Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OmANRLz9IL7WKYVNAEnvbPvu4wo.roa
File: OmANRLz9IL7WKYVNAEnvbPvu4wo.roa (raw, json)
Hash identifier: uUGO+ID/3XFxvEJAjZ0TJ4nfJTCm9Dp5KPKw4Vfd1Uc=
Subject key identifier: 3A:60:0D:44:BC:FD:20:BE:D6:29:85:4D:00:49:EF:6C:FB:EE:E3:0A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E84
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OmANRLz9IL7WKYVNAEnvbPvu4wo.roa
Signing time: Wed 29 Sep 2021 02:43:42 +0000
ROA not before: Wed 29 Sep 2021 02:43:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 175.183.138.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3716 (0xe84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3A600D44BCFD20BED629854D0049EF6CFBEEE30A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0a:e8:d0:53:dc:7d:8a:dc:14:24:84:ee:ca:
f1:f7:02:39:b6:a0:8e:23:c6:84:7a:53:b0:cc:82:
16:65:bd:cd:bd:2d:1a:10:6d:e7:dd:49:4e:22:48:
74:3c:99:17:49:03:b3:7f:ce:46:a4:d8:47:bd:29:
15:ec:80:47:5b:fe:c9:98:5b:ff:03:9e:f0:d6:20:
00:2f:26:a6:c4:a6:c3:a7:b8:2d:b2:eb:2e:a9:53:
a6:58:18:91:08:0e:51:76:ec:0b:c8:38:e8:3b:28:
6e:f6:e1:9f:04:fc:cf:78:fd:c3:62:ca:5d:d0:f1:
3e:4b:4d:3e:68:4b:61:ff:c1:8d:47:9a:05:5d:7c:
a1:64:86:af:e8:cf:3b:b6:fa:8c:0e:85:42:0d:3c:
b3:05:09:f9:50:2d:5f:fd:bc:a8:2b:36:72:7b:8a:
e9:03:2b:c8:98:f9:f5:e5:04:b2:f1:28:ae:ea:3c:
78:68:18:96:18:da:cb:08:46:0a:25:6e:2e:a9:a5:
03:9a:43:b3:97:57:59:b1:e1:61:0c:e4:ce:e7:db:
7e:88:72:43:5a:7f:12:66:44:5e:53:3a:4d:20:0f:
d4:93:56:58:e9:45:33:6d:13:96:9b:15:d1:07:34:
8f:ea:95:da:98:97:a3:85:79:67:3e:f8:7f:bd:b1:
6f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:60:0D:44:BC:FD:20:BE:D6:29:85:4D:00:49:EF:6C:FB:EE:E3:0A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OmANRLz9IL7WKYVNAEnvbPvu4wo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.138.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:8c:61:26:a7:7e:d7:8e:ae:d1:65:da:7f:65:91:74:65:f4:
a0:85:80:1e:68:cf:61:5d:98:f5:d6:43:3a:88:29:45:31:df:
21:99:30:3b:df:7c:93:70:12:c2:c9:36:55:f0:9b:ee:36:69:
b0:3c:50:86:3f:db:22:e5:de:42:43:89:60:67:a0:93:98:8a:
92:7d:4d:e8:67:3b:89:26:21:80:d1:06:14:ca:ae:3e:52:1a:
9c:fd:22:c4:fb:6d:2b:39:37:8b:dc:3d:a3:a3:a1:4b:ec:9d:
d0:98:54:e8:3f:3f:4b:37:42:9b:22:16:27:7c:56:c6:8b:20:
48:e5:f7:83:a3:3c:84:ba:e9:aa:02:77:9d:ec:29:d6:0e:20:
84:d7:bc:7f:92:23:43:a4:fd:92:b2:b9:67:67:85:20:3b:51:
16:3d:e6:b8:39:2e:d6:d8:a1:5d:14:7a:7d:0c:c1:50:d3:8a:
3b:f8:22:20:a6:f9:ea:b1:66:c0:1f:1f:72:cd:38:56:2d:bb:
f6:b8:b3:32:e6:14:7f:b0:5a:8c:71:92:99:53:85:7e:f8:04:
59:8c:78:82:4a:19:ed:2e:d3:65:a3:43:e6:2c:c9:31:2f:21:
2c:a2:98:ab:1f:fc:84:7e:26:a1:2a:a0:de:50:5c:e0:a4:c1:
aa:18:76:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:20:09 2025 by rpki-client