Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/vhRDuEYzi57YztTCjgYA9985wb4.roa
File: vhRDuEYzi57YztTCjgYA9985wb4.roa (raw, json)
Hash identifier: PIbOHd0lJlag/XwS6oxONo4B4VebB+rKrm9QiM1G8/U=
Subject key identifier: BE:14:43:B8:46:33:8B:9E:D8:CE:D4:C2:8E:06:00:F7:DF:39:C1:BE
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F0B
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vhRDuEYzi57YztTCjgYA9985wb4.roa
Signing time: Mon 10 Feb 2025 14:16:19 +0000
ROA not before: Mon 10 Feb 2025 14:16:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18047
IP address blocks: 120.127.160.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3851 (0xf0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BE1443B846338B9ED8CED4C28E0600F7DF39C1BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:67:6b:15:ad:97:da:98:56:0c:02:e8:98:63:
9f:b8:d7:0f:f8:20:22:60:18:b6:bb:4a:cf:ca:c7:
2e:24:6c:b4:3f:3e:48:c1:2f:c9:9c:7b:31:34:5e:
7a:a4:be:59:93:4b:16:92:5d:a5:63:c1:ef:64:19:
7e:ce:5d:39:ad:d9:0a:bd:15:b5:d4:27:58:4b:34:
30:61:33:43:ae:8c:71:a1:c5:2e:79:be:e8:33:23:
d0:fa:e2:56:b0:52:da:fc:7f:65:cd:11:19:c4:17:
37:aa:3a:17:c2:53:30:79:7f:88:94:3a:ac:13:6d:
eb:5d:33:29:0b:58:bd:b0:fe:19:7c:da:84:28:a0:
60:ba:cb:42:79:9e:03:b3:e6:b2:bd:01:79:74:6f:
ec:43:c1:ef:f2:c2:15:9f:63:ed:44:3f:63:b9:e7:
c2:07:e3:8d:e1:e6:7f:2a:87:5f:66:85:3b:01:6c:
b6:29:77:2e:3a:c7:57:3b:37:0f:36:a2:1b:5d:f3:
f6:c0:4a:aa:1e:a4:e9:6b:09:4d:8d:f3:75:44:74:
3c:3e:18:bb:af:2b:96:28:49:eb:9c:87:ab:76:c8:
96:13:e5:3d:70:ac:91:98:bf:50:43:19:39:11:ba:
0b:2b:4c:f5:7d:75:a1:d6:8b:00:36:ff:00:40:ba:
68:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:14:43:B8:46:33:8B:9E:D8:CE:D4:C2:8E:06:00:F7:DF:39:C1:BE
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vhRDuEYzi57YztTCjgYA9985wb4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.127.160.0/19
Signature Algorithm: sha256WithRSAEncryption
60:bf:04:ee:5a:11:ca:a3:ca:d7:19:f0:37:6c:82:33:6f:8c:
b1:c1:01:41:d9:ac:c0:95:18:03:8a:3c:91:68:f0:e4:36:c7:
af:64:33:b0:da:50:ce:1f:48:66:2e:f5:6a:0b:f8:99:35:7f:
94:be:b1:92:ce:69:af:68:03:13:19:77:0c:02:38:4e:d5:ec:
12:be:80:02:6d:93:49:d0:8b:84:e0:f9:1c:89:df:6b:77:31:
1b:6a:21:44:e6:a2:d2:10:2c:6a:56:f7:9c:04:0c:75:db:a7:
d0:72:c4:38:8b:f3:bf:58:8d:fa:88:c4:76:ae:19:2e:24:8a:
f1:bd:c0:e7:db:d3:f6:a7:0b:06:89:9b:c6:91:60:00:41:f6:
a7:16:cc:8c:ca:5b:0f:0e:55:1d:43:ca:22:c6:7a:0e:c2:5c:
2b:c1:2d:8b:c6:4b:10:86:84:d9:a7:35:d3:dc:e8:3b:fe:94:
36:37:bd:18:da:12:1f:bf:28:25:fb:90:2b:cb:f3:0b:9b:ce:
8f:1f:67:74:23:1b:ed:d9:3e:7b:89:0e:7e:1a:1e:6a:1d:bb:
ff:8f:9b:bc:90:27:15:ec:d5:5e:14:76:b7:d3:66:1a:95:fa:
e4:dd:b8:dd:86:51:97:53:76:ae:b9:27:65:96:85:15:1f:54:
74:56:fb:34
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTAyMTAx
NDE2MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFMTQ0M0I4NDYzMzhC
OUVEOENFRDRDMjhFMDYwMEY3REYzOUMxQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDpZ2sVrZfamFYMAuiYY5+41w/4ICJgGLa7Ss/Kxy4kbLQ/PkjB
L8mcezE0XnqkvlmTSxaSXaVjwe9kGX7OXTmt2Qq9FbXUJ1hLNDBhM0OujHGhxS55
vugzI9D64lawUtr8f2XNERnEFzeqOhfCUzB5f4iUOqwTbetdMykLWL2w/hl82oQo
oGC6y0J5ngOz5rK9AXl0b+xDwe/ywhWfY+1EP2O558IH443h5n8qh19mhTsBbLYp
dy46x1c7Nw82ohtd8/bASqoepOlrCU2N83VEdDw+GLuvK5YoSeuch6t2yJYT5T1w
rJGYv1BDGTkRugsrTPV9daHWiwA2/wBAumj1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUvhRDuEYzi57YztTCjgYA9985wb4wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC92aFJEdUVZemk1N1l6dFRDamdZ
QTk5ODV3YjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFeH+g
MA0GCSqGSIb3DQEBCwUAA4IBAQBgvwTuWhHKo8rXGfA3bIIzb4yxwQFB2azAlRgD
ijyRaPDkNsevZDOw2lDOH0hmLvVqC/iZNX+UvrGSzmmvaAMTGXcMAjhO1ewSvoAC
bZNJ0IuE4Pkcid9rdzEbaiFE5qLSECxqVvecBAx126fQcsQ4i/O/WI36iMR2rhku
JIrxvcDn29P2pwsGiZvGkWAAQfanFsyMylsPDlUdQ8oixnoOwlwrwS2LxksQhoTZ
pzXT3Og7/pQ2N70Y2hIfvygl+5Ary/MLm86PH2d0Ixvt2T57iQ5+Gh5qHbv/j5u8
kCcV7NVeFHa302Yalfrk3bjdhlGXU3auuSdlloUVH1R0Vvs0
-----END CERTIFICATE-----
Generated at Mon Apr 7 09:18:08 2025 by rpki-client