Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/0KiIN41qvN2vBJM54_0JweQ__VI.roa
File: 0KiIN41qvN2vBJM54_0JweQ__VI.roa (raw, json)
Hash identifier: KXhVJe88XuD/Bp3g1hjXM+HYLduY1DucS+Bwee54rhc=
Subject key identifier: D0:A8:88:37:8D:6A:BC:DD:AF:04:93:39:E3:FD:09:C1:E4:3F:FD:52
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0CC9
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/0KiIN41qvN2vBJM54_0JweQ__VI.roa
Signing time: Thu 05 Dec 2024 00:56:18 +0000
ROA not before: Thu 05 Dec 2024 00:56:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3273 (0xcc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 5 00:56:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D0A888378D6ABCDDAF049339E3FD09C1E43FFD52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ec:49:3c:2d:de:fc:a8:14:ea:4f:aa:aa:03:
a8:86:7e:a6:11:cb:b8:8b:22:39:15:a4:78:48:9a:
a9:2e:94:f3:18:e3:f1:2b:28:f1:59:94:5e:f7:11:
f4:43:89:b7:87:24:29:72:8b:6b:3f:dc:b2:3a:91:
5e:3c:47:cf:29:12:69:12:7b:7b:67:89:40:3c:67:
78:bf:31:9c:26:b3:c4:7d:fb:5b:9f:6a:21:5d:4c:
2d:dd:10:d5:80:37:0d:8c:be:75:89:c7:84:ee:63:
f7:4b:69:24:59:20:41:25:39:37:f8:04:35:2d:ee:
dc:8f:25:c6:91:86:ad:32:cd:78:ae:27:aa:a4:a5:
a8:29:69:2a:49:1f:fb:5a:fa:3f:d0:ed:0d:1d:f5:
8a:96:ce:4b:85:1a:a5:85:f4:c5:33:1b:cc:f3:57:
eb:73:70:25:c0:95:d0:c9:5b:49:49:7f:eb:60:7e:
49:7b:ed:f8:c9:b1:51:1b:01:5b:dd:1f:87:bf:c4:
c8:6a:3f:2f:cd:4a:99:62:00:fd:dc:bd:28:f1:9e:
1f:bc:de:bc:07:9d:86:37:14:60:a4:21:2d:5f:36:
a8:a9:c2:4d:bb:9d:75:11:a9:d1:c6:36:87:64:07:
59:35:7e:3c:4f:92:12:58:0f:fe:38:20:c9:0e:f3:
6d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A8:88:37:8D:6A:BC:DD:AF:04:93:39:E3:FD:09:C1:E4:3F:FD:52
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/0KiIN41qvN2vBJM54_0JweQ__VI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
63:56:8e:93:27:e5:d8:86:86:0b:65:d5:b9:e3:e9:ea:25:76:
3a:4d:57:5d:97:0d:6b:06:ec:78:e7:94:3f:29:33:21:22:7f:
25:fe:6f:ea:72:1e:21:96:05:8d:b7:ed:82:94:c1:f9:b2:d9:
18:41:7a:1d:38:96:93:dc:96:4e:cd:26:4a:45:9b:74:0a:60:
49:16:6f:44:f6:ee:c9:86:18:b9:b7:c9:f5:34:51:7c:71:7c:
94:2e:5a:27:61:d6:49:bc:77:6e:d1:13:7a:74:60:b1:6c:fb:
41:ef:e1:13:77:4a:ad:48:11:9b:5d:8c:e0:22:b6:9a:11:97:
a1:e6:70:86:c4:18:04:81:ce:6d:0b:46:01:ed:81:67:73:e1:
94:80:c5:98:16:99:d1:fb:69:bf:e7:03:12:0e:95:14:b8:3d:
13:99:93:fc:17:29:10:b2:4c:88:48:b1:ea:59:28:f6:ea:71:
19:a9:6c:28:2e:13:e2:d0:14:8a:34:d9:a4:17:53:83:b7:7a:
0c:a9:b2:2b:c9:c6:3e:01:39:93:97:4f:2b:78:3e:a7:3f:2a:
24:a3:b9:6a:fe:76:4c:56:54:b8:14:f0:f0:10:14:d8:1b:43:
86:9b:4f:8b:1c:7a:af:3c:9f:72:44:71:7f:c8:49:31:3a:57:
02:57:f2:c5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzA4
NTE1QzhCOUZCNTNGOENFRDQ4OUQyMTM0RjY0NDFGRkFEQTA1RTAeFw0yNDEyMDUw
MDU2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwQTg4ODM3OEQ2QUJD
RERBRjA0OTMzOUUzRkQwOUMxRTQzRkZENTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDC7Ek8Ld78qBTqT6qqA6iGfqYRy7iLIjkVpHhImqkulPMY4/Er
KPFZlF73EfRDibeHJClyi2s/3LI6kV48R88pEmkSe3tniUA8Z3i/MZwms8R9+1uf
aiFdTC3dENWANw2MvnWJx4TuY/dLaSRZIEElOTf4BDUt7tyPJcaRhq0yzXiuJ6qk
pagpaSpJH/ta+j/Q7Q0d9YqWzkuFGqWF9MUzG8zzV+tzcCXAldDJW0lJf+tgfkl7
7fjJsVEbAVvdH4e/xMhqPy/NSpliAP3cvSjxnh+83rwHnYY3FGCkIS1fNqipwk27
nXURqdHGNodkB1k1fjxPkhJYD/44IMkO822ZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU0KiIN41qvN2vBJM54/0JweQ//VIwHwYDVR0jBBgwFoAUwIUVyLn7U/jO1InS
E09kQf+toF4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElEQy93
SVVWeUxuN1Vfak8xSW5TRTA5a1FmLXRvRjQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3dJVVZ5TG43VV9qTzFJblNFMDlrUWYtdG9GNC5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJREMvMEtpSU40MXF2TjJ2QkpNNTRfMEp3
ZVFfX1ZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdjWDAN
BgkqhkiG9w0BAQsFAAOCAQEAY1aOkyfl2IaGC2XVuePp6iV2Ok1XXZcNawbseOeU
PykzISJ/Jf5v6nIeIZYFjbftgpTB+bLZGEF6HTiWk9yWTs0mSkWbdApgSRZvRPbu
yYYYubfJ9TRRfHF8lC5aJ2HWSbx3btETenRgsWz7Qe/hE3dKrUgRm12M4CK2mhGX
oeZwhsQYBIHObQtGAe2BZ3PhlIDFmBaZ0ftpv+cDEg6VFLg9E5mT/BcpELJMiEix
6lko9upxGalsKC4T4tAUijTZpBdTg7d6DKmyK8nGPgE5k5dPK3g+pz8qJKO5av52
TFZUuBTw8BAU2BtDhptPixx6rzyfckRxf8hJMTpXAlfyxQ==
-----END CERTIFICATE-----
Generated at Mon May 19 07:22:54 2025 by rpki-client