Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/BbVZgADSSKhOjhU4gn9RbbRngr4.roa
File: BbVZgADSSKhOjhU4gn9RbbRngr4.roa (raw, json)
Hash identifier: 3ZUbardbp/7BUjqG6dErb/uLdr6iuPIkme1mosEWvY8=
Subject key identifier: 05:B5:59:80:00:D2:48:A8:4E:8E:15:38:82:7F:51:6D:B4:67:82:BE
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0CA6
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/BbVZgADSSKhOjhU4gn9RbbRngr4.roa
Signing time: Mon 10 Feb 2025 14:24:16 +0000
ROA not before: Mon 10 Feb 2025 14:24:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131618
IP address blocks: 103.122.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3238 (0xca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Feb 10 14:24:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=05B5598000D248A84E8E1538827F516DB46782BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1d:70:35:5c:16:e5:0f:a1:8e:f6:b4:25:08:
87:28:e4:ea:32:f0:35:bc:c6:85:8b:30:bc:cb:3a:
62:0d:6a:d9:ed:79:d6:62:2b:43:64:79:38:e1:95:
cc:c4:f6:a8:0d:53:fa:4d:7e:9e:93:8d:37:87:1e:
fe:cd:cb:da:4b:55:ca:a4:3a:de:72:33:9a:ba:39:
2a:fb:87:7a:f9:da:01:c0:f8:57:45:08:08:12:4e:
5a:99:71:a9:e6:a4:07:55:23:18:2a:13:a7:a9:9d:
8b:82:42:45:04:e5:65:49:92:72:c5:03:88:7f:9d:
54:1d:4d:7a:ac:54:35:9f:c3:f2:c7:51:da:b6:19:
1f:cc:b8:2c:1a:22:03:96:0c:ac:66:7c:33:68:8f:
81:ae:64:5c:4a:59:2b:94:87:bc:f5:d0:09:b9:ef:
35:5c:e9:70:98:1f:9a:ae:8e:00:e7:76:09:aa:74:
25:30:f5:aa:cc:59:d6:4a:bd:46:e9:60:50:af:70:
8b:a1:92:05:44:c6:cf:f9:1d:03:99:0c:92:9a:59:
a5:0d:60:62:bc:4c:ef:71:6f:9f:97:0d:e6:73:bf:
40:d0:99:cc:90:91:4a:14:92:e0:e0:7a:93:8e:85:
40:3f:06:35:43:3b:19:0c:65:11:9b:96:c4:bb:7b:
f9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B5:59:80:00:D2:48:A8:4E:8E:15:38:82:7F:51:6D:B4:67:82:BE
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/BbVZgADSSKhOjhU4gn9RbbRngr4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.227.0/24
Signature Algorithm: sha256WithRSAEncryption
75:e1:03:97:c9:5a:bb:3d:49:71:a0:99:85:d9:2d:dd:cb:46:
13:af:cd:3c:ba:13:50:b4:e9:42:ad:e8:26:6d:99:5f:49:be:
bf:1c:e6:35:6b:3d:b2:56:19:26:98:de:d2:40:5a:f7:62:e7:
3f:4c:07:e4:63:b2:97:70:aa:2c:9f:50:ad:ef:94:65:cb:0d:
f8:57:e3:2d:59:36:d4:ec:b0:43:f6:fb:6f:98:9a:11:6b:8b:
ec:90:05:0c:fa:51:b2:7d:b4:b7:73:06:38:71:95:d3:4e:c9:
53:69:51:9d:5a:5e:33:51:67:c9:41:69:fa:92:91:a8:d4:bd:
eb:8e:92:50:2f:9e:08:6e:b2:dd:50:4a:d7:ae:5b:8d:63:ae:
4a:55:7d:01:7c:1c:21:d7:30:e2:49:ac:51:7e:9a:cc:17:36:
6f:87:48:ed:57:57:69:2f:30:48:a8:84:ed:40:43:14:18:1f:
db:95:d5:f1:6f:ef:15:c9:9c:8a:b6:a2:69:30:fb:ad:15:e2:
ae:00:2b:dc:0d:c0:9f:33:06:5f:8d:0c:7a:33:d2:87:19:90:
4d:df:e1:fd:1d:d6:34:b5:61:ad:88:a7:63:c3:0f:41:da:6c:
db:4d:23:15:d0:20:ba:b8:34:ff:65:71:45:1e:26:ac:cf:ec:
d3:1a:13:da
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjM0
MDBBQTZFNkM2OEIxM0REREM5QzAwQjgyNTg2MTI0MjczRkE5QjAeFw0yNTAyMTAx
NDI0MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1QjU1OTgwMDBEMjQ4
QTg0RThFMTUzODgyN0Y1MTZEQjQ2NzgyQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1HXA1XBblD6GO9rQlCIco5Ooy8DW8xoWLMLzLOmINatntedZi
K0NkeTjhlczE9qgNU/pNfp6TjTeHHv7Ny9pLVcqkOt5yM5q6OSr7h3r52gHA+FdF
CAgSTlqZcanmpAdVIxgqE6epnYuCQkUE5WVJknLFA4h/nVQdTXqsVDWfw/LHUdq2
GR/MuCwaIgOWDKxmfDNoj4GuZFxKWSuUh7z10Am57zVc6XCYH5qujgDndgmqdCUw
9arMWdZKvUbpYFCvcIuhkgVExs/5HQOZDJKaWaUNYGK8TO9xb5+XDeZzv0DQmcyQ
kUoUkuDgepOOhUA/BjVDOxkMZRGblsS7e/ndAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUBbVZgADSSKhOjhU4gn9RbbRngr4wHwYDVR0jBBgwFoAUY0AKpubGixPd3JwA
uCWGEkJz+pswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklTSU9O
NFlFUy9ZMEFLcHViR2l4UGQzSndBdUNXR0VrSnotcHMuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL1kwQUtwdWJHaXhQZDNKd0F1Q1dHRWtKei1wcy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1ZJU0lPTjRZRVMvQmJWWmdBRFNT
S2hPamhVNGduOVJiYlJuZ3I0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAGd64zANBgkqhkiG9w0BAQsFAAOCAQEAdeEDl8lauz1JcaCZhdkt3ctG
E6/NPLoTULTpQq3oJm2ZX0m+vxzmNWs9slYZJpje0kBa92LnP0wH5GOyl3CqLJ9Q
re+UZcsN+FfjLVk21OywQ/b7b5iaEWuL7JAFDPpRsn20t3MGOHGV007JU2lRnVpe
M1FnyUFp+pKRqNS9646SUC+eCG6y3VBK165bjWOuSlV9AXwcIdcw4kmsUX6azBc2
b4dI7VdXaS8wSKiE7UBDFBgf25XV8W/vFcmciraiaTD7rRXirgAr3A3AnzMGX40M
ejPShxmQTd/h/R3WNLVhrYinY8MPQdps200jFdAgurg0/2VxRR4mrM/s0xoT2g==
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:12:32 2025 by rpki-client