Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WNCL/4Giid2M2aXvgi-HAOfgWM-S_qJw.roa
File: 4Giid2M2aXvgi-HAOfgWM-S_qJw.roa (raw, json)
Hash identifier: jvPfjnQW8BK48T3VELz/VR9WAG0XAIclr4LOtKMucXk=
Subject key identifier: E0:68:A2:77:63:36:69:7B:E0:8B:E1:C0:39:F8:16:33:E4:BF:A8:9C
Certificate issuer: /CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Certificate serial: 0955
Authority key identifier: 9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/4Giid2M2aXvgi-HAOfgWM-S_qJw.roa
Signing time: Wed 29 Sep 2021 02:40:30 +0000
ROA not before: Wed 29 Sep 2021 02:40:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134823
IP address blocks: 2403:a340::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389 (0x955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Validity
Not Before: Sep 29 02:40:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E068A2776336697BE08BE1C039F81633E4BFA89C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:08:b7:ad:55:b4:bf:e4:68:8d:13:cc:69:99:
95:4f:9b:af:3a:99:4c:d5:1c:06:f8:5e:fd:4d:44:
e0:76:56:40:d8:e4:14:2c:25:50:ce:ed:2f:5f:6c:
34:dc:d3:b9:27:fb:77:f8:56:7b:7d:d0:c9:f6:c5:
62:84:8d:db:24:6a:61:ef:48:1d:53:2d:15:52:82:
15:c2:49:d5:10:4a:d8:8a:ec:58:da:98:da:e1:9e:
bf:58:cf:4e:f6:08:34:2d:bf:39:dc:b9:26:75:31:
8b:30:a7:b9:22:6b:f1:2d:64:5a:43:ea:6d:8f:56:
89:10:6c:04:d1:d2:f7:47:65:33:65:e0:23:a9:a2:
5e:e6:58:f9:82:55:45:28:f9:5d:12:4a:da:fe:07:
1a:a0:3d:8e:01:f2:4e:81:e3:8d:72:9d:5f:00:7a:
63:71:3c:7d:32:d9:3c:2e:17:1a:71:aa:91:a0:9d:
c5:0f:0d:f2:cd:52:67:e1:43:ec:82:fa:1a:a2:64:
af:12:00:73:34:e0:a0:c3:75:f8:0d:57:d0:07:50:
49:b0:db:9e:a2:e4:27:4e:6f:cf:60:6a:8a:7b:fe:
6f:e3:79:cc:66:07:72:02:fb:ea:fc:06:1a:36:b7:
9f:76:37:78:ea:75:b5:66:10:be:f3:76:45:f9:57:
2a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:68:A2:77:63:36:69:7B:E0:8B:E1:C0:39:F8:16:33:E4:BF:A8:9C
X509v3 Authority Key Identifier:
keyid:9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/4Giid2M2aXvgi-HAOfgWM-S_qJw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a340::/32
Signature Algorithm: sha256WithRSAEncryption
0a:88:14:8f:6a:b5:27:26:5d:a6:e7:db:dd:f0:f1:72:c0:0a:
af:d3:70:87:d4:eb:d6:64:12:ae:6f:7c:03:2f:4c:86:3e:26:
f2:f4:77:ef:2f:59:99:87:20:84:09:b2:20:42:16:9a:53:eb:
30:c0:0f:62:9b:dd:66:98:70:e1:a2:f6:58:7e:15:57:05:1e:
d9:ba:da:58:b9:35:cb:ba:bb:22:ad:55:fc:38:9f:ff:83:f2:
97:79:f3:07:cc:56:92:bf:64:59:57:df:8f:31:bc:bf:02:ce:
dd:cc:09:b6:e8:0f:19:48:a9:89:02:2f:23:f0:16:e1:54:90:
c1:5f:b4:1a:44:22:a5:06:82:53:37:32:1a:cb:23:69:87:7b:
3e:fc:38:24:db:21:a5:d1:bb:b1:5f:17:72:ea:ba:f5:76:f9:
43:e6:95:71:a5:e9:f6:68:8c:e9:97:a5:7d:4e:a8:f6:66:b9:
c4:25:b4:dd:4c:f0:61:d3:31:29:fb:9b:0e:97:e3:7c:46:bc:
66:f1:81:0c:ee:3a:87:1d:b0:e0:0a:f3:ad:53:fd:5f:4a:55:
6b:42:16:74:6e:55:3c:2b:10:e0:bd:31:51:18:a6:c4:f9:13:
61:df:a0:89:02:6d:5b:92:c1:4a:4f:e5:0a:a1:37:c7:5a:1c:
60:4c:32:af
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCVUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQ0
NDFBQUREMjM5QUQ5MjYwMTBBRkM0REIyMDQ1NEVGMkM0QjBDMTAeFw0yMTA5Mjkw
MjQwMzBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEUwNjhBMjc3NjMzNjY5
N0JFMDhCRTFDMDM5RjgxNjMzRTRCRkE4OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCCLetVbS/5GiNE8xpmZVPm686mUzVHAb4Xv1NROB2VkDY5BQs
JVDO7S9fbDTc07kn+3f4Vnt90Mn2xWKEjdskamHvSB1TLRVSghXCSdUQStiK7Fja
mNrhnr9Yz072CDQtvzncuSZ1MYswp7kia/EtZFpD6m2PVokQbATR0vdHZTNl4COp
ol7mWPmCVUUo+V0SStr+BxqgPY4B8k6B441ynV8AemNxPH0y2TwuFxpxqpGgncUP
DfLNUmfhQ+yC+hqiZK8SAHM04KDDdfgNV9AHUEmw256i5CdOb89gaop7/m/jecxm
B3IC++r8Bho2t592N3jqdbVmEL7zdkX5Vyq3AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU4Giid2M2aXvgi+HAOfgWM+S/qJwwHwYDVR0jBBgwFoAUnUQardI5rZJgEK/E
2yBFTvLEsMEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV05DTC9u
VVFhcmRJNXJaSmdFS19FMnlCRlR2TEVzTUUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L25VUWFyZEk1clpKZ0VLX0UyeUJGVHZMRXNNRS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1dOQ0wvNEdpaWQyTTJhWHZnaS1IQU9mZ1dN
LVNfcUp3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDo0Aw
DQYJKoZIhvcNAQELBQADggEBAAqIFI9qtScmXabn293w8XLACq/TcIfU69ZkEq5v
fAMvTIY+JvL0d+8vWZmHIIQJsiBCFppT6zDAD2Kb3WaYcOGi9lh+FVcFHtm62li5
Ncu6uyKtVfw4n/+D8pd58wfMVpK/ZFlX348xvL8Czt3MCbboDxlIqYkCLyPwFuFU
kMFftBpEIqUGglM3MhrLI2mHez78OCTbIaXRu7FfF3LquvV2+UPmlXGl6fZojOmX
pX1OqPZmucQltN1M8GHTMSn7mw6X43xGvGbxgQzuOocdsOAK861T/V9KVWtCFnRu
VTwrEOC9MVEYpsT5E2HfoIkCbVuSwUpP5QqhN8daHGBMMq8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:18 2025 by rpki-client