Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZMDKfHxJ3VCbjkdWIjwZCXNVga0.roa
File: ZMDKfHxJ3VCbjkdWIjwZCXNVga0.roa (raw, json)
Hash identifier: yQ1FqmF01laZg4jNEfrnPqhO4MYZOXFunjJVxWHr6WA=
Subject key identifier: 64:C0:CA:7C:7C:49:DD:50:9B:8E:47:56:22:3C:19:09:73:55:81:AD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZMDKfHxJ3VCbjkdWIjwZCXNVga0.roa
Signing time: Thu 15 Sep 2022 02:43:38 +0000
ROA not before: Thu 15 Sep 2022 02:43:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 106.106.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=64C0CA7C7C49DD509B8E4756223C1909735581AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:d5:32:ca:34:e2:63:cd:7b:50:77:c6:9b:
b4:e2:0e:d7:e9:ed:27:04:80:61:6d:f3:50:bb:a3:
69:b4:6f:e2:af:9a:ad:01:9b:7b:60:c4:7f:88:52:
ed:cd:a9:42:bf:27:97:08:f3:0b:aa:c9:2f:99:5a:
76:88:5f:84:8e:28:01:4b:be:e1:78:f7:12:cb:22:
44:b7:bf:4d:56:85:20:86:f2:7c:c3:f9:3b:ce:0c:
d8:58:a9:50:be:e5:2f:d7:c2:cf:49:c9:70:5b:bd:
2c:e6:e4:9f:e3:ab:c8:d8:67:dc:84:bc:05:26:e3:
f9:3e:84:32:08:bb:cd:2d:26:2a:da:65:21:80:81:
67:5b:48:e0:91:b9:66:b3:37:fd:b4:34:81:e3:b6:
3b:5d:a2:7a:c6:08:08:f9:77:cb:b9:19:89:10:31:
3d:39:9b:c1:3c:08:d9:b9:35:2f:4c:41:5b:61:eb:
39:92:fa:4f:08:4d:e6:89:1e:bf:6d:b9:94:cc:7a:
08:af:ce:e1:05:86:1e:f2:26:f1:e0:14:fc:95:b2:
9b:42:3b:7f:64:3d:d2:20:be:67:0e:d7:f4:55:aa:
0f:49:ef:55:e8:75:45:71:b7:e4:ca:76:fd:83:1b:
61:3f:cb:c8:fc:fa:c2:2e:c2:da:36:a7:2a:d5:fe:
12:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C0:CA:7C:7C:49:DD:50:9B:8E:47:56:22:3C:19:09:73:55:81:AD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZMDKfHxJ3VCbjkdWIjwZCXNVga0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.220.0/22
Signature Algorithm: sha256WithRSAEncryption
cb:d6:5c:14:37:46:20:8b:4c:18:ed:e9:74:d8:b7:c0:28:3d:
f5:2b:8c:78:e6:44:d2:eb:d7:52:27:32:ac:9a:9a:5c:c0:99:
eb:b6:96:6d:52:ac:b3:d7:f3:29:06:29:ac:10:9d:90:98:ad:
96:0f:5b:6d:5f:21:08:cd:fd:f0:ce:d5:81:58:9c:53:42:ab:
eb:0e:d5:49:b7:5c:2f:fa:dd:1d:e1:98:b2:07:96:82:8f:9d:
27:7a:5c:c5:8c:9b:a3:5c:b3:d4:b9:34:37:47:46:31:49:f7:
b6:4f:20:ed:5c:ed:70:9e:9b:f9:ed:92:a9:e2:b6:7c:da:0f:
ec:69:c5:31:fb:78:fa:9e:ea:26:9a:e6:ff:37:1c:4d:8e:bf:
49:b0:9d:b5:0d:02:f7:18:26:8f:47:9a:7b:dc:41:36:b4:56:
4e:83:50:72:fc:45:db:96:58:2a:a7:44:a3:7d:23:b1:ec:84:
6c:69:b7:57:72:4d:47:26:67:96:db:bc:73:e7:39:51:5f:48:
b0:c3:14:5b:1f:b1:0a:38:90:5d:f5:42:8a:9b:f2:d5:fa:74:
7a:71:07:01:9b:35:80:32:21:9d:29:7c:d2:5e:99:ed:4b:26:
38:f8:1b:f1:78:fb:4a:5a:da:85:d1:47:9a:16:3d:c5:34:4d:
88:b9:49:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:14:29 2025 by rpki-client