Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/eNSxIcKlGdNFkyO5bOA0rjQ4mmw.roa
File: eNSxIcKlGdNFkyO5bOA0rjQ4mmw.roa (raw, json)
Hash identifier: dg7ONAzHRYvZGJoaZQGLJwnwlyVMbA37JJ4g8AZBSCM=
Subject key identifier: 78:D4:B1:21:C2:A5:19:D3:45:93:23:B9:6C:E0:34:AE:34:38:9A:6C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1353
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eNSxIcKlGdNFkyO5bOA0rjQ4mmw.roa
Signing time: Fri 01 Sep 2023 09:24:47 +0000
ROA not before: Fri 01 Sep 2023 09:24:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 106.107.152.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4947 (0x1353)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=78D4B121C2A519D3459323B96CE034AE34389A6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:87:d6:d3:6a:7e:31:07:47:bb:3e:d3:c9:30:
ec:ba:b6:13:6c:8a:9b:18:04:86:60:4e:89:e5:c0:
46:89:e9:ef:01:0e:8f:84:5f:0b:6a:c3:10:7f:f4:
a4:34:c0:48:f6:a7:40:25:f0:b6:d0:47:d5:9d:5f:
19:a1:64:1e:33:4c:4d:f8:52:d1:28:b8:9d:4f:e9:
ea:79:1c:28:9a:10:c7:40:98:7e:65:dd:5a:69:13:
38:e8:8c:80:07:40:a4:c0:61:ea:d0:03:26:24:ed:
bc:4e:ee:2f:56:8d:c6:74:50:c3:de:70:bf:5d:5f:
4b:ec:2f:02:24:99:79:0d:f2:6d:7b:07:7b:2c:06:
81:cd:22:5c:ca:08:68:c3:97:61:6a:68:5b:88:60:
a7:af:3d:8b:c8:85:3b:19:35:66:40:39:f3:3b:4e:
e0:17:b7:1f:d9:e7:bc:57:87:28:37:30:ef:54:d0:
7c:e9:c5:50:76:4f:57:41:58:1c:d1:03:17:4e:63:
2b:35:aa:65:36:1f:8a:96:18:14:cb:b7:b9:05:47:
43:f4:b2:bd:85:5a:14:ce:dc:7f:cf:8d:cc:10:97:
2b:f4:0e:59:32:df:c0:f7:2f:7d:d6:c9:fc:63:23:
52:ee:20:85:b2:50:54:f7:48:06:3b:0f:be:d2:0c:
92:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D4:B1:21:C2:A5:19:D3:45:93:23:B9:6C:E0:34:AE:34:38:9A:6C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/eNSxIcKlGdNFkyO5bOA0rjQ4mmw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.152.0/21
Signature Algorithm: sha256WithRSAEncryption
23:05:41:29:53:22:d6:d4:e5:1f:66:2e:f2:51:08:ff:dd:11:
c5:92:e1:1c:05:74:f8:28:bc:c2:64:73:0e:d7:cf:49:94:c0:
15:e5:27:e7:34:2b:00:b3:82:9b:83:ab:18:90:cc:97:22:b5:
51:04:92:9a:c6:a1:e9:9e:99:d5:bb:cf:93:27:f9:fd:05:e2:
cb:0f:0a:0d:3c:5a:2f:f7:7b:92:a0:5b:a3:a8:e3:5b:04:d8:
82:af:9e:7a:91:96:0a:24:f7:35:c8:05:dd:17:a5:b5:4c:2d:
43:62:a0:06:bd:73:88:79:ca:73:16:b2:74:80:3c:14:41:77:
cb:c2:7a:b3:79:ad:1b:df:22:00:6b:95:f3:4a:a8:ad:8a:74:
da:56:48:d9:5d:1e:1c:f8:ab:3c:82:5f:17:2a:1a:20:5d:21:
b1:c3:f2:c0:7a:e3:c2:9b:f4:6a:7c:fa:86:24:41:b9:bd:92:
8c:89:e1:5c:00:f8:78:df:e4:d7:c2:ed:a0:c4:e6:37:9e:ca:
6d:c6:1b:57:d5:36:06:de:ea:52:2f:63:25:6e:35:6f:fc:16:
2a:12:df:16:4c:47:f0:94:4d:f1:d8:36:06:fa:2e:3d:0f:17:
c6:4c:3b:9c:a1:a1:01:11:a5:b0:51:e4:2d:ff:78:69:15:fe:
25:51:ce:8b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICE1MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw
OTI0NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc4RDRCMTIxQzJBNTE5
RDM0NTkzMjNCOTZDRTAzNEFFMzQzODlBNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9h9bTan4xB0e7PtPJMOy6thNsipsYBIZgTonlwEaJ6e8BDo+E
XwtqwxB/9KQ0wEj2p0Al8LbQR9WdXxmhZB4zTE34UtEouJ1P6ep5HCiaEMdAmH5l
3VppEzjojIAHQKTAYerQAyYk7bxO7i9WjcZ0UMPecL9dX0vsLwIkmXkN8m17B3ss
BoHNIlzKCGjDl2FqaFuIYKevPYvIhTsZNWZAOfM7TuAXtx/Z57xXhyg3MO9U0Hzp
xVB2T1dBWBzRAxdOYys1qmU2H4qWGBTLt7kFR0P0sr2FWhTO3H/PjcwQlyv0Dlky
38D3L33WyfxjI1LuIIWyUFT3SAY7D77SDJIbAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUeNSxIcKlGdNFkyO5bOA0rjQ4mmwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZU5TeEljS2xHZE5Ga3lPNWJPQTBy
alE0bW13LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2prmDAN
BgkqhkiG9w0BAQsFAAOCAQEAIwVBKVMi1tTlH2Yu8lEI/90RxZLhHAV0+Ci8wmRz
DtfPSZTAFeUn5zQrALOCm4OrGJDMlyK1UQSSmsah6Z6Z1bvPkyf5/QXiyw8KDTxa
L/d7kqBbo6jjWwTYgq+eepGWCiT3NcgF3ReltUwtQ2KgBr1ziHnKcxaydIA8FEF3
y8J6s3mtG98iAGuV80qorYp02lZI2V0eHPirPIJfFyoaIF0hscPywHrjwpv0anz6
hiRBub2SjInhXAD4eN/k18LtoMTmN57KbcYbV9U2Bt7qUi9jJW41b/wWKhLfFkxH
8JRN8dg2BvouPQ8Xxkw7nKGhARGlsFHkLf94aRX+JVHOiw==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:33:29 2025 by rpki-client