Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Hh-nJ1w1EZFI8dCMH73Y1r_VKo.roa
File: 5Hh-nJ1w1EZFI8dCMH73Y1r_VKo.roa (raw, json)
Hash identifier: UkRx2rHZ9n6b4sCZeyoL8ghKpuzGzdes2QZw652DOA4=
Subject key identifier: E4:78:7E:9C:9D:70:D4:46:45:23:C7:42:30:7E:F7:63:5A:FF:54:AA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08FA
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Hh-nJ1w1EZFI8dCMH73Y1r_VKo.roa
Signing time: Tue 29 Sep 2020 09:52:40 +0000
ROA not before: Tue 29 Sep 2020 09:52:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2298 (0x8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E4787E9C9D70D4464523C742307EF7635AFF54AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f2:58:a7:3d:c3:e6:60:24:ad:d4:b2:29:be:
22:96:7c:11:20:9b:41:f6:c6:b4:c8:90:64:de:8e:
d7:32:64:48:68:4d:8a:a9:6b:2a:92:4d:62:57:9b:
23:48:0b:fe:97:e4:b7:7c:87:33:7a:41:1c:ce:39:
de:42:24:ee:1e:13:5f:86:77:01:76:e4:a2:cf:89:
32:1d:9a:4a:f1:3c:20:74:3c:01:1a:33:4e:d3:76:
58:35:30:95:dc:90:e0:e4:01:c2:8b:ac:84:b1:db:
24:86:38:d3:b4:8b:ee:21:d4:9a:a7:4c:5f:8c:47:
93:45:0d:b7:74:53:94:25:04:2d:7c:26:52:ff:7d:
08:95:0f:2b:47:5b:2a:d4:b3:71:46:56:f5:22:03:
7e:4e:b1:27:9e:0e:96:f2:8f:d9:47:19:ab:9c:37:
a1:ce:5a:05:6f:20:88:61:f7:f8:fb:0e:98:a5:6a:
31:1b:53:0a:99:5c:b7:3f:44:2e:44:04:ab:e3:0b:
1b:f1:ed:5a:49:64:e5:01:7e:ff:56:59:4a:4b:05:
33:80:d1:a3:53:3f:a4:ed:54:6d:58:e7:13:b1:f8:
4d:74:f8:2e:a4:34:2d:be:fc:0b:67:a6:72:cb:dc:
1b:bd:dc:8b:97:25:dd:58:fc:9e:e4:7d:aa:03:12:
5f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:78:7E:9C:9D:70:D4:46:45:23:C7:42:30:7E:F7:63:5A:FF:54:AA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Hh-nJ1w1EZFI8dCMH73Y1r_VKo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
55:01:fd:4b:76:9b:92:c2:92:12:97:69:fd:ad:f0:25:5a:5a:
49:b6:dd:92:d7:90:9d:d4:1b:b5:ac:86:f5:2a:41:23:c2:4b:
96:60:2e:ef:32:72:e7:c9:8e:8e:fd:4e:e7:cc:a7:7b:cf:2e:
82:20:db:3e:3a:bd:d3:8d:c3:67:7a:41:da:a3:53:d4:16:5c:
32:2c:ff:8a:34:34:af:fc:fe:15:ac:cf:b6:4d:0e:c1:91:76:
30:d7:a3:91:0d:62:45:dd:53:2f:c1:31:2d:1f:dc:3a:3f:25:
f4:f3:90:29:1b:31:01:e6:09:29:ee:06:1e:ce:8f:3e:d7:dc:
26:7f:6b:38:5c:d5:9d:3e:5f:38:f9:3f:5c:70:e5:4f:9f:74:
14:f8:18:3c:8c:50:75:06:7b:36:4c:d1:0e:13:6b:32:7a:c7:
b2:b1:3f:c2:83:a4:20:ee:3e:22:c3:46:ca:b2:3c:59:be:ee:
ce:12:59:d5:9f:16:ca:4c:e2:49:81:9f:b3:86:fc:58:3b:1d:
39:95:5f:56:5f:ac:95:f3:20:7a:11:fd:8a:42:a5:80:76:05:
a0:96:b6:7f:66:bc:63:3c:23:30:cc:3d:e5:1e:73:15:16:8c:
e6:c9:96:47:ca:32:23:ef:b3:ee:f6:3b:13:ea:49:ad:df:6b:
5b:30:0d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:32:17 2025 by rpki-client