Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/iQO5YHDsKK7YRIU2VhzaGLIfT0g.roa
File: iQO5YHDsKK7YRIU2VhzaGLIfT0g.roa (raw, json)
Hash identifier: 3ul2glMUlNsKXEHTNkFXlJ5QEN5e/PMv1LxnCodvKAA=
Subject key identifier: 89:03:B9:60:70:EC:28:AE:D8:44:85:36:56:1C:DA:18:B2:1F:4F:48
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0D40
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/iQO5YHDsKK7YRIU2VhzaGLIfT0g.roa
Signing time: Mon 10 Feb 2025 14:05:22 +0000
ROA not before: Mon 10 Feb 2025 14:05:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 49.213.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3392 (0xd40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 10 14:05:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8903B96070EC28AED8448536561CDA18B21F4F48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:8c:6b:4f:fa:c8:81:b4:af:1a:7f:91:15:71:
12:37:e4:2d:54:16:8f:35:e8:f2:8f:7d:7c:7a:3b:
40:0e:78:b5:9b:44:08:24:56:30:ea:50:b1:d1:f6:
2f:e0:eb:85:07:a1:5f:c1:a8:9d:19:ce:21:12:1e:
d1:aa:ee:46:56:04:c9:85:7d:7e:d9:8a:16:07:df:
b5:c1:ad:d3:88:6b:f9:32:d1:10:ae:bb:3e:fd:da:
b4:10:3b:18:ae:a9:bf:95:94:f8:50:73:2d:88:88:
5f:40:9f:08:c3:ae:82:77:27:00:8d:28:90:34:7a:
78:a7:60:25:33:1a:21:fa:9b:82:c3:51:1e:4d:c9:
01:53:41:e9:f5:46:2c:1a:4b:e0:02:0a:15:38:99:
aa:df:7d:1f:e5:ec:73:ab:2d:6b:f9:41:a6:0f:eb:
02:15:80:c9:e2:fd:54:7d:93:40:77:47:08:c0:a8:
a9:4e:e3:73:02:fd:6b:fc:48:fe:d3:53:27:d9:bf:
ce:bf:a4:dc:bf:37:96:68:bf:2a:13:e6:05:1c:05:
05:f8:af:15:cc:83:e4:72:a0:4f:aa:38:2f:0c:7a:
23:9a:00:39:34:70:ac:b6:2f:a6:19:f3:80:f8:4c:
6b:ba:b5:78:ed:90:f1:09:1a:5d:f3:04:cb:1a:c9:
a7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:03:B9:60:70:EC:28:AE:D8:44:85:36:56:1C:DA:18:B2:1F:4F:48
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/iQO5YHDsKK7YRIU2VhzaGLIfT0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.175.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b0:78:31:12:31:64:61:eb:44:85:f2:23:1a:8a:85:ed:66:
96:37:51:9f:51:d3:7b:dc:3d:41:8c:e0:b1:ab:8c:c4:66:68:
c9:9d:ab:09:9c:42:4e:15:50:4e:93:e1:10:bf:3f:c9:d3:22:
08:c8:82:b2:2a:ce:24:39:d2:a5:81:17:05:91:a8:ae:bf:d3:
ef:c7:26:9b:0b:b6:2c:ae:50:73:fd:da:9d:d2:fd:95:a6:4c:
d6:e7:ea:fa:11:27:8f:50:ad:e6:09:9e:1a:26:99:04:53:ba:
14:f2:4b:d4:81:37:57:9a:9c:9c:43:a2:29:ae:c4:d8:17:60:
56:df:3a:44:11:31:15:39:ee:3b:73:82:26:4c:35:21:93:f1:
88:bf:10:56:b6:29:3c:bf:92:38:50:55:ba:ee:b3:14:7c:fe:
95:8d:71:48:b4:2d:e4:a6:70:d0:e0:f0:19:36:db:c7:f6:74:
d3:6f:b8:f9:7b:7d:f5:3d:dc:19:ab:3a:c0:20:7e:53:f7:b4:
1b:9f:d3:88:3a:02:ca:65:6c:a6:1e:24:c5:43:09:f3:18:b6:
c0:62:f8:28:bb:39:b4:52:ce:2d:3c:3f:51:20:e7:37:03:c9:
df:d8:f6:af:26:b9:af:52:41:8d:e7:e8:ee:61:4f:b4:dc:e9:
b4:49:90:6b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy
NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTAyMTAx
NDA1MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5MDNCOTYwNzBFQzI4
QUVEODQ0ODUzNjU2MUNEQTE4QjIxRjRGNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDmjGtP+siBtK8af5EVcRI35C1UFo816PKPfXx6O0AOeLWbRAgk
VjDqULHR9i/g64UHoV/BqJ0ZziESHtGq7kZWBMmFfX7ZihYH37XBrdOIa/ky0RCu
uz792rQQOxiuqb+VlPhQcy2IiF9AnwjDroJ3JwCNKJA0eninYCUzGiH6m4LDUR5N
yQFTQen1RiwaS+ACChU4marffR/l7HOrLWv5QaYP6wIVgMni/VR9k0B3RwjAqKlO
43MC/Wv8SP7TUyfZv86/pNy/N5ZovyoT5gUcBQX4rxXMg+RyoE+qOC8MeiOaADk0
cKy2L6YZ84D4TGu6tXjtkPEJGl3zBMsayaevAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUiQO5YHDsKK7YRIU2VhzaGLIfT0gwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo
SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80
Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvaVFPNVlIRHNLSzdZUklVMlZoemFH
TElmVDBnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHVrzAN
BgkqhkiG9w0BAQsFAAOCAQEAobB4MRIxZGHrRIXyIxqKhe1mljdRn1HTe9w9QYzg
sauMxGZoyZ2rCZxCThVQTpPhEL8/ydMiCMiCsirOJDnSpYEXBZGorr/T78cmmwu2
LK5Qc/3andL9laZM1ufq+hEnj1Ct5gmeGiaZBFO6FPJL1IE3V5qcnEOiKa7E2Bdg
Vt86RBExFTnuO3OCJkw1IZPxiL8QVrYpPL+SOFBVuu6zFHz+lY1xSLQt5KZw0ODw
GTbbx/Z002+4+Xt99T3cGas6wCB+U/e0G5/TiDoCymVsph4kxUMJ8xi2wGL4KLs5
tFLOLTw/USDnNwPJ39j2rya5r1JBjefo7mFPtNzptEmQaw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:06:21 2025 by rpki-client