Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8wDvR6kSm0IxlqVCr5hDcfP9Xmo.roa
File: 8wDvR6kSm0IxlqVCr5hDcfP9Xmo.roa (raw, json)
Hash identifier: /EpBnQTOGENf9P8vU0brX5zYZT0xy0YzdQuxsjRhOEA=
Subject key identifier: F3:00:EF:47:A9:12:9B:42:31:96:A5:42:AF:98:43:71:F3:FD:5E:6A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17D4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8wDvR6kSm0IxlqVCr5hDcfP9Xmo.roa
Signing time: Mon 10 Feb 2025 14:07:18 +0000
ROA not before: Mon 10 Feb 2025 14:07:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 220.229.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6100 (0x17d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F300EF47A9129B423196A542AF984371F3FD5E6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a9:06:74:3f:33:a9:0b:84:79:ff:9a:15:a3:
60:da:d4:2d:30:0a:75:77:9c:5f:e6:86:1d:a6:a5:
1a:9e:b6:f3:3e:c3:ea:3b:71:90:83:d7:97:e1:e2:
e9:72:a0:f1:b5:81:38:73:fe:16:48:15:50:c0:dc:
9f:9a:f5:cd:09:d0:8f:1b:e2:bc:46:39:10:80:5f:
29:10:7c:15:39:d8:6d:bb:be:9a:cc:14:fc:67:f3:
c6:df:d3:f2:25:ca:97:91:58:29:a7:ab:8a:08:99:
79:15:5a:7c:e7:7d:55:00:18:83:8b:3f:0b:47:95:
96:fb:10:de:27:18:de:4b:b8:95:a5:df:4d:89:2e:
8e:be:f8:00:c0:ef:ef:6f:68:52:90:24:a8:63:36:
d1:47:84:fe:1b:d0:68:39:e1:5c:8c:7e:08:df:c0:
06:60:80:f1:21:41:bb:30:41:03:05:b7:63:54:64:
b3:38:43:9d:64:9d:ce:b0:a2:a5:2e:88:c0:70:b7:
b3:a9:e6:02:24:b9:05:b0:12:bc:34:23:bc:c4:16:
83:e3:0c:d4:d6:4e:f7:c0:18:e1:64:a5:53:b7:5b:
f3:58:b0:ba:2c:6d:12:92:45:88:52:64:20:66:06:
0c:90:55:6c:67:03:f4:98:e1:74:e6:e7:79:fb:d8:
9d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:00:EF:47:A9:12:9B:42:31:96:A5:42:AF:98:43:71:F3:FD:5E:6A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8wDvR6kSm0IxlqVCr5hDcfP9Xmo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.64.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:b0:59:48:67:e7:66:96:fd:f0:b4:41:a3:a8:97:db:a7:5c:
4f:d1:dc:b0:1e:fc:c3:b1:58:5b:23:d6:5d:9d:86:80:40:94:
9d:97:76:17:c2:cd:d1:c2:f2:6a:3c:3c:5f:e2:76:87:34:b7:
07:aa:ac:5e:96:66:18:8b:c2:19:fc:94:78:86:de:0e:b5:dd:
15:7b:90:44:4f:ba:83:27:59:3a:c1:1d:91:30:f1:77:6c:89:
86:b4:65:8d:70:95:48:e1:fb:79:06:30:83:8c:2e:92:fd:74:
8f:f4:79:be:0c:72:cf:e8:db:18:e6:75:84:a8:e1:3d:62:a0:
e0:3a:28:09:a1:00:5c:9d:09:c4:d8:09:53:72:a3:a9:5d:eb:
cb:54:6d:61:e2:82:d0:06:97:b6:c0:f9:af:9c:56:8e:56:f6:
d6:95:83:1e:e2:4e:b4:d6:e6:b1:6a:f0:c4:e8:b6:31:91:e8:
d9:80:55:7c:fb:54:9e:49:c4:46:02:10:04:c0:1f:bc:19:19:
1e:e9:01:a5:aa:98:67:c3:80:8e:55:fd:ce:87:2f:06:9d:36:
ba:2b:ec:7a:4e:87:3b:14:a0:87:bb:7a:39:19:e7:1b:4d:52:
75:b1:c2:2a:79:68:23:57:c3:cf:84:38:98:b5:47:74:33:4f:
c2:5d:61:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:23 2025 by rpki-client