Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/e_Zu8YGkhbEjaLU-klYcQ8_DOIg.roa
File: e_Zu8YGkhbEjaLU-klYcQ8_DOIg.roa (raw, json)
Hash identifier: YIgAGqn3HYtJ0xZfkaGCocUiyyud0ld4qhA16U1mMrg=
Subject key identifier: 7B:F6:6E:F1:81:A4:85:B1:23:68:B5:3E:92:56:1C:43:CF:C3:38:88
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1822
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e_Zu8YGkhbEjaLU-klYcQ8_DOIg.roa
Signing time: Mon 10 Feb 2025 14:07:36 +0000
ROA not before: Mon 10 Feb 2025 14:07:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9922
IP address blocks: 122.147.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6178 (0x1822)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7BF66EF181A485B12368B53E92561C43CFC33888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d4:52:b7:ae:81:b7:10:eb:9c:34:b0:f7:0e:
b6:ae:26:57:ee:cf:ab:49:3d:d6:75:b0:5c:b0:bb:
11:58:26:49:51:8f:09:04:63:6d:3d:b2:74:41:3a:
13:e8:31:7e:f4:54:d7:a0:84:06:88:9c:67:7e:e0:
e8:53:3e:20:40:54:58:3d:9c:3a:2e:dc:3d:4d:27:
f3:c4:b1:98:2e:39:e3:95:3d:2a:7f:73:4f:56:2e:
75:3a:33:6f:fc:ba:ae:61:fb:c2:79:96:c6:97:3b:
42:85:ba:57:45:09:a3:a0:5f:30:b7:48:c4:7d:35:
1d:32:a2:8c:63:92:4b:c7:54:9c:aa:54:6d:d6:f9:
a5:ff:14:4e:3b:85:5f:11:08:46:2d:7f:8d:e2:9e:
44:59:0a:59:a4:1b:ef:4d:9f:52:32:9e:d4:7c:25:
e9:fd:ee:59:98:0f:e6:1f:28:1f:da:07:24:76:bb:
b8:d8:34:64:51:fa:14:d9:f1:7e:d7:3f:34:31:45:
df:42:90:a3:85:fb:48:22:f2:4d:44:f0:e7:fe:83:
c9:cc:e7:e3:e5:ac:9e:af:9e:30:12:aa:ca:3a:29:
46:87:01:06:bf:55:3b:3a:dd:ee:b3:49:2f:70:bb:
57:2c:c5:17:85:5f:8c:82:6d:0f:4a:c1:07:6d:c8:
ea:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F6:6E:F1:81:A4:85:B1:23:68:B5:3E:92:56:1C:43:CF:C3:38:88
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e_Zu8YGkhbEjaLU-klYcQ8_DOIg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.24.0/21
Signature Algorithm: sha256WithRSAEncryption
c5:48:23:2a:0a:b7:b3:69:1f:d6:63:74:35:f4:fc:ca:f1:41:
d8:ba:9f:eb:61:68:76:b5:8f:de:d3:ef:bd:5c:2b:eb:00:76:
8f:ba:c8:50:db:39:c3:ff:c1:f2:8f:67:0b:8e:f0:c6:40:09:
30:87:7e:81:e3:31:91:6f:36:e7:c9:e5:6b:c2:62:76:76:98:
70:06:3b:56:2a:e7:fc:ae:d7:51:7d:d0:cc:f4:aa:bc:56:92:
96:41:7d:19:35:6c:0e:6e:bf:af:fd:74:f6:99:3e:01:b1:e2:
70:92:89:34:9d:77:4f:9d:e5:54:6d:5b:4e:2f:14:a5:cd:ac:
da:58:a4:9a:97:dc:c5:fa:d5:7d:fa:44:0c:43:65:09:1d:38:
62:50:9a:94:05:d7:d4:88:fd:d6:bc:fd:ec:c7:54:1b:c7:91:
c8:93:0c:f8:2e:d3:86:9a:1a:c8:28:0e:c7:0e:80:a0:3e:15:
dd:18:4b:fc:9e:62:eb:a0:2e:7e:10:ba:4a:e8:4a:18:53:27:
4e:68:2e:ca:ba:53:40:98:c1:70:2a:67:41:d6:09:e9:0c:e0:
03:48:06:b6:d5:db:14:96:fa:d1:29:0b:d3:47:dd:61:d6:b5:
64:af:69:fb:ae:27:05:d0:62:dc:52:5e:eb:1f:f3:de:d9:e8:
d1:dc:84:ce
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICGCIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdCRjY2RUYxODFBNDg1
QjEyMzY4QjUzRTkyNTYxQzQzQ0ZDMzM4ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDa1FK3roG3EOucNLD3DrauJlfuz6tJPdZ1sFywuxFYJklRjwkE
Y209snRBOhPoMX70VNeghAaInGd+4OhTPiBAVFg9nDou3D1NJ/PEsZguOeOVPSp/
c09WLnU6M2/8uq5h+8J5lsaXO0KFuldFCaOgXzC3SMR9NR0yooxjkkvHVJyqVG3W
+aX/FE47hV8RCEYtf43inkRZClmkG+9Nn1IyntR8Jen97lmYD+YfKB/aByR2u7jY
NGRR+hTZ8X7XPzQxRd9CkKOF+0gi8k1E8Of+g8nM5+PlrJ6vnjASqso6KUaHAQa/
VTs63e6zSS9wu1csxReFX4yCbQ9KwQdtyOprAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUe/Zu8YGkhbEjaLU+klYcQ8/DOIgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZV9adThZR2toYkVqYUxVLWtsWWNR
OF9ET0lnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTGDAN
BgkqhkiG9w0BAQsFAAOCAQEAxUgjKgq3s2kf1mN0NfT8yvFB2Lqf62FodrWP3tPv
vVwr6wB2j7rIUNs5w//B8o9nC47wxkAJMId+geMxkW8258nla8JidnaYcAY7Virn
/K7XUX3QzPSqvFaSlkF9GTVsDm6/r/109pk+AbHicJKJNJ13T53lVG1bTi8Upc2s
2likmpfcxfrVffpEDENlCR04YlCalAXX1Ij91rz97MdUG8eRyJMM+C7ThpoayCgO
xw6AoD4V3RhL/J5i66AufhC6SuhKGFMnTmguyrpTQJjBcCpnQdYJ6QzgA0gGttXb
FJb60SkL00fdYda1ZK9p+64nBdBi3FJe6x/z3tno0dyEzg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 08:08:26 2025 by rpki-client