Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/A4EX6RW63Fh-c5743OscMfZl0AQ.roa
File: A4EX6RW63Fh-c5743OscMfZl0AQ.roa (raw, json)
Hash identifier: SPjy/LLeNvChRL/XDN9vK6qEBZH1eE0w71RHHsYBHXc=
Subject key identifier: 03:81:17:E9:15:BA:DC:58:7E:73:9E:F8:DC:EB:1C:31:F6:65:D0:04
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0D3B
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/A4EX6RW63Fh-c5743OscMfZl0AQ.roa
Signing time: Mon 10 Feb 2025 14:05:21 +0000
ROA not before: Mon 10 Feb 2025 14:05:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 49.213.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3387 (0xd3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 10 14:05:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=038117E915BADC587E739EF8DCEB1C31F665D004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b0:da:02:e9:bc:b6:57:70:09:a1:15:4b:17:
70:2a:79:d5:e0:b3:16:57:98:19:6a:bc:fe:1e:8d:
72:a8:45:82:7c:e9:e1:d8:8e:4e:52:77:9d:3c:17:
3f:a7:88:02:49:cb:fb:26:5f:b3:a6:97:7d:9e:d9:
43:be:2d:96:5d:74:9c:bf:0e:84:b7:79:75:0c:51:
54:5c:89:00:da:45:ab:44:7e:d6:ee:d8:30:9f:c8:
04:f5:54:b5:6c:b1:b2:07:50:78:b9:d2:6f:20:33:
c2:f1:f1:ed:22:4d:13:9c:b3:09:12:02:a6:48:11:
3b:e8:5d:5a:fd:ea:bd:3d:a6:00:1d:de:2e:7a:9d:
ad:79:b3:24:21:5e:1d:e3:0a:d4:bb:29:2a:35:5e:
3d:97:b4:39:ae:4e:39:ca:64:ee:7e:16:85:c5:a0:
e5:29:d8:98:18:c0:76:fb:5e:3d:4d:24:ad:e3:e7:
05:6c:f8:e2:0c:8c:54:90:04:b3:ad:38:9a:0b:68:
fd:59:e8:1b:37:37:54:09:91:f7:42:ab:ab:9a:8b:
17:50:e2:9f:0f:db:fd:e5:c8:5a:e9:45:07:b3:9f:
21:5b:90:ba:66:5d:e0:7c:59:66:84:1d:88:8f:3c:
8f:f8:a9:a1:9a:69:77:70:d0:ea:ce:ff:62:57:70:
6f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:81:17:E9:15:BA:DC:58:7E:73:9E:F8:DC:EB:1C:31:F6:65:D0:04
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/A4EX6RW63Fh-c5743OscMfZl0AQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0e:bd:3f:7b:bc:45:05:40:36:97:e8:79:76:c7:9b:cf:05:4d:
b5:57:6d:ac:aa:c2:c1:6d:cc:f5:9b:c7:ef:e9:9f:e7:6a:e4:
97:61:be:8b:6c:62:98:b6:b4:b5:e3:25:c2:66:ec:f4:ce:1b:
4e:b5:70:17:32:87:9c:f4:e3:41:4c:a7:ed:20:ce:3b:04:8f:
2f:79:e6:2b:6d:d6:1a:81:6e:f4:d5:70:e0:2b:b7:ef:4f:2b:
f0:0e:da:a7:7c:6a:0f:3d:9e:9e:29:ba:64:df:31:e4:d7:f7:
c0:3f:0c:90:14:42:cb:69:5e:74:18:df:cb:3a:85:31:1d:ea:
1c:b4:d0:0b:3c:bb:c8:81:27:56:ce:58:74:8d:9e:cb:b4:97:
94:dd:a8:7e:09:ce:fa:8e:4e:a1:e9:20:37:40:34:a4:5b:19:
bd:28:7f:ca:67:58:33:b6:04:dd:e2:f1:ae:ca:61:3f:e3:e7:
15:78:71:7a:c7:42:d4:93:37:5a:89:d8:84:46:ff:3d:0c:2e:
53:8f:07:3c:8c:bc:04:07:63:49:46:a5:b5:65:63:a2:02:0a:
eb:3a:a0:24:40:32:76:f7:94:53:fc:17:c6:cc:bc:d9:7a:11:
c0:22:b5:1d:dc:53:ce:b5:db:0e:5a:3f:8c:a3:93:b7:37:36:
0b:10:0f:ff
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDTswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy
NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx
NDA1MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAzODExN0U5MTVCQURD
NTg3RTczOUVGOERDRUIxQzMxRjY2NUQwMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDasNoC6by2V3AJoRVLF3AqedXgsxZXmBlqvP4ejXKoRYJ86eHY
jk5Sd508Fz+niAJJy/smX7Oml32e2UO+LZZddJy/DoS3eXUMUVRciQDaRatEftbu
2DCfyAT1VLVssbIHUHi50m8gM8Lx8e0iTROcswkSAqZIETvoXVr96r09pgAd3i56
na15syQhXh3jCtS7KSo1Xj2XtDmuTjnKZO5+FoXFoOUp2JgYwHb7Xj1NJK3j5wVs
+OIMjFSQBLOtOJoLaP1Z6Bs3N1QJkfdCq6uaixdQ4p8P2/3lyFrpRQeznyFbkLpm
XeB8WWaEHYiPPI/4qaGaaXdw0OrO/2JXcG/nAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUA4EX6RW63Fh+c5743OscMfZl0AQwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo
SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80
Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvQTRFWDZSVzYzRmgtYzU3NDNPc2NN
ZlpsMEFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzHVgDAN
BgkqhkiG9w0BAQsFAAOCAQEADr0/e7xFBUA2l+h5dsebzwVNtVdtrKrCwW3M9ZvH
7+mf52rkl2G+i2ximLa0teMlwmbs9M4bTrVwFzKHnPTjQUyn7SDOOwSPL3nmK23W
GoFu9NVw4Cu3708r8A7ap3xqDz2enim6ZN8x5Nf3wD8MkBRCy2ledBjfyzqFMR3q
HLTQCzy7yIEnVs5YdI2ey7SXlN2ofgnO+o5OoekgN0A0pFsZvSh/ymdYM7YE3eLx
rsphP+PnFXhxesdC1JM3WonYhEb/PQwuU48HPIy8BAdjSUaltWVjogIK6zqgJEAy
dveUU/wXxsy82XoRwCK1HdxTzrXbDlo/jKOTtzc2CxAP/w==
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:18:51 2025 by rpki-client