Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9Q1J_NyFzSNIo9e0fx1r0eXlvEs.roa
File: 9Q1J_NyFzSNIo9e0fx1r0eXlvEs.roa (raw, json)
Hash identifier: 4PWaAIvXUaYzwyd4du7k04bsja0t7/qbAhdOnVYRMeQ=
Subject key identifier: F5:0D:49:FC:DC:85:CD:23:48:A3:D7:B4:7F:1D:6B:D1:E5:E5:BC:4B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 180B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9Q1J_NyFzSNIo9e0fx1r0eXlvEs.roa
Signing time: Mon 10 Feb 2025 14:07:32 +0000
ROA not before: Mon 10 Feb 2025 14:07:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 210.244.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6155 (0x180b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F50D49FCDC85CD2348A3D7B47F1D6BD1E5E5BC4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:66:3f:b7:9f:3e:98:3b:f9:b8:ed:5a:12:a9:
7b:8a:d3:aa:66:87:47:3c:32:66:c6:6e:72:21:b4:
aa:27:10:34:9a:53:8e:3c:46:b9:cb:51:18:47:4a:
ec:12:25:88:8b:a5:8c:7b:7e:83:6a:e1:c0:86:63:
e8:a3:3c:03:f1:d9:bc:1a:05:86:6f:7c:88:4f:30:
af:4a:c7:88:bf:d7:1c:49:d3:23:b9:de:b0:48:29:
66:ea:0d:6a:b9:5c:be:8b:f8:4a:f1:af:0a:ad:84:
5f:4d:32:23:a9:16:77:77:fc:8e:97:40:c2:09:8f:
28:25:7b:11:7f:c2:65:ec:62:78:69:6e:ed:56:5a:
a3:4c:c1:3f:11:8c:0f:14:f1:09:60:13:c1:a6:5c:
87:81:d7:ca:dc:b1:ed:f3:7f:04:0a:6e:75:ce:a8:
5c:c9:4c:00:6f:3e:2c:14:33:93:f0:2f:ff:13:28:
8d:90:80:b0:48:b0:20:2f:46:97:11:b0:b1:5c:e6:
e8:38:04:f4:e1:95:7b:31:19:fd:c6:7e:6b:3a:00:
c3:b0:70:4c:da:bc:c7:c4:a2:b4:09:d7:fb:c4:31:
81:38:d1:c0:64:15:0e:c7:05:ab:a1:03:46:62:56:
94:84:3a:1d:ff:d2:f5:5b:b2:fd:b8:e0:33:8e:09:
6e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0D:49:FC:DC:85:CD:23:48:A3:D7:B4:7F:1D:6B:D1:E5:E5:BC:4B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9Q1J_NyFzSNIo9e0fx1r0eXlvEs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.97.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c1:99:78:31:aa:ca:15:ac:b4:61:df:64:ad:80:6a:76:f2:
6e:53:18:da:03:15:e5:67:08:fb:73:79:c0:0d:9b:68:c3:9b:
67:b5:c3:ee:22:27:57:96:c1:72:bb:ad:60:39:9a:af:43:31:
69:76:89:95:0d:eb:ee:2c:15:89:1d:cf:1a:cd:a5:83:e9:e4:
3a:de:6c:8d:cd:0f:2c:4f:78:76:dc:61:90:6d:93:e1:2e:1f:
4f:92:f0:7e:ef:26:be:3a:ac:4a:3c:b4:f5:99:82:3e:50:3d:
07:76:fd:03:b9:de:4c:aa:5f:27:de:d0:c1:32:28:8f:5d:44:
2e:62:91:ea:3c:ef:cf:56:52:b1:42:94:7a:87:85:35:29:86:
7b:e1:4a:03:76:d5:7e:c2:76:e1:18:6e:63:e1:25:e2:79:09:
77:91:eb:58:c3:55:d4:b8:3b:af:d9:af:a0:0e:bc:d5:7f:81:
bb:70:20:51:33:c4:ab:36:c2:ff:a7:c7:0d:90:d5:b9:29:30:
ea:89:06:5a:65:00:b1:5e:59:60:16:c1:30:40:bf:0d:13:88:
ec:ee:fa:a7:7f:5e:22:5d:79:e2:43:f9:b5:af:b4:04:60:b8:
60:a3:76:cf:17:8f:c5:10:a2:1c:fd:66:b0:98:96:93:f8:da:
72:6f:bc:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:10:51 2025 by rpki-client