Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/qjYhCz6ueLqJUawoGvKN4rdlEFw.roa
File: qjYhCz6ueLqJUawoGvKN4rdlEFw.roa (raw, json)
Hash identifier: mDLn1g+IUQQbe6e2DLelxuUz9GrvH4rZmmL31Tc/71c=
Subject key identifier: AA:36:21:0B:3E:AE:78:BA:89:51:AC:28:1A:F2:8D:E2:B7:65:10:5C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F0F
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qjYhCz6ueLqJUawoGvKN4rdlEFw.roa
Signing time: Mon 10 Feb 2025 14:16:21 +0000
ROA not before: Mon 10 Feb 2025 14:16:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 203.64.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3855 (0xf0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AA36210B3EAE78BA8951AC281AF28DE2B765105C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b6:73:09:62:71:42:7a:d6:4c:ca:db:65:3f:
d9:53:db:0b:00:5d:6c:cb:e0:7a:eb:b6:0b:be:c0:
31:75:cd:1c:4b:02:88:ab:7a:e1:da:b0:c1:dd:7a:
83:0d:75:a6:f7:d0:4e:88:6f:3b:b9:d9:af:2f:49:
82:a9:c2:b7:70:1f:32:7c:c3:3c:d8:b6:8f:91:38:
2d:32:e4:8a:27:36:5a:82:16:4e:c8:7d:59:a2:dd:
ed:1a:06:e8:b3:b2:5d:0c:ab:58:a9:18:0d:8a:71:
19:2a:5c:f2:27:0d:4e:0a:35:b5:5f:d8:2f:3a:92:
f6:cd:ae:25:59:be:6e:a1:63:d1:dd:d5:9e:3b:5f:
54:84:9a:84:20:19:9b:2c:8f:67:24:47:58:06:c9:
8e:c5:18:0a:2f:9b:9d:1e:e2:29:85:fa:55:3b:bf:
4f:a3:73:12:51:f5:bf:b7:4e:47:0d:04:f7:cf:e7:
6b:e7:97:93:e2:e1:9c:32:0e:3c:02:bc:c2:f1:85:
83:5c:c1:e5:03:b4:5a:ac:c7:c4:07:bd:09:a4:05:
e4:24:9e:36:99:6a:01:a4:10:10:eb:1d:3a:c4:da:
5e:e9:28:89:01:57:5d:85:e4:54:3a:ff:e1:5f:b1:
d4:20:b5:f6:5b:6c:d9:84:f0:8a:15:0b:01:69:94:
17:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:36:21:0B:3E:AE:78:BA:89:51:AC:28:1A:F2:8D:E2:B7:65:10:5C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qjYhCz6ueLqJUawoGvKN4rdlEFw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
33:9b:44:2f:20:50:bf:bf:58:2f:b3:d8:40:2b:f6:5f:a9:1a:
c1:f0:52:36:4c:25:6d:33:39:5c:41:0c:92:18:ea:9a:78:3d:
fd:dd:85:2a:61:8d:01:8f:4e:ed:de:18:de:f1:28:8d:37:9e:
57:87:31:75:90:6d:b5:e8:2a:7b:d5:40:a6:ed:51:2d:90:ae:
6f:20:40:0f:b9:c4:76:56:bc:08:e3:be:6e:b3:32:23:6a:4e:
bc:57:dc:c9:b0:6f:5e:0f:17:54:62:66:ca:d7:3d:dc:33:34:
f2:12:04:fa:f4:ee:f4:7a:5f:1a:de:ad:d2:f9:06:b3:34:d3:
95:1a:ce:b3:bb:de:ed:a2:6d:35:d6:28:a0:41:6d:1f:18:35:
5d:1e:cb:2b:5b:92:32:8c:b6:93:f4:4d:02:2d:bf:65:51:e1:
6d:7f:70:d2:60:7e:09:dc:24:c7:c5:a2:ee:06:71:69:12:e7:
9d:f0:cd:86:6a:b9:24:c6:82:9c:ae:31:d2:73:f3:ae:bf:26:
69:4f:ff:04:e3:2e:17:29:a5:50:b5:de:5d:ec:73:aa:d5:0e:
a2:aa:ce:ea:f4:c1:7e:dd:99:c4:a6:35:3e:e0:c7:c0:7f:8e:
89:b6:4b:35:e5:e5:cf:f9:d1:b2:0a:bb:7e:b3:41:7a:96:eb:
d7:9b:7b:81
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDw8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTAyMTAx
NDE2MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBMzYyMTBCM0VBRTc4
QkE4OTUxQUMyODFBRjI4REUyQjc2NTEwNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJtnMJYnFCetZMyttlP9lT2wsAXWzL4Hrrtgu+wDF1zRxLAoir
euHasMHdeoMNdab30E6Ibzu52a8vSYKpwrdwHzJ8wzzYto+ROC0y5IonNlqCFk7I
fVmi3e0aBuizsl0Mq1ipGA2KcRkqXPInDU4KNbVf2C86kvbNriVZvm6hY9Hd1Z47
X1SEmoQgGZssj2ckR1gGyY7FGAovm50e4imF+lU7v0+jcxJR9b+3TkcNBPfP52vn
l5Pi4ZwyDjwCvMLxhYNcweUDtFqsx8QHvQmkBeQknjaZagGkEBDrHTrE2l7pKIkB
V12F5FQ6/+FfsdQgtfZbbNmE8IoVCwFplBeTAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUqjYhCz6ueLqJUawoGvKN4rdlEFwwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9xalloQ3o2dWVMcUpVYXdvR3ZL
TjRyZGxFRncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Aw
DQYJKoZIhvcNAQELBQADggEBADObRC8gUL+/WC+z2EAr9l+pGsHwUjZMJW0zOVxB
DJIY6pp4Pf3dhSphjQGPTu3eGN7xKI03nleHMXWQbbXoKnvVQKbtUS2Qrm8gQA+5
xHZWvAjjvm6zMiNqTrxX3Mmwb14PF1RiZsrXPdwzNPISBPr07vR6XxrerdL5BrM0
05UazrO73u2ibTXWKKBBbR8YNV0eyytbkjKMtpP0TQItv2VR4W1/cNJgfgncJMfF
ou4GcWkS553wzYZquSTGgpyuMdJz866/JmlP/wTjLhcppVC13l3sc6rVDqKqzur0
wX7dmcSmNT7gx8B/jom2SzXl5c/50bIKu36zQXqW69ebe4E=
-----END CERTIFICATE-----
Generated at Sun Apr 6 16:51:29 2025 by rpki-client