Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/I2lo2M-4dpsuT9igfHPZ_Q4FEI8.roa
File: I2lo2M-4dpsuT9igfHPZ_Q4FEI8.roa (raw, json)
Hash identifier: KCKc+Gl3WSly2SwQ35NJ++ZPQb+a2DsYxa/TU8PBmHQ=
Subject key identifier: 23:69:68:D8:CF:B8:76:9B:2E:4F:D8:A0:7C:73:D9:FD:0E:05:10:8F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1782
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/I2lo2M-4dpsuT9igfHPZ_Q4FEI8.roa
Signing time: Mon 10 Feb 2025 14:06:58 +0000
ROA not before: Mon 10 Feb 2025 14:06:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.107.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6018 (0x1782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=236968D8CFB8769B2E4FD8A07C73D9FD0E05108F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f7:0c:97:ef:35:1f:69:4a:8a:70:a1:f8:e9:
b5:ba:a9:fd:30:55:e1:98:c1:ab:64:71:e4:ef:4d:
32:d4:78:f2:71:e5:cb:30:f3:75:a6:3e:b7:2a:97:
c1:91:4e:ce:4b:a6:04:0d:21:04:34:8d:14:0a:7a:
02:cf:da:dd:36:b3:bf:c3:71:1c:9f:23:21:39:8b:
d9:f5:20:a2:69:ba:ca:3a:84:85:b9:59:95:13:71:
1b:b2:d0:2c:20:49:bf:1f:35:8e:f9:e4:bd:52:ce:
d1:7c:5d:58:45:8b:c7:4a:3d:08:fc:4c:11:52:7b:
2c:5e:ae:ad:e6:b7:5f:4c:ca:b9:51:9a:e3:21:dc:
2d:7c:1e:81:1b:2f:76:3a:e2:b7:6e:59:ba:9f:bf:
77:aa:c8:96:54:78:0c:ad:8f:94:ae:e0:c9:30:1a:
36:62:2f:74:6d:44:8e:50:75:96:ce:16:25:0d:b8:
e6:92:64:a8:96:c5:be:65:00:35:84:63:9e:a7:d4:
09:c1:9a:82:fb:90:92:8c:15:73:d4:02:79:1f:fd:
02:f3:14:ee:15:df:3c:a0:c8:54:a1:92:38:86:9a:
09:b5:b8:fe:b8:9d:40:f6:ff:10:41:27:80:51:ab:
38:86:3d:91:72:ea:a9:d1:9a:a6:10:d9:c8:53:3d:
d8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:69:68:D8:CF:B8:76:9B:2E:4F:D8:A0:7C:73:D9:FD:0E:05:10:8F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/I2lo2M-4dpsuT9igfHPZ_Q4FEI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.208.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:86:56:27:7c:2a:19:ae:b6:49:af:8d:da:9b:ae:ac:2f:63:
17:ee:41:83:ff:1f:72:59:f9:63:eb:1c:68:4e:10:6d:41:a4:
19:ab:42:58:78:1d:c6:6b:e7:3c:1e:0f:f2:ef:ac:27:b9:5a:
e1:7e:c8:de:2e:0f:e7:2b:c7:0e:0a:dc:78:5a:15:a2:e7:6d:
10:22:8f:c2:d9:8c:e5:d5:1d:ee:2e:de:10:fe:ac:32:bc:cd:
f3:3c:e6:bd:e5:66:9c:cc:fb:9b:e3:4e:aa:4a:69:dc:91:86:
cf:42:3e:48:19:f0:aa:d0:47:7a:09:ee:98:07:cd:a9:dd:c0:
3a:a6:7b:10:54:1b:a4:f2:3b:14:f4:79:3c:ca:dc:dd:29:ac:
9d:50:d1:e9:3d:42:ae:b7:7f:ea:3b:be:39:90:f9:c6:72:37:
6d:d7:55:fb:0c:1b:b8:57:6a:1e:94:dd:19:2a:b6:d6:23:6d:
08:f3:06:9e:d0:04:d2:eb:f2:23:5a:97:3f:32:e8:44:cd:d5:
96:e7:cc:fc:e9:e9:61:c7:50:6d:be:22:d7:79:ed:29:d7:d0:
13:ec:29:61:4d:e9:92:a0:63:ce:2b:b3:d3:5f:1c:74:98:23:
8a:88:b9:66:b4:97:31:b5:67:f3:ef:9b:c9:a5:5d:00:c4:66:
02:fb:bf:5a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICF4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA2NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIzNjk2OEQ4Q0ZCODc2
OUIyRTRGRDhBMDdDNzNEOUZEMEUwNTEwOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC29wyX7zUfaUqKcKH46bW6qf0wVeGYwatkceTvTTLUePJx5csw
83WmPrcql8GRTs5LpgQNIQQ0jRQKegLP2t02s7/DcRyfIyE5i9n1IKJpuso6hIW5
WZUTcRuy0CwgSb8fNY755L1SztF8XVhFi8dKPQj8TBFSeyxerq3mt19MyrlRmuMh
3C18HoEbL3Y64rduWbqfv3eqyJZUeAytj5Su4MkwGjZiL3RtRI5QdZbOFiUNuOaS
ZKiWxb5lADWEY56n1AnBmoL7kJKMFXPUAnkf/QLzFO4V3zygyFShkjiGmgm1uP64
nUD2/xBBJ4BRqziGPZFy6qnRmqYQ2chTPdhVAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUI2lo2M+4dpsuT9igfHPZ/Q4FEI8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSTJsbzJNLTRkcHN1VDlpZ2ZIUFpf
UTRGRUk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGpr0DAN
BgkqhkiG9w0BAQsFAAOCAQEATIZWJ3wqGa62Sa+N2puurC9jF+5Bg/8fcln5Y+sc
aE4QbUGkGatCWHgdxmvnPB4P8u+sJ7la4X7I3i4P5yvHDgrceFoVoudtECKPwtmM
5dUd7i7eEP6sMrzN8zzmveVmnMz7m+NOqkpp3JGGz0I+SBnwqtBHegnumAfNqd3A
OqZ7EFQbpPI7FPR5PMrc3SmsnVDR6T1Crrd/6ju+OZD5xnI3bddV+wwbuFdqHpTd
GSq21iNtCPMGntAE0uvyI1qXPzLoRM3VlufM/OnpYcdQbb4i13ntKdfQE+wpYU3p
kqBjziuz018cdJgjioi5ZrSXMbVn8++byaVdAMRmAvu/Wg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 08:05:00 2025 by rpki-client