Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UA-GgmwsCblCd4ZLyfWyrjwqo-I.roa
File: UA-GgmwsCblCd4ZLyfWyrjwqo-I.roa (raw, json)
Hash identifier: Pzw0mVpbiQHPBDzzFiQhysJiQzREQ5E5rWWqksJXKJk=
Subject key identifier: 50:0F:86:82:6C:2C:09:B9:42:77:86:4B:C9:F5:B2:AE:3C:2A:A3:E2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 179D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UA-GgmwsCblCd4ZLyfWyrjwqo-I.roa
Signing time: Mon 10 Feb 2025 14:07:06 +0000
ROA not before: Mon 10 Feb 2025 14:07:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 122.147.176.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6045 (0x179d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=500F86826C2C09B94277864BC9F5B2AE3C2AA3E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:54:5b:0c:6f:4a:3d:c0:6c:b6:30:19:ac:40:
b9:47:bd:5b:fa:65:f4:68:0a:2f:ce:22:10:e8:5b:
e7:10:e5:91:29:41:42:3a:f2:a6:0e:a0:da:21:5d:
7d:15:33:01:eb:70:51:6d:f9:09:29:85:f9:a6:6a:
8f:a1:8e:6a:30:e6:b8:bd:04:ac:03:90:96:71:bf:
63:4f:f9:55:ad:cd:28:ae:b0:36:da:31:39:2b:59:
8d:93:23:4b:88:c1:25:ce:7b:78:43:ea:a0:d6:d5:
72:22:36:a1:c9:36:9e:21:c6:44:36:73:0b:10:d3:
35:d6:65:f9:f0:c8:a4:5a:c3:3d:00:df:96:ae:8e:
e4:44:69:b4:57:e6:49:44:9c:3f:84:28:3d:3e:fe:
7a:d5:09:eb:ca:07:ab:99:9e:96:3c:8b:c3:70:dd:
d3:b7:28:0e:b6:50:5f:9b:05:57:c2:ca:d7:eb:30:
58:79:51:ff:fd:67:c7:15:88:ad:f1:3e:7c:d7:c2:
3b:10:77:83:9e:8b:9a:05:04:c0:05:2f:32:57:a5:
d6:a2:5c:ba:9e:d1:fc:c7:cd:6c:30:02:42:0d:ee:
04:52:e9:80:9e:b8:8c:ac:bf:da:9d:cd:b7:69:20:
f6:91:41:5d:7a:fc:53:fa:1d:28:9c:de:c2:60:46:
00:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0F:86:82:6C:2C:09:B9:42:77:86:4B:C9:F5:B2:AE:3C:2A:A3:E2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UA-GgmwsCblCd4ZLyfWyrjwqo-I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.176.0/20
Signature Algorithm: sha256WithRSAEncryption
bd:ae:9a:c3:52:08:c2:49:d1:4b:0b:57:2f:5b:fe:72:0f:d7:
04:27:97:54:56:1d:0b:7c:80:d0:d6:85:c1:fc:ea:bc:fb:c0:
11:b0:09:65:34:0d:22:03:52:1b:c3:60:bb:29:4e:ec:29:ae:
69:ba:a6:ad:0c:2d:85:71:82:b4:9f:fd:26:ac:d4:8b:7d:6d:
57:16:3d:9c:36:d6:65:d2:2c:62:e3:db:e6:be:51:83:1b:bd:
5e:84:40:9f:1e:3a:fa:e6:94:15:ae:8f:21:f7:c5:5e:93:38:
96:92:1a:18:ab:67:32:0f:d3:e9:f1:bc:27:44:39:23:5a:75:
ed:46:ed:46:a0:fc:71:43:28:02:64:20:6b:51:6e:cc:72:05:
fb:42:a1:d6:c1:0a:31:eb:90:ab:ae:9b:e8:72:88:20:c5:66:
31:a3:2b:ee:80:d1:01:15:10:25:2c:58:3e:39:83:8f:e3:12:
af:e8:72:77:01:88:2b:10:6e:ff:10:64:fe:2d:15:18:67:11:
1b:a8:af:a6:5b:86:f7:a3:71:2b:b7:fc:39:0d:c3:67:b9:78:
b0:28:7f:a4:17:c7:ed:6f:3c:74:8e:84:d4:93:1f:8d:fe:b2:
3e:22:d7:4d:80:4b:05:77:24:1d:f3:5d:04:ac:49:d4:19:ce:
05:2b:ee:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:26 2025 by rpki-client