Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8pPO3CNa6bqTjLN8y_YNSUcQ92Q.roa
File: 8pPO3CNa6bqTjLN8y_YNSUcQ92Q.roa (raw, json)
Hash identifier: ieiM/AekVhrmEVqu0TRlv7p/AJcGJVABN5y4efD5v7M=
Subject key identifier: F2:93:CE:DC:23:5A:E9:BA:93:8C:B3:7C:CB:F6:0D:49:47:10:F7:64
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1669
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8pPO3CNa6bqTjLN8y_YNSUcQ92Q.roa
Signing time: Mon 26 Aug 2024 05:22:10 +0000
ROA not before: Mon 26 Aug 2024 05:22:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 218.210.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5737 (0x1669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:10 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F293CEDC235AE9BA938CB37CCBF60D494710F764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:66:71:27:fa:9f:ee:d7:7b:fd:2c:c0:19:82:
5f:fd:39:c0:bf:48:c3:2e:1e:69:c8:26:59:1a:e3:
7a:c5:0f:99:bf:df:50:54:72:89:08:90:be:89:96:
21:88:ed:81:97:26:d0:4d:06:0f:80:cc:5a:c5:f4:
1d:11:1c:52:83:22:97:8f:09:95:8d:45:8f:ec:4f:
4a:44:22:cd:8e:ad:3e:cf:90:41:bb:1f:07:b0:0f:
8d:0c:02:5d:58:87:ce:4a:9d:36:4a:a9:e2:4c:2f:
f3:bc:71:c1:ae:2c:4e:4f:84:8e:b4:38:1e:04:d5:
72:36:63:3f:d4:76:7e:d8:d2:4c:f6:1c:4f:d7:98:
46:36:c6:54:52:9b:26:4f:18:85:19:5a:3f:8a:ae:
6d:22:2b:ee:f4:90:7a:28:fe:55:ba:5f:32:11:3f:
50:c0:69:5f:de:f1:41:8d:4b:f2:3f:81:d6:97:8f:
e5:80:f3:74:71:82:72:fc:6a:05:cf:49:74:bc:63:
8b:9d:ec:27:0f:2a:c4:ed:ae:5d:86:88:8d:14:5c:
c0:04:9d:44:1a:03:f4:53:98:b6:30:20:93:30:f0:
7d:59:8f:c2:12:1c:75:68:af:d7:00:3e:44:ff:8c:
63:44:dc:5c:60:fb:e6:75:18:64:11:ef:04:77:78:
d6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:93:CE:DC:23:5A:E9:BA:93:8C:B3:7C:CB:F6:0D:49:47:10:F7:64
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8pPO3CNa6bqTjLN8y_YNSUcQ92Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:3e:0a:c7:2f:cf:e0:9c:9e:79:4d:b1:6f:6f:f6:2d:c2:17:
f3:e1:22:e1:a7:69:40:14:17:43:9f:70:ea:84:10:b8:32:d2:
81:50:be:ad:54:fd:bd:af:20:04:3f:b5:a0:23:84:63:2b:22:
c3:78:74:46:fc:07:7d:fd:72:3f:9a:bb:90:d8:db:05:77:2d:
78:0b:45:91:5b:b1:f0:90:ae:74:10:27:b1:28:fb:33:d6:37:
b6:0b:83:f7:1d:9f:0d:2b:ea:8a:5b:bb:89:50:57:20:48:16:
cb:32:00:97:e9:4c:51:e3:f1:04:99:74:9b:e2:d7:ca:75:ce:
b5:f5:89:67:2b:02:fa:40:51:ec:df:a3:8f:2b:89:5a:84:f2:
b9:25:75:51:8f:86:4c:de:73:02:aa:26:51:ae:f0:23:57:48:
60:0f:f1:90:1f:b8:df:c6:af:e3:20:7f:83:3b:f1:c9:45:1a:
8b:e6:54:da:90:38:d3:d1:f8:d7:41:94:0e:26:e0:7e:38:91:
86:4c:0e:dd:6d:fe:3b:6f:50:8c:6a:8f:fa:cb:fe:98:99:76:
72:21:72:97:73:76:34:6d:86:71:61:a8:a5:84:cf:87:de:d1:
86:e8:30:53:5b:68:4d:cb:fa:f4:da:03:f8:bd:79:16:91:14:
4c:af:80:f0
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICFmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw
NTIyMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyOTNDRURDMjM1QUU5
QkE5MzhDQjM3Q0NCRjYwRDQ5NDcxMEY3NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSZnEn+p/u13v9LMAZgl/9OcC/SMMuHmnIJlka43rFD5m/31BU
cokIkL6JliGI7YGXJtBNBg+AzFrF9B0RHFKDIpePCZWNRY/sT0pEIs2OrT7PkEG7
HwewD40MAl1Yh85KnTZKqeJML/O8ccGuLE5PhI60OB4E1XI2Yz/Udn7Y0kz2HE/X
mEY2xlRSmyZPGIUZWj+Krm0iK+70kHoo/lW6XzIRP1DAaV/e8UGNS/I/gdaXj+WA
83RxgnL8agXPSXS8Y4ud7CcPKsTtrl2GiI0UXMAEnUQaA/RTmLYwIJMw8H1Zj8IS
HHVor9cAPkT/jGNE3Fxg++Z1GGQR7wR3eNaXAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU8pPO3CNa6bqTjLN8y/YNSUcQ92QwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOHBQTzNDTmE2YnFUakxOOHlfWU5T
VWNROTJRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANrSMA0G
CSqGSIb3DQEBCwUAA4IBAQA7PgrHL8/gnJ55TbFvb/Ytwhfz4SLhp2lAFBdDn3Dq
hBC4MtKBUL6tVP29ryAEP7WgI4RjKyLDeHRG/Ad9/XI/mruQ2NsFdy14C0WRW7Hw
kK50ECexKPsz1je2C4P3HZ8NK+qKW7uJUFcgSBbLMgCX6UxR4/EEmXSb4tfKdc61
9YlnKwL6QFHs36OPK4lahPK5JXVRj4ZM3nMCqiZRrvAjV0hgD/GQH7jfxq/jIH+D
O/HJRRqL5lTakDjT0fjXQZQOJuB+OJGGTA7dbf47b1CMao/6y/6YmXZyIXKXc3Y0
bYZxYailhM+H3tGG6DBTW2hNy/r02gP4vXkWkRRMr4Dw
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:37:46 2025 by rpki-client