Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RWqIC4jrF_opEzlRp9pgwIoX-uk.roa
File: RWqIC4jrF_opEzlRp9pgwIoX-uk.roa (raw, json)
Hash identifier: nr9FOJAsnceo+M57pzegr5KBFpdEKYhF+EbYFsKcY2w=
Subject key identifier: 45:6A:88:0B:88:EB:17:FA:29:13:39:51:A7:DA:60:C0:8A:17:FA:E9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C95
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RWqIC4jrF_opEzlRp9pgwIoX-uk.roa
Signing time: Sun 07 Feb 2021 11:44:05 +0000
ROA not before: Sun 07 Feb 2021 11:44:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.107.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3221 (0xc95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=456A880B88EB17FA29133951A7DA60C08A17FAE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c9:0f:fc:61:eb:59:15:a1:a9:6c:a7:ab:09:
fc:b3:b8:93:89:36:3e:59:a8:b9:1b:13:ea:a0:30:
e2:2d:0e:2a:6c:a9:9c:80:66:c1:c7:1f:49:be:f3:
24:e7:7b:0d:15:84:4a:f0:4d:49:42:20:30:3f:5c:
4c:a9:6e:08:5d:38:13:4c:8a:1e:91:78:0e:9b:1d:
f6:7c:43:a0:95:6b:2b:cf:d2:e5:fc:87:4c:62:90:
c7:f1:dd:86:52:09:5b:2e:a7:7d:5c:2d:f2:25:8b:
57:97:04:38:9b:b1:12:47:aa:61:ce:e2:56:08:ef:
da:9d:90:93:23:b0:63:be:17:8c:0b:6a:c9:b4:80:
bf:bc:29:97:ab:8f:00:61:ce:34:81:cb:ca:b2:be:
4e:fa:1c:ac:cf:b7:07:81:d4:9b:0a:67:37:0d:25:
73:f4:d6:f4:c2:3b:3b:22:ff:26:2c:57:30:a6:25:
68:24:fc:8e:02:82:f1:2d:e9:dd:bf:68:6a:41:b5:
e7:ed:27:6e:f4:eb:a0:dc:31:06:b1:42:3e:27:e6:
10:81:c2:39:3b:e2:2c:4d:e5:a1:53:a9:b2:92:51:
70:fe:b9:76:f3:a1:17:d6:76:f1:68:d0:57:4e:bf:
b2:91:b5:b4:04:0e:47:3b:2d:b0:94:4c:4d:88:0c:
f0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6A:88:0B:88:EB:17:FA:29:13:39:51:A7:DA:60:C0:8A:17:FA:E9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RWqIC4jrF_opEzlRp9pgwIoX-uk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.128.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:99:b9:87:4f:04:1b:a3:9c:d4:db:ee:e5:ea:4a:e9:a2:b9:
fc:b7:b4:7b:51:01:cd:c3:69:d1:27:6b:cc:d1:0e:40:cf:c6:
b8:44:ad:28:56:58:44:57:ce:79:0e:5e:8d:11:93:7f:92:11:
89:20:5b:9b:35:d9:03:ed:f9:88:88:3a:72:fe:38:7f:c5:70:
bf:56:2b:31:50:0b:22:b8:f0:7d:3e:9f:ac:d8:8c:e2:82:d9:
2f:0f:4a:d8:74:1e:2a:29:3c:3e:80:da:26:3e:5f:81:b4:f5:
cc:67:30:90:c9:ef:68:7d:95:0a:53:97:31:d2:49:9b:f4:ae:
0e:3c:71:fc:ca:a9:24:01:4e:ae:af:c7:7f:63:da:1a:26:6d:
68:0c:49:0d:97:ce:cb:f1:5e:6f:8d:d9:96:8d:70:ef:ea:be:
8e:8c:78:8b:39:41:9b:4a:76:ff:29:19:ec:cc:3b:7a:e0:c7:
b3:9d:00:cc:48:c0:fd:8a:07:e6:c2:93:b0:c8:a9:5b:f5:91:
77:ca:72:d5:2d:4d:ae:9d:42:c7:b4:f8:75:10:56:89:59:a6:
66:05:47:95:7a:76:e8:d2:69:a7:35:1c:94:ca:93:7c:80:43:
96:79:ca:a2:63:bc:f6:b9:a4:3f:43:eb:ac:d2:cc:d6:35:82:
d5:4c:35:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:39:55 2025 by rpki-client