Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZE7lUvj_yH5iZq30i8Q5fMJZWaI.roa
File: ZE7lUvj_yH5iZq30i8Q5fMJZWaI.roa (raw, json)
Hash identifier: 8XFwmsbmcmSh2zfcnsGiXlxAOTOcaYJfNrUDXh5y/EU=
Subject key identifier: 64:4E:E5:52:F8:FF:C8:7E:62:66:AD:F4:8B:C4:39:7C:C2:59:59:A2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E73
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZE7lUvj_yH5iZq30i8Q5fMJZWaI.roa
Signing time: Wed 29 Sep 2021 02:43:36 +0000
ROA not before: Wed 29 Sep 2021 02:43:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 106.105.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3699 (0xe73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=644EE552F8FFC87E6266ADF48BC4397CC25959A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d4:08:34:ee:ca:d5:a5:45:76:30:92:7e:47:
9c:7e:7b:5f:22:f7:be:9a:99:0e:ed:d5:eb:45:2f:
78:a2:89:d2:6f:c8:5e:d5:fe:f9:95:f1:01:7f:64:
c6:99:fe:2b:f3:c4:90:ca:49:1c:17:59:a2:2a:6f:
9d:85:f1:df:74:c6:ec:fb:1e:59:ba:0c:c7:82:6c:
ca:b8:30:a9:27:6e:2f:80:9c:2e:01:7f:53:80:cf:
a5:58:42:cb:b9:27:80:9a:86:b7:79:b4:8f:63:3e:
63:51:da:a3:b7:b4:d1:f5:36:98:29:11:4a:2a:18:
a6:62:00:75:9d:6f:c3:0a:ce:71:af:00:54:98:41:
a3:fe:70:34:1b:6e:3e:a6:cb:99:ae:94:d6:a2:d7:
ee:a8:81:a7:84:7c:01:15:f3:7f:4b:9f:f2:3c:e2:
d5:52:fd:f6:46:8d:be:05:c3:26:e6:11:9e:fb:da:
52:6d:e2:9e:e2:73:ba:9a:aa:3c:38:0f:38:06:14:
97:ef:f2:22:90:74:7d:f3:26:97:df:cf:55:66:34:
08:ad:24:f2:40:02:08:b7:c7:ba:b5:f7:aa:78:f5:
dc:38:09:6c:51:c6:4c:1b:8e:c1:97:46:4a:05:0e:
81:6e:c8:d7:39:8a:dc:54:e8:99:03:2c:e2:df:2d:
84:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:4E:E5:52:F8:FF:C8:7E:62:66:AD:F4:8B:C4:39:7C:C2:59:59:A2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZE7lUvj_yH5iZq30i8Q5fMJZWaI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.240.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:30:00:5f:0e:ff:d1:c9:31:73:92:eb:d6:26:4a:06:e8:24:
01:ab:5e:8e:fe:56:7e:22:75:ca:77:f8:0d:16:6f:9d:84:39:
7a:8e:50:f2:96:23:74:24:0b:c2:4f:f5:8d:30:b5:72:98:b8:
23:eb:f1:b7:1d:4d:d8:fe:9f:c2:ef:87:12:af:5c:04:ac:16:
5a:4b:dc:b2:49:dd:74:ec:f5:e1:b6:42:82:8d:10:f2:25:49:
14:74:8f:38:36:88:32:b7:a9:9c:70:68:36:e9:4c:be:d2:f4:
64:d3:68:bc:63:f6:e0:6a:e4:39:df:19:f4:e6:91:bf:14:02:
0f:f4:72:f8:be:79:ac:60:f9:c0:3b:a6:c7:40:a1:b6:25:ff:
a9:ea:95:18:08:f0:60:6c:34:4c:bc:bf:af:c5:8e:ea:b0:7e:
58:bf:e4:21:a3:85:07:d2:02:ff:59:5f:e8:cd:3b:29:42:74:
a8:da:56:07:6a:80:25:d8:15:5e:9c:8d:d7:85:2b:80:48:50:
ab:aa:69:af:e2:d2:64:07:d4:99:c0:af:ef:0d:fe:7f:be:b9:
e2:d3:49:44:14:38:cd:97:17:5c:17:3f:f4:c2:37:c9:c3:03:
9c:c4:c0:3d:24:19:9b:4c:9c:d3:37:e1:e0:2a:10:b0:c3:94:
db:79:c2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:37:48 2025 by rpki-client