Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LDNceiB1wnAj__dPTvEKmKLxqb8.roa
File: LDNceiB1wnAj__dPTvEKmKLxqb8.roa (raw, json)
Hash identifier: mjYt/+dppKR0ef7Tr8ca+gUrJJn//sUncQJIRo5xX8Y=
Subject key identifier: 2C:33:5C:7A:20:75:C2:70:23:FF:F7:4F:4E:F1:0A:98:A2:F1:A9:BF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 107A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LDNceiB1wnAj__dPTvEKmKLxqb8.roa
Signing time: Wed 01 Feb 2023 10:28:36 +0000
ROA not before: Wed 01 Feb 2023 10:28:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 210.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4218 (0x107a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2C335C7A2075C27023FFF74F4EF10A98A2F1A9BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ab:ff:81:7c:73:1b:29:d9:71:14:65:32:b2:
91:d2:c7:08:95:d8:3d:34:5e:0c:11:8c:54:ce:e4:
8a:94:71:b0:b0:10:d9:c1:57:e0:c9:84:ca:3b:e9:
d0:96:1a:b0:98:3a:92:ba:ae:c6:b8:24:e7:fd:49:
1c:ed:2c:a7:70:ea:f4:42:d6:65:79:a5:d0:0e:82:
76:3a:2b:c5:56:bf:55:82:c8:59:a7:c1:d1:67:f2:
f7:eb:ea:95:74:05:ea:64:79:60:14:eb:91:bb:a2:
d2:ac:16:84:01:c2:c9:f4:af:28:f5:77:9f:15:92:
cf:4f:d9:43:e5:82:54:9d:2c:ff:b4:97:44:1c:cb:
00:e6:23:74:e7:de:39:0b:ce:d5:99:c3:98:27:ce:
56:33:e5:6f:91:a4:a0:0c:f5:f7:6a:aa:4f:ba:9a:
41:27:3a:85:8e:55:65:ed:79:f8:d5:17:f4:32:30:
54:e0:a8:19:dd:c4:c1:e2:b7:f6:c6:60:a3:8c:ee:
2f:10:81:b1:85:b2:2e:f1:6e:e3:ef:ad:ab:ee:de:
48:5b:1d:1e:c4:d7:29:ad:22:29:23:04:47:15:17:
75:a2:c0:0d:2f:54:ab:fa:41:58:b1:cd:0b:ce:3b:
a3:ab:77:9e:f1:6d:bd:d2:ea:58:4f:2d:e8:b0:e6:
8e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:33:5C:7A:20:75:C2:70:23:FF:F7:4F:4E:F1:0A:98:A2:F1:A9:BF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LDNceiB1wnAj__dPTvEKmKLxqb8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
35:18:47:0b:c0:21:08:95:09:55:3c:f0:a8:68:c2:bf:aa:c2:
a4:16:de:e1:ac:a0:34:ab:c4:5f:76:41:97:ae:eb:b9:e7:f3:
b0:29:4d:b0:5f:5b:d3:72:80:57:fa:7f:3b:f7:ba:18:a7:2b:
77:22:65:a3:2c:fe:cd:ee:85:f0:90:07:8b:a8:e4:48:ec:83:
5d:ab:ba:8c:e8:94:4c:99:51:4b:b7:a7:7b:db:d1:cf:93:78:
03:52:e8:51:18:62:56:29:0f:25:63:e7:bf:a5:67:8e:08:21:
9f:f0:0f:ea:d2:9b:f5:81:25:b1:f6:f0:13:56:53:91:96:ff:
79:a0:52:c8:b7:ea:33:f4:ac:80:01:56:ec:55:54:76:96:3b:
d8:01:f0:f2:f8:bd:45:1b:34:61:1c:3c:84:1f:68:bb:ec:5b:
73:02:eb:96:fd:6f:c7:ad:c8:85:fd:51:e7:f2:07:30:11:2e:
a3:7e:f9:b2:a3:8e:96:ca:0e:b7:cb:c3:c1:cf:04:ee:01:f8:
1c:bc:c6:70:73:54:90:ee:5d:db:9b:b3:57:4b:58:df:d9:a9:
68:8e:53:26:41:78:e5:ad:92:88:16:ed:3f:d0:30:40:b3:ba:
cf:38:35:df:62:0d:ed:90:30:e3:e9:80:a5:82:61:51:79:96:
7d:89:a3:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:21:27 2025 by rpki-client