Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/39MrnI9wVGvUi4F1Ik1RnEHZtUU.roa
File: 39MrnI9wVGvUi4F1Ik1RnEHZtUU.roa (raw, json)
Hash identifier: RyVhQ5bmt+BNPB0nab73ad+M9WqFsGVh/VA84KkRSCU=
Subject key identifier: DF:D3:2B:9C:8F:70:54:6B:D4:8B:81:75:22:4D:51:9C:41:D9:B5:45
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1080
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/39MrnI9wVGvUi4F1Ik1RnEHZtUU.roa
Signing time: Wed 01 Feb 2023 10:28:38 +0000
ROA not before: Wed 01 Feb 2023 10:28:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 210.244.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4224 (0x1080)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:38 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DFD32B9C8F70546BD48B8175224D519C41D9B545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ce:16:46:6b:8a:bc:a7:36:f1:b3:b3:59:dd:
aa:d5:76:08:13:6e:d5:5d:e2:d1:f9:97:f9:82:e7:
62:65:88:77:02:8b:b5:b2:01:15:2b:f6:54:3a:a1:
5c:58:de:16:7b:dc:e9:3b:d1:35:b1:5e:30:b7:60:
b2:92:14:2f:6d:59:c3:3b:8c:e1:d9:81:ca:3f:a8:
39:02:9a:0e:5f:93:6f:33:30:4d:23:4f:a3:7c:e9:
fe:d1:98:af:54:86:57:29:56:6d:7d:c0:94:08:30:
f2:16:83:b4:de:6d:cc:76:85:b5:cc:93:da:ae:c7:
46:3f:39:7b:1f:eb:10:74:2d:4d:20:7e:11:c8:8a:
5c:28:a4:69:3e:1c:52:29:c2:a5:ff:d2:f9:e8:25:
41:2c:be:ef:dc:b4:c3:22:c3:a2:37:e2:48:2f:71:
8a:5f:18:75:6f:8d:51:2d:5f:92:17:13:56:91:bd:
0b:de:e0:60:5d:fc:d8:6b:aa:ec:48:b1:13:3c:61:
69:9a:01:eb:3f:85:04:22:62:2c:3f:5d:3b:38:d3:
a6:c3:ed:6e:2d:69:b1:05:89:07:fe:33:e6:8a:20:
83:22:f5:9b:1f:0b:84:c4:03:92:4e:2e:27:e7:ae:
2f:3f:65:fc:99:6e:ce:7f:86:ff:4b:06:19:b2:96:
a3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D3:2B:9C:8F:70:54:6B:D4:8B:81:75:22:4D:51:9C:41:D9:B5:45
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/39MrnI9wVGvUi4F1Ik1RnEHZtUU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
3c:22:60:4f:0e:d9:97:ed:73:f0:05:f5:8a:20:08:39:e8:f7:
95:4f:d8:45:78:aa:4e:ce:6b:7b:c0:8a:cf:3a:f5:d4:2d:1c:
01:3b:49:cf:7b:cf:78:49:f9:df:06:84:d5:af:76:75:33:39:
c6:59:63:2a:63:71:47:f9:ec:08:25:32:ea:49:3d:c1:44:99:
08:a9:a7:11:7c:6e:ca:b0:d5:67:67:9c:e9:1b:14:72:23:c4:
9c:9f:e1:41:2e:67:44:0d:17:5d:e4:17:13:79:07:e7:e1:6d:
39:1f:d1:d2:2e:b3:07:6e:55:74:a0:d6:2d:40:fb:f9:a2:ba:
98:25:86:26:f8:06:89:17:19:f0:8e:0e:5c:86:70:8b:73:a9:
a2:fe:d3:53:6d:cf:eb:4a:af:06:17:f0:d5:5b:dd:d2:70:b8:
b6:33:8c:52:8c:5b:46:49:24:d0:9d:9f:a7:79:a0:28:b4:90:
4b:1a:26:ad:5b:4f:f7:7a:e3:b7:37:96:0a:d6:eb:a5:29:45:
d3:93:0b:38:a4:e2:14:b8:c4:b3:08:1c:73:8b:5a:3b:0c:a9:
b0:68:09:53:1e:e0:e6:b0:13:24:ff:e3:72:8a:c0:41:10:4a:
4c:4e:3c:97:91:5b:5e:87:80:bd:85:04:17:cc:bc:55:b4:dc:
15:7c:31:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:39:59 2025 by rpki-client