Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Or6kXmwHMPIhk8cjXNj3ADTo-s.roa
File: 5Or6kXmwHMPIhk8cjXNj3ADTo-s.roa (raw, json)
Hash identifier: cZmHl85wWmoNn4afIgFXJK/NdJqdRvIUITUwOsH3QGc=
Subject key identifier: E4:EA:FA:91:79:B0:1C:C3:C8:86:4F:1C:8D:73:63:DC:00:D3:A3:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CC9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Or6kXmwHMPIhk8cjXNj3ADTo-s.roa
Signing time: Sun 07 Feb 2021 11:45:09 +0000
ROA not before: Sun 07 Feb 2021 11:45:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 220.229.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3273 (0xcc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:45:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E4EAFA9179B01CC3C8864F1C8D7363DC00D3A3EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ce:93:8b:94:b4:d9:8d:81:a7:19:f6:72:12:
c2:62:92:f7:0c:71:e2:24:07:36:b7:9b:39:46:98:
b1:0e:68:98:e9:af:a9:f3:66:23:52:42:fb:7c:18:
2e:d2:27:3f:18:c9:f4:92:5f:d6:8e:39:09:b9:92:
58:7c:7e:ca:3e:71:55:02:53:32:8f:fb:0b:55:e8:
9b:8b:97:64:93:10:ef:49:f6:87:83:0d:ba:6b:58:
1d:d7:33:45:8f:b8:ab:21:a1:d7:29:13:ac:2f:45:
3a:86:b6:54:1d:66:9e:ad:4b:e6:99:d5:62:19:83:
f8:dc:a8:cd:39:e8:db:51:4b:c3:22:6c:1c:6e:d3:
73:02:28:89:23:ed:73:18:f1:d0:a3:90:bb:40:17:
19:15:4a:d4:86:7a:60:52:e2:b2:d0:dd:0a:50:fc:
3b:04:34:ca:d6:f6:0c:98:9b:f0:e9:fe:82:f9:14:
39:e2:8b:d0:d8:b4:b8:3e:ba:a7:33:54:57:6f:78:
55:70:ba:ae:fc:49:74:8c:f4:5f:b6:38:f7:94:e9:
82:4b:20:b1:7c:8a:69:bb:b0:8d:74:4f:6d:2d:18:
a0:6b:24:af:7e:2f:34:88:39:43:c3:2f:ff:5d:0e:
45:bf:ed:96:87:64:4a:1e:46:b3:59:ce:71:20:c2:
71:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:EA:FA:91:79:B0:1C:C3:C8:86:4F:1C:8D:73:63:DC:00:D3:A3:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5Or6kXmwHMPIhk8cjXNj3ADTo-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:89:d4:75:4c:53:22:71:ed:27:02:b1:15:6c:c8:7a:ca:85:
1e:44:98:0c:44:0c:02:2c:6f:8d:7d:8c:f0:4b:33:9f:c9:09:
c8:ae:b3:a7:e2:52:fe:84:1e:43:de:53:91:ba:6e:f8:9b:dc:
17:8a:fd:06:f2:2b:8b:d1:0f:e1:a9:72:7f:b0:eb:42:a4:86:
4a:41:fc:4d:2f:74:2f:26:57:ef:a8:f9:e4:13:65:fa:bb:17:
f0:86:35:58:23:80:8e:15:4e:ac:ad:e6:15:ec:b4:09:d7:8e:
41:af:ee:99:62:a9:ba:65:4d:69:94:9c:7a:5f:3c:00:24:04:
e6:4f:5f:ae:73:e5:08:a9:8e:5e:b5:43:f8:30:4f:8d:99:4d:
7a:0e:62:bd:48:e3:ca:20:be:53:fe:0a:c8:db:f1:3a:8f:36:
b5:be:68:42:5d:1d:23:0a:4b:c0:60:fd:2d:1e:b0:e8:38:df:
74:61:05:1e:fc:8a:22:a4:13:77:05:d8:03:66:70:67:ab:cf:
22:d9:a8:4e:8c:e0:18:68:29:35:11:11:d7:94:15:18:a8:b9:
ed:2b:85:94:30:35:00:da:9d:be:59:6f:fc:1b:1b:44:e5:e0:
53:fe:e0:72:7d:00:b6:45:f2:7c:c2:86:4e:55:61:c7:46:81:
8d:0d:21:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:23:02 2025 by rpki-client