Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1hZ-X7H4giAZ61wIOKl6QX_PHqQ.roa
File: 1hZ-X7H4giAZ61wIOKl6QX_PHqQ.roa (raw, json)
Hash identifier: jkJRbJ4iLQlgrC/+blF8XkLnGHf+6+N8CCys3TkFEIg=
Subject key identifier: D6:16:7E:5F:B1:F8:82:20:19:EB:5C:08:38:A9:7A:41:7F:CF:1E:A4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17EA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1hZ-X7H4giAZ61wIOKl6QX_PHqQ.roa
Signing time: Mon 10 Feb 2025 14:07:24 +0000
ROA not before: Mon 10 Feb 2025 14:07:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 175.183.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6122 (0x17ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D6167E5FB1F8822019EB5C0838A97A417FCF1EA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e6:9b:82:29:4b:1d:44:9d:7d:fe:9b:4f:77:
93:11:00:84:0d:66:ef:29:0e:f5:f8:42:18:66:84:
a6:56:c6:e6:25:c9:ae:b0:5a:e5:89:d1:8e:aa:46:
e5:28:b7:ba:01:f0:e7:54:b8:7e:fa:6a:ed:03:72:
40:be:3e:01:fe:14:a3:54:1f:fa:9d:f7:e5:9f:8b:
1f:c4:c6:09:1e:71:2f:67:a3:4a:f8:a1:31:79:d1:
54:2c:1f:c2:c9:e8:d7:87:03:d6:48:1e:e9:6a:c6:
60:81:1e:3b:73:45:23:01:fe:63:27:4d:a5:5f:bd:
d5:31:cb:8c:d2:c8:10:60:58:73:15:85:6e:42:fb:
94:a9:1b:54:68:72:8f:c7:75:db:37:41:25:e1:24:
74:a7:11:9b:d4:77:62:23:17:6d:06:f9:c0:69:99:
1a:cf:67:a3:aa:f5:70:eb:5a:72:4f:54:a4:4e:e3:
f5:0e:4a:5e:16:01:df:a7:5a:23:7d:c2:25:e4:1b:
18:60:7d:74:e5:2e:d0:b6:30:fa:f5:6b:d1:86:17:
bc:d3:09:38:db:69:c7:cb:af:00:1c:05:70:3e:d4:
b5:40:8a:27:fa:42:fa:49:0a:50:de:9d:9b:c2:bc:
ba:e7:c0:f5:2d:49:be:2b:f7:53:00:63:4e:52:30:
77:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:16:7E:5F:B1:F8:82:20:19:EB:5C:08:38:A9:7A:41:7F:CF:1E:A4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1hZ-X7H4giAZ61wIOKl6QX_PHqQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a8:ff:c4:74:71:e1:a8:14:fc:7b:43:5b:79:1e:28:64:bc:83:
38:00:6c:fd:2e:7b:10:50:bf:68:37:ea:da:9a:39:0d:d8:b7:
da:b0:e5:2f:a1:29:8e:7c:ae:53:0e:40:b0:06:97:ee:c3:31:
ba:60:79:50:61:3d:2c:4b:05:79:b3:22:66:19:18:a8:8a:ca:
4b:5f:57:b9:a6:a5:71:60:c0:75:78:d8:60:24:56:c7:19:78:
8c:cb:62:f7:51:5f:0e:35:aa:50:7c:0d:c0:3c:94:b3:ae:17:
a4:82:97:df:90:12:3b:51:62:b3:21:db:d7:1f:c7:19:61:c5:
08:4a:2f:f5:ec:49:38:82:b2:e3:f6:b0:47:80:04:8e:ef:89:
d4:fc:b4:6c:72:b0:6d:88:47:10:6f:91:a6:71:1b:c6:d4:be:
69:c3:85:8e:8c:bf:14:e1:1c:64:a7:83:3e:03:f1:de:41:4e:
f3:5c:5e:f6:9c:12:0d:6b:c7:1c:8b:91:1a:6c:68:5f:07:fd:
10:b0:a6:d6:5e:b4:57:17:ae:68:18:a2:fb:86:f3:5f:97:a5:
3a:a8:52:91:20:df:78:1d:c6:c0:e2:b3:ec:be:03:06:52:f2:
aa:81:10:07:73:6f:13:db:46:d1:ed:bd:c5:9b:7d:11:48:db:
09:ab:8e:2b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICF+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2MTY3RTVGQjFGODgy
MjAxOUVCNUMwODM4QTk3QTQxN0ZDRjFFQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDX5puCKUsdRJ19/ptPd5MRAIQNZu8pDvX4QhhmhKZWxuYlya6w
WuWJ0Y6qRuUot7oB8OdUuH76au0DckC+PgH+FKNUH/qd9+Wfix/ExgkecS9no0r4
oTF50VQsH8LJ6NeHA9ZIHulqxmCBHjtzRSMB/mMnTaVfvdUxy4zSyBBgWHMVhW5C
+5SpG1Roco/Hdds3QSXhJHSnEZvUd2IjF20G+cBpmRrPZ6Oq9XDrWnJPVKRO4/UO
Sl4WAd+nWiN9wiXkGxhgfXTlLtC2MPr1a9GGF7zTCTjbacfLrwAcBXA+1LVAiif6
QvpJClDenZvCvLrnwPUtSb4r91MAY05SMHddAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU1hZ+X7H4giAZ61wIOKl6QX/PHqQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMWhaLVg3SDRnaUFaNjF3SU9LbDZR
WF9QSHFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBa+3IDAN
BgkqhkiG9w0BAQsFAAOCAQEAqP/EdHHhqBT8e0NbeR4oZLyDOABs/S57EFC/aDfq
2po5Ddi32rDlL6EpjnyuUw5AsAaX7sMxumB5UGE9LEsFebMiZhkYqIrKS19Xuaal
cWDAdXjYYCRWxxl4jMti91FfDjWqUHwNwDyUs64XpIKX35ASO1FisyHb1x/HGWHF
CEov9exJOIKy4/awR4AEju+J1Py0bHKwbYhHEG+RpnEbxtS+acOFjoy/FOEcZKeD
PgPx3kFO81xe9pwSDWvHHIuRGmxoXwf9ELCm1l60VxeuaBii+4bzX5elOqhSkSDf
eB3GwOKz7L4DBlLyqoEQB3NvE9tG0e29xZt9EUjbCauOKw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 14:51:33 2025 by rpki-client