Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/L5zGjVz5cmGZnbF_2QGQdqQAQLc.roa
File: L5zGjVz5cmGZnbF_2QGQdqQAQLc.roa (raw, json)
Hash identifier: xhQ9bjxKllCjOaQXgJJeJNKCKBoKaRkgCWUBbRsuflQ=
Subject key identifier: 2F:9C:C6:8D:5C:F9:72:61:99:9D:B1:7F:D9:01:90:76:A4:00:40:B7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E2D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L5zGjVz5cmGZnbF_2QGQdqQAQLc.roa
Signing time: Wed 29 Sep 2021 02:43:16 +0000
ROA not before: Wed 29 Sep 2021 02:43:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 211.78.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3629 (0xe2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2F9CC68D5CF97261999DB17FD9019076A40040B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f8:53:59:e8:49:9a:73:10:34:79:50:a0:d3:
18:ac:17:87:36:30:b0:1c:54:ff:34:db:7e:41:fd:
fe:17:7c:e6:a7:dc:8d:43:08:11:56:9f:c7:c4:94:
4d:04:b5:c3:90:35:21:98:13:f9:46:df:8c:12:4d:
3d:02:f8:c7:0c:44:4c:4a:1b:ca:bb:4b:5e:f1:7a:
08:8a:6d:57:2e:17:26:8e:ed:7f:45:ce:8d:1f:ab:
2e:fc:bb:99:5c:01:a6:a0:38:b6:47:3d:02:6e:7b:
22:27:3f:9b:43:0b:fd:92:51:69:d2:9d:7f:b3:f7:
1a:0f:af:77:f9:8a:7f:2a:71:7c:1b:c9:f3:2f:06:
3e:fc:40:2a:97:49:69:4a:f5:e5:d7:40:f9:a5:a4:
0c:28:93:a7:66:1f:13:99:07:96:38:4a:29:1c:a0:
a3:6e:ce:6e:ce:02:05:a5:9c:fb:5f:38:4b:a8:1b:
43:2d:a4:4d:13:16:a0:27:b6:dd:64:80:00:a8:66:
d7:14:8f:13:65:08:ca:0a:2e:e0:7d:09:c8:fb:3f:
dd:5a:a1:bb:2d:e5:03:31:16:cb:b8:f2:f1:96:d7:
81:65:00:8c:bd:90:80:7c:61:81:46:da:af:51:51:
1a:3c:73:f8:e5:5a:b5:f7:e9:c8:14:c2:7f:ac:84:
ce:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9C:C6:8D:5C:F9:72:61:99:9D:B1:7F:D9:01:90:76:A4:00:40:B7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L5zGjVz5cmGZnbF_2QGQdqQAQLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.128.0/19
Signature Algorithm: sha256WithRSAEncryption
22:8c:79:24:7a:1c:14:9b:2f:14:41:da:2f:ee:2e:95:22:75:
4c:54:ab:a6:0a:6f:1b:cf:25:54:70:39:ed:e6:46:bd:53:dc:
36:d3:5c:71:b5:7a:bc:83:08:80:24:cc:3c:84:95:21:1d:a4:
de:b3:2f:f2:e9:b7:f6:e5:41:d0:cc:8d:83:6b:20:7d:99:7c:
07:3c:9f:f3:ce:e4:83:ad:15:11:03:bd:b4:42:c1:40:c5:4e:
65:0f:74:7e:56:b3:c3:f8:f4:13:04:d4:48:5e:df:db:28:06:
80:d1:00:34:58:09:22:97:4e:95:3c:f0:31:51:5c:48:05:b3:
97:0e:d4:e6:ae:5c:6c:b1:5e:d5:70:0e:f2:8b:e1:bf:a7:ee:
5a:3a:38:98:18:e3:31:6a:06:78:35:6a:a8:f0:03:62:10:28:
c5:ff:be:c8:5a:74:07:fa:46:06:37:69:5e:0d:90:65:fc:fc:
53:e7:40:2d:02:b1:8f:a6:f3:e1:ee:19:2e:73:d8:c8:81:e8:
39:2e:d9:2d:44:d2:69:3c:9f:cd:67:52:f8:7f:e0:55:0e:1f:
d0:0d:39:57:57:47:91:c6:90:c1:9a:75:37:e7:c9:c3:d4:2d:
46:34:36:f6:c1:a6:5c:11:37:14:ba:85:a9:23:93:8b:96:e6:
5b:4d:8a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:17 2025 by rpki-client