Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/CdtA2sZrVEAfzqB-EbDgjXLcurk.roa
File: CdtA2sZrVEAfzqB-EbDgjXLcurk.roa (raw, json)
Hash identifier: yqtVJ+rOurSzpI9HhS4/g7AXEdVaw+haNCpfsA53vDw=
Subject key identifier: 09:DB:40:DA:C6:6B:54:40:1F:CE:A0:7E:11:B0:E0:8D:72:DC:BA:B9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08C3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CdtA2sZrVEAfzqB-EbDgjXLcurk.roa
Signing time: Tue 29 Sep 2020 09:52:25 +0000
ROA not before: Tue 29 Sep 2020 09:52:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 106.105.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2243 (0x8c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=09DB40DAC66B54401FCEA07E11B0E08D72DCBAB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:58:99:94:45:41:9c:de:b4:b8:6e:4a:a4:4a:
8f:7c:35:a9:b9:a5:27:47:68:92:7e:04:4c:4b:31:
22:d4:fb:71:a6:56:67:a4:2f:7d:2d:d5:3f:c8:b1:
6f:01:bb:b3:ce:61:dd:b2:e4:ab:ef:61:ce:b8:5e:
58:1a:d5:88:06:ec:35:f0:37:f8:aa:5b:c9:11:54:
6c:1d:55:76:03:45:28:08:b4:05:cf:8b:46:fe:97:
ab:89:f2:53:58:74:65:45:70:cb:ea:15:a5:8c:30:
12:95:20:ae:61:d3:2d:99:87:20:ed:e7:e4:ca:8e:
97:2c:51:8d:2e:97:2f:0a:d1:b1:b6:88:fe:66:2f:
3d:17:9f:3a:57:0d:85:66:79:67:39:24:3f:0a:4d:
24:3c:cc:7e:5c:39:1e:d8:19:d2:1d:31:33:40:4f:
78:67:7c:43:9a:ce:00:c8:74:71:6e:16:c9:a4:ca:
89:7a:82:01:ba:b1:24:51:9e:20:ba:df:2a:2c:fd:
0d:05:68:a8:8a:af:7e:b3:81:72:45:7b:03:ae:f2:
0a:78:79:a6:44:11:9b:7a:24:d9:67:1e:21:03:d8:
f9:aa:3d:f8:6a:65:b1:6b:22:5d:b2:90:59:1d:6a:
0c:64:52:28:a4:6a:ee:5d:6b:7a:20:19:56:17:d4:
5b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:DB:40:DA:C6:6B:54:40:1F:CE:A0:7E:11:B0:E0:8D:72:DC:BA:B9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CdtA2sZrVEAfzqB-EbDgjXLcurk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.240.0/21
Signature Algorithm: sha256WithRSAEncryption
95:b7:96:4f:1a:0e:38:85:43:22:ed:f0:94:08:4f:c2:fd:47:
4c:db:95:e8:f9:cb:45:ae:8c:f8:dc:f6:db:3c:af:e6:4f:b7:
58:8c:ad:95:37:76:a3:4e:e4:aa:ca:6d:a7:57:3f:02:e7:a1:
bd:32:81:42:0c:56:d9:c4:0b:fc:a7:ac:f6:1e:fe:7c:4f:fe:
20:a1:a8:ca:dd:75:0c:69:75:6d:51:de:55:c7:1c:81:8d:02:
7e:4d:bb:6f:4a:90:13:3b:ae:a0:44:03:77:b1:34:5c:78:f6:
2d:cd:84:d6:03:a5:07:e0:ed:c1:06:52:6b:ee:c8:31:d7:ba:
6e:1c:46:34:a1:bf:0a:16:c4:5e:8e:b8:b3:bb:fc:e7:50:1c:
94:04:b9:52:51:07:3f:db:12:f0:f9:97:57:07:7f:ca:87:33:
22:82:ae:a7:00:e6:b1:61:ca:dd:0e:73:1e:7c:2e:05:0c:62:
ee:fa:66:01:22:59:74:14:f4:66:f3:46:b6:e3:0a:58:a1:f2:
d8:d5:27:64:9a:76:ea:0d:d7:09:06:b2:9f:c0:df:b9:bf:24:
fe:69:ed:b3:0d:cc:6c:9d:6f:2a:5b:45:da:9d:59:1b:90:d2:
49:a2:c9:89:fb:df:13:e6:76:26:f4:7f:29:12:1b:72:e0:08:
f7:2d:3f:74
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMDA5Mjkw
OTUyMjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA5REI0MERBQzY2QjU0
NDAxRkNFQTA3RTExQjBFMDhENzJEQ0JBQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfWJmURUGc3rS4bkqkSo98Nam5pSdHaJJ+BExLMSLU+3GmVmek
L30t1T/IsW8Bu7POYd2y5KvvYc64Xlga1YgG7DXwN/iqW8kRVGwdVXYDRSgItAXP
i0b+l6uJ8lNYdGVFcMvqFaWMMBKVIK5h0y2ZhyDt5+TKjpcsUY0uly8K0bG2iP5m
Lz0XnzpXDYVmeWc5JD8KTSQ8zH5cOR7YGdIdMTNAT3hnfEOazgDIdHFuFsmkyol6
ggG6sSRRniC63yos/Q0FaKiKr36zgXJFewOu8gp4eaZEEZt6JNlnHiED2PmqPfhq
ZbFrIl2ykFkdagxkUiikau5da3ogGVYX1FtzAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUCdtA2sZrVEAfzqB+EbDgjXLcurkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQ2R0QTJzWnJWRUFmenFCLUViRGdq
WExjdXJrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2pp8DAN
BgkqhkiG9w0BAQsFAAOCAQEAlbeWTxoOOIVDIu3wlAhPwv1HTNuV6PnLRa6M+Nz2
2zyv5k+3WIytlTd2o07kqsptp1c/AuehvTKBQgxW2cQL/Kes9h7+fE/+IKGoyt11
DGl1bVHeVcccgY0Cfk27b0qQEzuuoEQDd7E0XHj2Lc2E1gOlB+DtwQZSa+7IMde6
bhxGNKG/ChbEXo64s7v851AclAS5UlEHP9sS8PmXVwd/yoczIoKupwDmsWHK3Q5z
HnwuBQxi7vpmASJZdBT0ZvNGtuMKWKHy2NUnZJp26g3XCQayn8Dfub8k/mntsw3M
bJ1vKltF2p1ZG5DSSaLJifvfE+Z2JvR/KRIbcuAI9y0/dA==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:23:06 2025 by rpki-client