa2YiMllPMWQnaGD
uDs7sN6fr9Ndp4XV0EvlCOXte2asLVYsUcsCuWNlrdEWL/igMvYtbmCC75M8uwoc
X2W4qV5mz3wtjSLT1wGVyJMFooYJybcnaolLVBud0czBqqjLHtmFaKzIOyQZHRfT
YkDh29M8aW+pDp5Z1TpmOn+vQ23tEVs4gT/ZbHIwNofcdN0JYGq7h9Uyx5GSszH2
MRPP1BG0YVdqBZDRpPp+Kq2ITs6IOV5GQBO1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUf0wsi4kSFpUCzInaZcEyd8n7Y0QwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9mMHdzaTRrU0ZwVUN6SW5hWmNF
eWQ4bjdZMFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBjIik
MA0GCSqGSIb3DQEBCwUAA4IBAQAKV7HxoyAjFJdC8RU43/r8jyCvpUdkFMkzBs1I
PoAsp1uVRkFvn4rmrfDUsNvLPcvGRKYbT8uYEq3lhBoW9kST4xpvd2ci0dGzqU1m
oR0hZbaqTiKkVLbOJobIaTP3m8xRwHpNfQw4PpAkC4lA3l1/faemDz8mkRAJ5amI
kvTvQFwCLMsjPeZrCevaAqV5JZPPbZbINEdliZ0KNwwfgvUYrLpxboQzIUqJsD/l
2XlVjx6UK2T4KYSWLAQglU8An/cJfXNiqyj6ghUCbHF+jCKYO8/qHbijWCoys+sq
sfVE/LcNAW5DiaThFbUW3K0ywY7qacFFOf1UUTAcVJcmH07K
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:21 2025 by rpki-client