Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QsYLoq5MyvcyjVAjH4VjDoFky3k.roa
File: QsYLoq5MyvcyjVAjH4VjDoFky3k.roa (raw, json)
Hash identifier: AsEXfOu3T0dVsrgXFPmTGv60QIjJGzRl805eb7hpC98=
Subject key identifier: 42:C6:0B:A2:AE:4C:CA:F7:32:8D:50:23:1F:85:63:0E:81:64:CB:79
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QsYLoq5MyvcyjVAjH4VjDoFky3k.roa
Signing time: Thu 15 Sep 2022 02:43:18 +0000
ROA not before: Thu 15 Sep 2022 02:43:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=42C60BA2AE4CCAF7328D50231F85630E8164CB79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:93:61:14:57:a1:8d:81:53:1d:4a:11:9c:8d:
44:3b:b3:ec:53:42:51:c9:f0:4d:2b:98:87:34:b1:
bd:ad:d3:99:8f:c6:ca:71:cf:3b:9e:ba:69:8c:3a:
7f:62:eb:af:b1:93:f4:02:63:17:fe:38:bd:9a:97:
c7:7b:32:e9:7d:0f:18:3f:3d:df:cf:7e:4e:8e:9c:
9b:60:90:f6:88:45:f4:5f:4c:d0:ee:17:3b:e0:76:
47:ca:6a:bf:ee:97:cc:22:7b:47:e5:97:c8:4c:0a:
1f:83:e5:e7:3f:b6:ea:da:8c:2a:c9:c9:53:c8:14:
68:4b:17:4d:31:7b:26:ad:40:d4:fa:e4:8b:f7:e6:
ae:f0:51:61:bc:6a:43:ac:00:cf:24:c7:4c:86:cb:
09:ae:10:f6:e8:39:7f:df:2f:30:b9:cc:81:42:8a:
43:ab:b7:35:2f:72:2d:49:48:7b:12:84:ef:11:0b:
0a:ef:e8:7b:12:54:77:d3:2f:7b:39:d4:7f:f8:54:
17:e8:cb:a0:70:37:e0:f0:99:80:41:f6:86:b2:fa:
b5:83:fc:d4:f1:d4:5c:3e:84:4b:b8:50:70:88:7a:
7e:e6:91:1f:38:7f:05:87:8b:78:5c:03:e7:4a:c5:
a4:9e:3f:2e:31:5c:80:06:b6:a9:f9:c2:74:b5:5a:
7b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C6:0B:A2:AE:4C:CA:F7:32:8D:50:23:1F:85:63:0E:81:64:CB:79
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QsYLoq5MyvcyjVAjH4VjDoFky3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:ef:ba:c3:4e:07:37:21:6d:32:57:87:1d:18:93:16:5e:0e:
ee:19:e7:ae:91:6a:e9:3c:0d:d9:19:8f:3c:94:78:5f:1a:98:
13:be:58:fb:69:7e:a3:b1:8a:2d:94:1a:81:2b:3b:a4:52:05:
39:9b:60:17:4f:5f:39:da:f1:fc:c2:43:f5:4e:c9:5c:83:34:
6b:33:7e:14:1b:96:0e:8c:20:69:fc:15:b1:e6:fd:34:50:ce:
d2:d1:96:cb:33:47:c4:e4:cd:f5:6f:41:7c:14:48:ba:22:34:
c7:35:10:fc:06:49:ec:8c:3e:04:24:ad:f4:3c:de:d8:77:14:
2c:ad:1d:a0:de:6b:25:02:a2:37:1e:4c:53:fa:f4:7f:30:fe:
40:73:09:5f:4a:4c:78:9a:09:d2:fa:8b:b7:fd:6e:41:9f:2d:
0e:25:c7:19:cd:8d:6a:1d:fa:ad:cc:86:c3:8b:1f:9c:16:f8:
83:59:ef:d8:72:47:4e:a7:31:d2:3f:13:a1:16:21:c3:0d:de:
3f:26:8a:f5:1c:ba:ea:f6:c5:23:71:16:12:56:32:e4:24:2f:
26:0d:b7:be:af:12:fb:c1:bb:7d:57:21:64:8d:9c:e9:f2:e8:
b8:f3:3c:f9:cd:95:0d:9c:a3:12:b4:3a:97:06:a3:d8:3b:93:
f7:47:fa:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:35:29 2025 by rpki-client