Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OK_Zx9UTiEYEd-SpiKZWAnzdCu4.roa
File: OK_Zx9UTiEYEd-SpiKZWAnzdCu4.roa (raw, json)
Hash identifier: sjXrL202+FXl+Zna8bCB2oexB5BEzTkPT//TI9SnaEU=
Subject key identifier: 38:AF:D9:C7:D5:13:88:46:04:77:E4:A9:88:A6:56:02:7C:DD:0A:EE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08E5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OK_Zx9UTiEYEd-SpiKZWAnzdCu4.roa
Signing time: Tue 29 Sep 2020 09:52:34 +0000
ROA not before: Tue 29 Sep 2020 09:52:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 123.205.64.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2277 (0x8e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38AFD9C7D51388460477E4A988A656027CDD0AEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:7b:4a:54:7c:5a:e4:ad:1b:4a:95:5a:2e:
de:2d:e3:73:5f:5f:8b:11:ed:06:d2:d4:f4:a4:4b:
d8:8c:b8:a5:c3:57:0b:e8:9a:35:75:54:39:36:22:
4c:d6:d7:0b:3a:31:f0:16:8b:9e:c9:99:47:aa:2e:
91:ca:3c:7d:b7:17:c7:f1:a8:cc:96:0e:9c:06:b4:
5e:dd:1d:29:49:a1:9a:e7:8b:07:9d:ac:33:c4:2b:
2d:b5:ea:81:77:a0:fb:6c:97:7d:71:23:30:1f:ca:
b7:ad:e9:13:d4:c1:0a:1f:39:ca:96:43:50:2d:19:
2c:80:89:94:5e:fe:11:a2:4c:35:1c:16:c4:12:4a:
97:c0:ad:56:49:39:d5:1f:80:b3:02:5e:bb:00:04:
76:2c:cc:9b:05:c6:d0:ef:54:10:2d:f2:27:61:38:
08:1b:6f:7b:1e:fc:0d:30:be:39:80:b4:27:51:b9:
22:03:4a:cb:f9:12:03:8d:98:7e:e9:b4:fc:8a:ea:
0b:d2:e3:ef:6d:bc:c2:c0:43:57:6a:2e:b0:57:67:
30:c5:0f:85:90:ab:52:26:6b:ab:2d:c8:1b:e5:2c:
13:6f:86:4f:65:f0:ff:e4:87:00:bb:e2:70:c7:b4:
2d:d3:d6:cf:7a:c3:2e:7e:84:08:88:9a:06:a8:ac:
26:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AF:D9:C7:D5:13:88:46:04:77:E4:A9:88:A6:56:02:7C:DD:0A:EE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OK_Zx9UTiEYEd-SpiKZWAnzdCu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b4:ac:dc:f0:3e:df:49:24:57:05:e6:b8:f5:6b:65:d9:b1:a7:
b0:ef:5b:ce:e8:df:31:7a:8b:2e:cf:b7:20:9e:ea:42:d8:a0:
cf:55:ba:af:09:a4:aa:8a:c0:ba:c2:68:d0:21:a9:ba:ff:42:
08:5b:43:55:ef:9f:ec:77:d9:2b:d4:47:3b:c4:a9:4a:e8:8d:
c9:69:5d:43:4b:08:41:ff:4f:71:ec:6a:d8:41:cc:c3:42:1b:
7b:79:32:ca:1e:d8:5c:94:cb:11:dc:8c:69:f0:28:cb:4f:e7:
7b:2a:fb:c7:59:9b:97:b0:4e:3e:9c:81:95:63:01:4f:1c:8d:
b7:6b:bc:06:93:a1:ff:3e:9c:e4:87:67:26:c7:5c:b7:8a:df:
c5:1a:02:b6:1e:2b:07:c1:8c:98:1c:9c:a3:02:92:94:68:3f:
de:2f:2c:49:30:81:e8:9d:2e:03:01:cc:63:e8:da:82:15:9e:
ac:16:d1:91:cf:bd:65:f6:3f:f3:fa:41:31:0a:59:d1:ac:94:
35:ca:84:ef:94:65:f6:57:07:b0:e3:54:8c:02:76:cc:cd:ae:
bc:e8:99:c0:7e:dd:96:11:bf:65:f6:ce:a9:5e:8d:a6:14:e1:
c2:2a:57:11:f3:ba:90:64:a2:b4:0a:49:c3:90:13:3f:1f:ff:
0d:ec:12:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:21:25 2025 by rpki-client