Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6lCBvh2gIxK50utOLzzphXH-f5Y.roa
File: 6lCBvh2gIxK50utOLzzphXH-f5Y.roa (raw, json)
Hash identifier: 6Yn7wCoVgnsdetJnEQAfGMjehcAs1+z3h5XbwSeiWAA=
Subject key identifier: EA:50:81:BE:1D:A0:23:12:B9:D2:EB:4E:2F:3C:E9:85:71:FE:7F:96
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10F1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6lCBvh2gIxK50utOLzzphXH-f5Y.roa
Signing time: Wed 01 Feb 2023 10:29:14 +0000
ROA not before: Wed 01 Feb 2023 10:29:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 122.147.16.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4337 (0x10f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:14 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EA5081BE1DA02312B9D2EB4E2F3CE98571FE7F96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:dd:fb:d3:0e:b7:ca:86:fc:45:34:6b:ca:a9:
ee:82:2e:91:0c:be:ff:ef:e1:97:b3:7e:47:3c:c8:
db:ff:f8:8a:ea:55:f2:30:65:2d:3f:97:f0:11:2d:
47:af:69:6d:5f:8d:fb:47:df:35:59:f3:b4:0b:90:
c2:c3:ea:45:c3:94:83:46:18:f1:98:6c:94:73:16:
c0:8e:ca:e1:54:9c:a1:41:b0:59:a7:70:d2:5b:f8:
75:d3:1f:59:2f:3f:ed:5c:2b:9f:fc:c6:bf:20:75:
19:8e:19:21:aa:a5:fa:aa:db:a5:b9:57:7d:5a:98:
44:2d:46:ac:50:c4:67:a5:cf:c0:d2:66:2a:57:6c:
48:51:b3:a2:70:b1:ee:0e:3d:ca:f0:5b:65:b8:bf:
0b:ef:a1:2b:4a:ca:ee:30:b1:94:c6:05:2b:d6:1d:
b2:87:48:42:04:d7:bd:99:3e:88:6e:72:90:b0:52:
86:65:e8:a3:dd:6a:e6:87:9b:93:e7:20:15:0d:2b:
74:31:cc:84:f6:3b:92:66:12:49:50:96:55:56:41:
8f:1c:e4:ce:ac:ef:ae:a9:00:e2:04:c2:99:78:b2:
68:af:c9:65:ed:2d:1f:3c:4e:68:ef:f8:43:62:f1:
d8:2a:f3:94:aa:6e:66:ce:d0:a3:a0:f0:eb:e3:83:
d3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:50:81:BE:1D:A0:23:12:B9:D2:EB:4E:2F:3C:E9:85:71:FE:7F:96
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6lCBvh2gIxK50utOLzzphXH-f5Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
65:a4:a0:c6:10:59:16:f8:c2:fc:3f:66:ab:09:3f:9a:a2:e8:
5f:5e:b9:bb:78:fd:19:b8:25:71:21:22:4f:97:80:8a:91:b9:
0d:10:6e:1c:73:b7:f0:73:d0:27:5d:d6:93:48:dd:5a:52:e7:
26:67:38:4c:b3:29:48:2a:e3:88:b7:02:2c:b7:b5:e2:de:51:
a1:f3:aa:e1:52:f7:7d:48:d5:42:18:0d:b6:a1:f4:18:16:37:
5c:df:08:02:a2:97:85:d0:58:ea:e5:6e:1b:40:f7:3c:ce:b1:
e5:82:38:64:c3:d1:7e:d0:4e:af:78:ae:33:ca:cc:5f:87:32:
5d:79:c4:06:83:c8:d0:88:aa:a1:d1:9f:f0:b1:c6:47:b3:7e:
9e:fb:eb:c7:17:e9:5d:ff:cd:68:cd:ba:aa:dd:7e:37:7a:b6:
fb:80:9f:29:e6:8b:2c:7a:1d:ac:e0:23:da:f2:ce:14:89:10:
b2:0e:7b:c7:5b:71:7f:24:9f:dc:6a:42:13:7d:2b:d7:6d:73:
bf:74:d4:2d:d5:12:43:60:18:3a:27:91:66:e3:35:2f:d0:e1:
a7:1a:8f:e5:04:82:19:8a:25:9d:20:4d:d1:b1:ad:6c:12:e9:
5b:58:6e:91:97:ba:35:63:94:a7:bd:62:09:b1:36:f2:20:8e:
dd:09:fa:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:33:28 2025 by rpki-client