Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-1WrBYMNr3u0ntAwGvVMLdx2Mnc.roa
File: -1WrBYMNr3u0ntAwGvVMLdx2Mnc.roa (raw, json)
Hash identifier: WzfG9Vc6s+WrmWrH1p1idFmfWwPWeLCSFjj9LTXB+dU=
Subject key identifier: FB:55:AB:05:83:0D:AF:7B:B4:9E:D0:30:1A:F5:4C:2D:DC:76:32:77
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 086A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-1WrBYMNr3u0ntAwGvVMLdx2Mnc.roa
Signing time: Tue 29 Sep 2020 09:52:01 +0000
ROA not before: Tue 29 Sep 2020 09:52:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 220.228.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2154 (0x86a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FB55AB05830DAF7BB49ED0301AF54C2DDC763277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:65:b4:73:12:f8:6a:cd:73:ef:64:99:b9:d1:
4b:ff:b9:b9:b0:7b:5f:af:c4:d9:ab:c1:f5:12:ee:
e7:b5:d9:f4:c9:58:a8:5b:fc:31:7a:cf:46:88:c1:
80:7a:7f:0e:7e:6e:f0:ab:e7:07:7c:b7:64:33:e5:
76:95:fb:56:dc:99:e2:2f:cc:11:fb:dd:e4:84:dd:
7f:72:4b:45:58:69:c6:ab:d9:d1:9b:f1:5e:19:11:
04:4f:f9:d9:ad:47:b7:a5:61:a9:ad:4f:63:53:28:
41:e0:28:4f:b8:0e:15:f5:70:bc:08:5d:28:35:df:
31:3f:d4:13:89:72:56:14:f6:3f:d6:f8:cf:9e:e3:
eb:11:10:88:0d:0c:90:b2:72:bd:98:28:05:47:55:
3a:81:c6:a4:4d:03:60:9e:9d:4c:40:24:fe:01:87:
15:df:93:1e:cc:cd:7f:2e:09:1e:bc:5b:7f:9a:cb:
31:fc:96:64:2f:62:13:88:9f:69:62:db:82:21:dc:
18:d1:e8:90:0b:78:62:d4:a2:dc:03:6a:a6:96:58:
0b:3d:a2:4e:28:5c:64:3d:c9:8c:d9:bd:7f:db:df:
32:21:e9:1a:c6:5d:48:64:b7:b4:39:16:37:55:e4:
c6:74:a4:c6:1e:58:ff:f6:cc:0f:9b:41:d6:19:8e:
c0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:55:AB:05:83:0D:AF:7B:B4:9E:D0:30:1A:F5:4C:2D:DC:76:32:77
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-1WrBYMNr3u0ntAwGvVMLdx2Mnc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.228.0.0/16
Signature Algorithm: sha256WithRSAEncryption
42:89:2b:ca:6a:a8:1a:89:8c:6f:3d:5f:f5:7b:d8:1e:1f:12:
16:d4:cd:56:bb:7e:9e:73:01:19:12:23:a5:2d:5c:63:e2:e2:
84:90:c1:59:67:0a:83:24:d3:ef:94:ca:30:65:c5:69:3e:a7:
92:57:fa:29:ab:18:69:70:a8:82:80:b7:d1:3c:77:1a:9c:dd:
22:ef:d9:2c:96:40:3d:87:28:ba:81:dc:40:db:48:bc:97:e6:
a9:9e:10:cd:e1:30:d9:17:8d:de:96:2e:ad:c0:d4:64:f0:cc:
bc:03:8f:eb:16:21:0a:6c:ae:21:2d:f8:99:5c:e2:bf:ab:19:
8f:e0:42:35:1f:3e:54:2e:54:b7:95:76:8b:b9:47:48:b4:34:
77:1e:5e:c4:09:ad:90:3f:73:d9:01:fe:ba:15:88:d7:85:4d:
ab:cf:14:2a:aa:88:dd:e6:5c:da:5d:a9:b0:76:1a:73:d5:10:
fb:01:77:cc:da:b9:52:f6:bd:b8:9c:20:a0:7e:c3:37:b8:a1:
c7:34:76:f7:cd:49:a3:95:48:d6:ca:fc:fd:5f:51:53:4f:99:
4d:22:30:33:b2:7f:d9:18:4a:2e:c3:49:1e:fb:9f:4a:38:57:
94:47:72:d7:7c:33:4c:74:0b:42:03:86:b4:ab:8f:36:95:f9:
d4:c5:21:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:17:03 2025 by rpki-client