Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/95omwyEE75hAUzAc7lKSKRb0h1U.roa
File: 95omwyEE75hAUzAc7lKSKRb0h1U.roa (raw, json)
Hash identifier: Oj2KeVOGOZzyoHAQIUT5zW6HEFB0DVrMTMO/RGhMAAE=
Subject key identifier: F7:9A:26:C3:21:04:EF:98:40:53:30:1C:EE:52:92:29:16:F4:87:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 178C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/95omwyEE75hAUzAc7lKSKRb0h1U.roa
Signing time: Mon 10 Feb 2025 14:07:01 +0000
ROA not before: Mon 10 Feb 2025 14:07:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 220.228.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6028 (0x178c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F79A26C32104EF984053301CEE52922916F48755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b6:bd:71:bb:6b:16:22:17:b6:24:cd:0c:f6:
b7:f7:c3:d2:14:05:cf:29:ee:6d:0e:87:49:59:2a:
75:79:35:34:66:6d:4a:b1:27:1a:f0:1d:54:8c:c3:
a7:d0:e7:83:a7:7b:4c:02:16:cc:93:64:b5:dd:cd:
45:dd:13:d8:73:14:8d:85:d8:d5:f8:c3:f1:50:f9:
8f:e7:7f:ad:65:0a:fa:16:46:f3:50:06:d9:77:29:
98:1d:a9:75:12:52:dd:79:7f:c8:36:53:c7:8f:85:
5c:76:bd:77:ad:7f:df:fc:0c:99:b6:f5:4b:e7:2c:
b8:a4:43:5d:b0:18:05:c3:01:fc:a2:4a:cc:6c:b1:
74:be:1a:20:3b:73:43:d3:85:cf:63:3b:65:69:72:
b2:24:52:cf:1d:dd:fd:a9:0f:44:79:9f:bf:63:9e:
6a:a6:20:e1:7d:61:c4:2f:37:2b:94:b1:35:99:ed:
aa:db:32:c9:b7:20:aa:52:6b:51:5e:aa:54:fb:a1:
6f:a7:99:eb:59:ac:b0:46:37:e7:37:42:68:70:75:
cc:07:01:51:5c:4d:cf:a8:9c:7f:38:de:b8:5a:b6:
26:e8:18:bb:aa:00:22:1f:73:63:e3:72:c1:58:85:
50:ad:c8:3b:d8:06:f9:b0:f7:e5:db:ec:1a:aa:55:
e0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9A:26:C3:21:04:EF:98:40:53:30:1C:EE:52:92:29:16:F4:87:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/95omwyEE75hAUzAc7lKSKRb0h1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.228.0.0/15
Signature Algorithm: sha256WithRSAEncryption
7a:2f:c5:37:ff:9c:48:66:42:b1:82:58:35:1c:df:c8:11:e0:
8e:bc:f9:29:29:75:e8:fa:2f:6b:f4:7e:85:c4:f9:40:a5:32:
37:0b:05:7a:d2:d3:57:fe:7e:dc:97:3f:3f:a2:bd:85:ea:57:
ee:de:43:59:58:dd:a4:a6:5b:44:89:05:a4:44:fe:a7:81:bb:
f7:9a:55:4a:6f:05:47:75:03:cd:d6:54:63:ab:da:1a:45:9c:
a4:ff:e5:af:90:ee:19:92:fa:ef:18:74:88:0e:68:4b:5c:e1:
b0:c0:54:2e:15:9b:a4:a5:ba:40:03:45:2c:81:fa:81:75:e4:
eb:2a:71:81:0a:58:1e:93:83:fa:3e:79:8d:06:81:56:27:89:
7f:2e:e7:a1:3e:90:b6:78:e5:98:f7:2d:a5:e6:70:3e:84:3d:
53:43:ad:06:4c:e8:85:e5:eb:cc:90:8c:35:a0:aa:c5:2b:6d:
13:29:b7:c2:5f:a4:e3:dd:11:db:17:ac:ca:b5:71:01:9e:20:
fb:b9:3f:da:20:bd:2b:90:21:86:00:34:a9:eb:6c:0d:b6:29:
66:71:d2:36:21:6b:ee:15:fc:97:af:6f:21:49:c4:5d:65:93:
91:2c:9a:52:31:95:4a:1c:be:0f:69:98:a5:89:0f:c8:c6:b3:
d7:f3:6b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:23 2025 by rpki-client