Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0VhSRezdeEihAwZWsAG5N0AXTm8.roa
File: 0VhSRezdeEihAwZWsAG5N0AXTm8.roa (raw, json)
Hash identifier: kTUtZZF5R2cvubydZHdLtOglNtO/kry9mG6DrPP67Ho=
Subject key identifier: D1:58:52:45:EC:DD:78:48:A1:03:06:56:B0:01:B9:37:40:17:4E:6F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BE1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0VhSRezdeEihAwZWsAG5N0AXTm8.roa
Signing time: Sun 07 Feb 2021 06:39:28 +0000
ROA not before: Sun 07 Feb 2021 06:39:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3041 (0xbe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:39:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D1585245ECDD7848A1030656B001B93740174E6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:73:70:8b:aa:b9:95:fd:14:7d:4f:4b:68:bb:
02:c8:19:7d:ca:d7:3e:08:ef:03:58:bd:4d:f0:72:
ad:5a:76:a2:7a:b7:1b:53:2c:bd:f1:c1:56:be:98:
35:91:0c:1b:0a:7a:13:92:3b:a1:fe:ed:8c:ca:9a:
0d:61:6e:dd:74:77:99:02:72:11:2f:3b:da:37:77:
26:f3:23:94:f4:f4:93:35:84:6b:d9:5d:13:92:22:
7d:c1:b6:40:6c:0b:92:17:3e:db:9f:1e:31:16:69:
93:5e:ed:d8:12:07:04:1a:45:33:cd:d7:51:52:bc:
45:43:2d:d5:f4:8a:a4:3f:e4:85:83:38:c5:5d:1d:
dc:d1:c3:59:eb:92:00:37:5c:7d:51:11:a4:09:c7:
31:a6:ec:f7:d4:69:1d:ab:80:a1:40:bb:b2:02:15:
48:34:18:7d:da:29:8b:0c:5f:2c:4e:4c:d0:cb:bd:
07:32:a3:44:3e:02:22:73:4c:7b:d2:97:d3:5b:df:
00:68:39:76:45:d7:c8:89:27:eb:a1:7c:cd:45:4e:
a9:1d:80:5b:ca:3f:63:4a:9a:f3:68:fe:70:b8:a0:
bb:8a:c1:39:4b:79:49:c8:96:f3:4c:8c:4b:03:13:
50:62:70:07:ce:1b:60:d9:70:87:9e:44:91:81:7b:
61:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:58:52:45:EC:DD:78:48:A1:03:06:56:B0:01:B9:37:40:17:4E:6F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0VhSRezdeEihAwZWsAG5N0AXTm8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0e:de:1e:a7:7f:25:71:67:81:1d:30:cd:95:b2:46:cc:04:48:
9a:e4:33:b2:0a:1d:69:92:3c:d1:1e:7f:2b:10:ab:91:1f:13:
a9:e8:21:e8:13:2a:6c:16:48:7e:5a:8a:8f:fb:c5:d0:5e:e9:
63:00:24:76:3b:1a:c9:39:2b:56:ae:00:21:84:9d:04:7e:ba:
bb:48:7d:ed:15:8d:e5:2c:49:74:af:17:a6:b1:29:0e:05:8d:
94:1f:dd:72:1b:11:15:32:1d:7d:d1:94:de:65:c0:52:55:16:
c5:93:5a:c3:25:84:bd:21:f2:73:8b:55:19:16:5f:28:15:48:
f1:bf:b1:3b:a5:a3:f2:9e:38:05:70:a9:64:f6:d4:95:48:9c:
8b:39:6d:d9:67:82:a3:6c:1c:d9:3e:7c:53:15:ac:34:4e:cd:
67:ff:22:b4:83:f5:8d:55:d2:ee:c3:0e:86:aa:c7:9a:91:61:
4d:e6:bc:27:28:6d:67:ca:e3:81:31:a1:06:ef:42:17:9c:cd:
73:47:9f:3e:d0:7d:63:c4:fa:e5:08:25:9c:4d:16:5c:bb:50:
ab:33:69:cd:78:1c:ee:fc:bd:b5:d1:cb:02:92:d6:d7:75:47:
b6:c7:a2:38:26:6b:15:d6:e7:77:ac:2f:c8:79:e2:86:0b:02:
60:98:7d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:30:11 2025 by rpki-client