Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JjN4pvPrdR_cDCxK4GMXcvBtQQI.roa
File: JjN4pvPrdR_cDCxK4GMXcvBtQQI.roa (raw, json)
Hash identifier: YBWsVG9G3DbI/Jxg6oPUGJ5ZLr9LgsfcMI4wnBgGpQs=
Subject key identifier: 26:33:78:A6:F3:EB:75:1F:DC:0C:2C:4A:E0:63:17:72:F0:6D:41:02
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17B8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JjN4pvPrdR_cDCxK4GMXcvBtQQI.roa
Signing time: Mon 10 Feb 2025 14:07:12 +0000
ROA not before: Mon 10 Feb 2025 14:07:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 106.105.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6072 (0x17b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=263378A6F3EB751FDC0C2C4AE0631772F06D4102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:26:1a:8e:14:7f:bb:df:96:bb:60:98:63:
8e:95:e9:fa:21:82:53:25:96:fc:57:38:89:49:83:
c4:73:75:8b:83:89:19:5d:1f:e6:8e:93:c9:dd:3e:
42:76:e8:dc:e0:12:29:1f:41:a3:aa:5a:1e:96:3a:
ab:83:ee:22:da:5f:0e:44:1f:58:ff:18:ad:f8:54:
fc:c6:16:f4:10:f4:df:8d:30:9b:89:a9:c3:a6:4d:
96:87:aa:9d:c5:0f:28:5c:fc:01:62:bb:a0:f6:39:
6b:4d:fd:9e:33:d6:b4:4a:9e:8a:da:dd:a4:e0:f7:
95:11:4b:47:8a:08:28:bb:49:f4:8e:c3:c3:91:69:
cd:8e:47:4f:a5:94:88:34:e6:bb:d7:b2:e2:06:34:
8e:2a:dd:c8:e7:ce:fe:03:60:41:54:c6:b0:c5:9a:
05:17:45:3e:d4:68:a9:98:aa:6e:63:a9:22:12:e1:
c6:ab:f7:8c:1b:4b:aa:1c:bb:03:89:32:ec:24:9c:
c4:f7:57:97:91:6d:26:ad:20:65:f2:49:1f:16:51:
5a:8d:2e:64:3c:15:a4:8f:1b:9e:dc:65:d8:0e:06:
19:cd:71:16:2f:38:0d:64:68:fe:3d:ad:6d:2f:50:
e1:cc:8a:4c:8a:83:90:37:31:12:ee:5f:68:fb:48:
4c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:33:78:A6:F3:EB:75:1F:DC:0C:2C:4A:E0:63:17:72:F0:6D:41:02
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JjN4pvPrdR_cDCxK4GMXcvBtQQI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.104.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:ff:41:16:17:c6:c5:31:5c:34:31:b4:1c:ed:e3:16:9f:b4:
cf:73:b6:8d:05:fc:fe:90:2f:07:d9:c2:ba:b5:55:e2:32:bc:
32:03:5f:dd:7a:76:55:aa:96:28:a9:9b:9f:7f:f7:79:6b:72:
01:aa:60:51:d1:57:f4:65:cf:b5:9c:91:49:49:6c:a9:aa:a2:
96:de:3c:5d:a7:74:93:c5:45:77:a7:95:5e:06:f1:aa:b4:ff:
71:74:d0:8c:e6:85:24:72:e1:9e:3d:21:81:69:fd:b5:67:49:
97:d6:74:24:6a:64:73:e0:78:b1:45:24:25:49:12:e1:35:35:
db:ae:c3:3e:d4:ca:a9:50:59:25:ed:56:f3:64:c4:cc:b9:6c:
d0:dc:08:90:ff:e0:cb:ed:ec:f4:a1:52:2b:d2:fa:33:42:b8:
b0:52:0b:03:89:38:69:4b:26:d3:c6:17:14:98:f9:41:fc:4c:
b0:a5:1b:a3:e9:51:78:77:52:bf:8d:96:b3:d0:3a:b6:96:ce:
94:60:d2:59:c6:ad:eb:f5:b4:c2:a7:b1:fa:60:86:1c:87:2a:
65:7a:fd:04:ee:b7:7c:8c:de:3d:09:f2:38:38:17:06:4a:1b:
24:a6:71:69:e4:94:d3:95:e6:d5:f8:d8:8c:6b:d1:15:b7:52:
02:77:b3:be
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICF7gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2MzM3OEE2RjNFQjc1
MUZEQzBDMkM0QUUwNjMxNzcyRjA2RDQxMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5cCYajhR/u9+Wu2CYY46V6fohglMllvxXOIlJg8RzdYuDiRld
H+aOk8ndPkJ26NzgEikfQaOqWh6WOquD7iLaXw5EH1j/GK34VPzGFvQQ9N+NMJuJ
qcOmTZaHqp3FDyhc/AFiu6D2OWtN/Z4z1rRKnora3aTg95URS0eKCCi7SfSOw8OR
ac2OR0+llIg05rvXsuIGNI4q3cjnzv4DYEFUxrDFmgUXRT7UaKmYqm5jqSIS4car
94wbS6ocuwOJMuwknMT3V5eRbSatIGXySR8WUVqNLmQ8FaSPG57cZdgOBhnNcRYv
OA1kaP49rW0vUOHMikyKg5A3MRLuX2j7SExJAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUJjN4pvPrdR/cDCxK4GMXcvBtQQIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSmpONHB2UHJkUl9jREN4SzRHTVhj
dkJ0UVFJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmppaDAN
BgkqhkiG9w0BAQsFAAOCAQEAPv9BFhfGxTFcNDG0HO3jFp+0z3O2jQX8/pAvB9nC
urVV4jK8MgNf3Xp2VaqWKKmbn3/3eWtyAapgUdFX9GXPtZyRSUlsqaqilt48Xad0
k8VFd6eVXgbxqrT/cXTQjOaFJHLhnj0hgWn9tWdJl9Z0JGpkc+B4sUUkJUkS4TU1
267DPtTKqVBZJe1W82TEzLls0NwIkP/gy+3s9KFSK9L6M0K4sFILA4k4aUsm08YX
FJj5QfxMsKUbo+lReHdSv42Ws9A6tpbOlGDSWcat6/W0wqex+mCGHIcqZXr9BO63
fIzePQnyODgXBkobJKZxaeSU05Xm1fjYjGvRFbdSAnezvg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 20:06:26 2025 by rpki-client