Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa
File: ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa (raw, json)
Hash identifier: MegBc9C89Ke8zhecntJeUMeQYjGYoRvxsFiyhlULHxE=
Subject key identifier: 66:72:BD:26:06:58:4E:C7:EF:FC:5A:DD:A4:EF:EC:CC:D5:8A:FD:61
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12D8
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa
Signing time: Mon 26 Aug 2024 05:32:37 +0000
ROA not before: Mon 26 Aug 2024 05:32:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4824 (0x12d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6672BD2606584EC7EFFC5ADDA4EFECCCD58AFD61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:08:44:87:5f:49:64:8e:30:e0:e9:c9:95:3f:
25:42:55:51:18:a1:ed:cb:d4:7f:60:03:80:98:cb:
af:71:84:c3:88:54:a9:e9:a3:1a:a6:f7:e6:bd:4a:
e5:88:ce:3d:89:c6:1f:a5:08:e5:a7:1e:8e:a0:31:
09:ca:e0:0d:9d:f7:5c:ec:59:98:56:14:a4:a9:9f:
02:ce:0c:29:da:7a:5a:fa:d4:93:2b:ee:1c:6d:2b:
e7:4c:26:fb:c2:68:42:87:15:25:f7:27:07:2d:50:
37:a5:92:d1:50:40:67:72:c3:33:67:bc:3b:50:60:
26:70:e7:cb:38:b9:02:12:44:f3:d9:9e:9c:70:32:
fd:07:99:be:7f:c3:58:b2:7a:fc:22:a1:36:7e:04:
0d:e1:7f:99:65:b8:7c:b0:4f:84:2c:dc:65:d0:2a:
ce:e9:06:ec:03:e7:08:5f:73:0a:81:1c:c2:cf:66:
a3:12:1d:28:5a:63:8d:87:fb:ad:76:ea:b2:b0:6e:
4f:aa:f3:14:af:0d:b7:ce:c8:af:78:34:43:de:0c:
86:2d:ce:b8:68:f5:02:a5:da:5d:2b:38:94:b7:df:
35:1f:e6:5c:ac:3b:fd:43:5f:b0:5c:8d:6c:39:03:
0b:30:0c:8f:d0:0c:1d:9e:77:32:14:e3:03:d5:eb:
5d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:72:BD:26:06:58:4E:C7:EF:FC:5A:DD:A4:EF:EC:CC:D5:8A:FD:61
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
28:51:22:df:dd:00:9e:7d:88:67:c8:89:5a:d4:e5:b9:e9:3c:
83:b2:3b:6a:8f:c9:92:a7:ef:41:2a:15:bf:c7:21:1f:dd:87:
51:42:e0:75:96:ee:ae:cf:dd:61:78:74:eb:45:14:b2:20:69:
d5:71:42:a2:ac:b8:b3:6c:4b:a3:7d:f3:2b:0f:8e:af:57:2a:
27:82:3d:db:f3:8e:8d:f7:f0:2d:ec:f0:4d:2b:70:88:7d:70:
0a:9d:d5:20:5e:de:99:14:ab:37:e7:c9:74:8d:19:5b:bd:b1:
9f:ad:f9:a8:5a:47:74:2c:75:17:eb:01:68:43:23:23:7a:0e:
b5:65:be:3c:43:b9:35:d3:17:c6:4d:0c:d7:9a:2d:62:7d:7c:
34:39:12:90:98:aa:c6:f7:6c:12:ea:a4:94:4a:ee:15:7c:fa:
be:e0:75:83:4f:37:d6:29:29:92:d7:f8:bf:06:7e:2a:fe:04:
c7:c0:90:9c:13:4d:8f:5f:b6:4d:78:be:89:ee:41:03:c9:ef:
35:66:78:c7:f1:0f:e9:5c:ae:13:d1:8d:dc:3c:cc:1f:6b:90:
9d:07:0d:84:82:1a:5c:73:0e:b4:34:4e:01:45:74:f9:0c:c4:
f3:86:db:ac:6c:a8:7e:68:b6:ed:1d:6e:28:01:b1:3e:34:c2:
44:2f:f9:26
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MjYw
NTMyMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2NzJCRDI2MDY1ODRF
QzdFRkZDNUFEREE0RUZFQ0NDRDU4QUZENjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQCESHX0lkjjDg6cmVPyVCVVEYoe3L1H9gA4CYy69xhMOIVKnp
oxqm9+a9SuWIzj2Jxh+lCOWnHo6gMQnK4A2d91zsWZhWFKSpnwLODCnaelr61JMr
7hxtK+dMJvvCaEKHFSX3JwctUDelktFQQGdywzNnvDtQYCZw58s4uQISRPPZnpxw
Mv0Hmb5/w1iyevwioTZ+BA3hf5lluHywT4Qs3GXQKs7pBuwD5whfcwqBHMLPZqMS
HShaY42H+6126rKwbk+q8xSvDbfOyK94NEPeDIYtzrho9QKl2l0rOJS33zUf5lys
O/1DX7BcjWw5AwswDI/QDB2edzIU4wPV610jAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUZnK9JgZYTsfv/FrdpO/szNWK/WEwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9abks5SmdaWVRzZnZfRnJkcE9f
c3pOV0tfV0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl
MA0GCSqGSIb3DQEBCwUAA4IBAQAoUSLf3QCefYhnyIla1OW56TyDsjtqj8mSp+9B
KhW/xyEf3YdRQuB1lu6uz91heHTrRRSyIGnVcUKirLizbEujffMrD46vVyongj3b
846N9/At7PBNK3CIfXAKndUgXt6ZFKs358l0jRlbvbGfrfmoWkd0LHUX6wFoQyMj
eg61Zb48Q7k10xfGTQzXmi1ifXw0ORKQmKrG92wS6qSUSu4VfPq+4HWDTzfWKSmS
1/i/Bn4q/gTHwJCcE02PX7ZNeL6J7kEDye81ZnjH8Q/pXK4T0Y3cPMwfa5CdBw2E
ghpccw60NE4BRXT5DMTzhtusbKh+aLbtHW4oAbE+NMJEL/km
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:55:27 2025 by rpki-client