Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aw4NdPP7I9CXBdaKPLR-MCHtBIQ.roa
File: aw4NdPP7I9CXBdaKPLR-MCHtBIQ.roa (raw, json)
Hash identifier: ucMylYxrqESwZ4lLBYqQ7pC4ZRG4ZRVPN/eka42QKbs=
Subject key identifier: 6B:0E:0D:74:F3:FB:23:D0:97:05:D6:8A:3C:B4:7E:30:21:ED:04:84
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aw4NdPP7I9CXBdaKPLR-MCHtBIQ.roa
Signing time: Thu 15 Sep 2022 02:43:55 +0000
ROA not before: Thu 15 Sep 2022 02:43:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 203.70.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6B0E0D74F3FB23D09705D68A3CB47E3021ED0484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:40:b9:e3:b6:50:da:b0:0f:a8:73:c3:8b:4e:
ea:1d:34:18:0b:a0:9a:40:38:38:8c:74:53:48:ba:
2e:b5:00:e3:3d:0d:3f:93:6c:c7:f4:bf:a7:6b:c5:
b2:7d:6d:8b:49:7a:2d:57:8d:e4:db:6e:0b:f5:da:
65:10:4f:52:0f:52:b3:13:78:29:30:77:41:d5:6f:
d0:59:46:df:f3:26:a5:19:08:20:f6:ec:1d:85:c1:
b5:9c:35:a9:43:11:d2:50:2b:e2:16:9d:8b:86:93:
aa:ee:e6:d2:95:da:70:bf:0a:96:3d:a4:93:5f:8a:
62:f1:6c:33:21:cb:bc:06:df:75:da:fe:9e:2c:c0:
5f:4a:4e:9d:04:d3:e2:b0:f5:28:84:57:cd:6a:ee:
56:87:fb:13:dd:65:5a:c6:ae:e9:f9:1a:fc:68:73:
eb:c8:8c:34:09:49:9a:f1:0f:02:ff:a1:7c:20:8d:
7c:76:bf:68:39:4d:87:14:40:8c:a3:3e:7c:65:50:
b4:9f:a2:e1:cd:3c:f0:15:1e:99:c4:d4:70:9b:b8:
d0:86:3b:29:24:85:85:fb:40:3d:6d:62:d1:a8:5c:
a4:8f:f2:d8:f5:7a:8e:c2:7b:6e:0f:e1:8d:62:94:
1b:49:ed:c1:09:52:c5:88:fe:c3:b9:f5:e9:3f:c6:
8c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0E:0D:74:F3:FB:23:D0:97:05:D6:8A:3C:B4:7E:30:21:ED:04:84
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aw4NdPP7I9CXBdaKPLR-MCHtBIQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
74:32:fe:13:3e:3a:b8:2c:c4:eb:67:63:0e:77:6b:75:96:6d:
54:7b:76:55:17:62:e4:2a:da:18:91:9a:70:8f:e5:b0:98:2f:
85:5f:46:3a:74:00:a3:4c:ba:ad:b4:cb:0f:85:0d:27:23:3c:
71:84:20:ce:72:a3:f5:80:39:73:14:ef:b9:a5:64:83:89:17:
e3:bb:58:1d:42:50:7d:e1:de:19:46:df:66:d2:33:9f:ef:68:
2a:68:ab:0f:41:82:1a:67:11:03:6b:27:93:40:31:8e:c6:65:
a7:61:59:c2:d9:2c:9c:a7:d2:ca:17:e8:a3:64:f6:f2:f0:0c:
27:90:66:f9:94:20:51:0d:82:15:2c:05:e5:3f:31:3e:65:f6:
93:4e:03:e5:51:af:eb:45:48:f3:a1:e8:fd:61:2b:7e:c1:e1:
84:b8:b3:2d:11:36:35:89:5a:f3:c0:6c:4b:78:8b:7f:ff:e5:
4e:5d:54:20:ae:aa:f3:2a:aa:be:e2:e7:56:4e:ce:0e:cd:a1:
78:48:f5:0a:33:7c:89:f6:1b:b4:5d:7a:61:5c:41:d1:30:9d:
3c:d5:ef:57:39:94:25:78:f6:ed:d1:8f:e9:85:29:75:e4:4e:
18:e3:0c:88:1f:b9:39:46:0f:b0:68:e3:0e:c3:df:fa:48:45:
5d:4a:56:ea
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzNTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZCMEUwRDc0RjNGQjIz
RDA5NzA1RDY4QTNDQjQ3RTMwMjFFRDA0ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDiQLnjtlDasA+oc8OLTuodNBgLoJpAODiMdFNIui61AOM9DT+T
bMf0v6drxbJ9bYtJei1XjeTbbgv12mUQT1IPUrMTeCkwd0HVb9BZRt/zJqUZCCD2
7B2FwbWcNalDEdJQK+IWnYuGk6ru5tKV2nC/CpY9pJNfimLxbDMhy7wG33Xa/p4s
wF9KTp0E0+Kw9SiEV81q7laH+xPdZVrGrun5Gvxoc+vIjDQJSZrxDwL/oXwgjXx2
v2g5TYcUQIyjPnxlULSfouHNPPAVHpnE1HCbuNCGOykkhYX7QD1tYtGoXKSP8tj1
eo7Ce24P4Y1ilBtJ7cEJUsWI/sO59ek/xozDAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUaw4NdPP7I9CXBdaKPLR+MCHtBIQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYXc0TmRQUDdJOUNYQmRhS1BMUi1N
Q0h0QklRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtGMA0G
CSqGSIb3DQEBCwUAA4IBAQB0Mv4TPjq4LMTrZ2MOd2t1lm1Ue3ZVF2LkKtoYkZpw
j+WwmC+FX0Y6dACjTLqttMsPhQ0nIzxxhCDOcqP1gDlzFO+5pWSDiRfju1gdQlB9
4d4ZRt9m0jOf72gqaKsPQYIaZxEDayeTQDGOxmWnYVnC2Sycp9LKF+ijZPby8Awn
kGb5lCBRDYIVLAXlPzE+ZfaTTgPlUa/rRUjzoej9YSt+weGEuLMtETY1iVrzwGxL
eIt//+VOXVQgrqrzKqq+4udWTs4OzaF4SPUKM3yJ9hu0XXphXEHRMJ081e9XOZQl
ePbt0Y/phSl15E4Y4wyIH7k5Rg+waOMOw9/6SEVdSlbq
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:35:25 2025 by rpki-client