Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fWDBmp27RutpvvMbzJUykg-5FnI.roa
File: fWDBmp27RutpvvMbzJUykg-5FnI.roa (raw, json)
Hash identifier: YKp0RWziT2fHd42jwUjXxQInN7BqdXf0cyoyqy4Dt5I=
Subject key identifier: 7D:60:C1:9A:9D:BB:46:EB:69:BE:F3:1B:CC:95:32:92:0F:B9:16:72
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fWDBmp27RutpvvMbzJUykg-5FnI.roa
Signing time: Thu 15 Sep 2022 02:43:55 +0000
ROA not before: Thu 15 Sep 2022 02:43:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 210.244.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7D60C19A9DBB46EB69BEF31BCC9532920FB91672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:11:de:9a:05:a1:81:87:c1:e7:da:26:af:55:
32:2c:89:cd:22:57:51:3c:b8:a7:70:79:53:f6:c5:
c7:d9:29:72:b5:0d:82:74:1b:74:26:6f:b8:60:39:
7d:cb:a1:be:df:40:eb:99:98:58:c5:4d:65:91:7b:
7e:8b:66:f3:c3:9d:cd:b9:52:ac:dd:c8:05:09:cb:
7b:2a:08:c4:64:79:37:8a:14:2a:67:b4:d0:e6:20:
ac:70:c7:99:ce:43:af:4b:3e:ea:d3:2c:e6:75:bc:
50:20:e0:f0:2e:85:d9:46:71:33:4e:be:67:99:cb:
26:46:4f:64:20:00:6d:28:d2:25:d1:c3:17:31:3c:
56:f4:1c:52:69:3e:fa:f8:f6:50:bb:fb:fc:5c:fe:
85:d8:c4:79:0e:53:b1:17:61:0f:ef:65:ad:af:1f:
3c:ec:b2:98:9f:b5:91:27:7e:20:7e:1b:b3:72:eb:
98:6c:40:2f:f7:48:80:27:b7:1e:08:28:09:1f:c2:
07:d6:4b:53:ce:72:e7:25:9a:bb:89:52:85:8d:d1:
83:d4:c9:15:52:a0:8b:da:48:07:1f:71:c8:a6:72:
b8:74:a8:e7:6b:fe:fb:34:45:01:f5:c7:9b:10:1d:
8c:13:80:a0:70:13:cc:47:a0:08:05:b6:51:19:af:
44:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:60:C1:9A:9D:BB:46:EB:69:BE:F3:1B:CC:95:32:92:0F:B9:16:72
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fWDBmp27RutpvvMbzJUykg-5FnI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.244.84.0/22
Signature Algorithm: sha256WithRSAEncryption
19:90:a3:06:6c:11:d2:50:80:02:1b:4f:57:35:d0:bd:97:39:
ba:c8:04:fe:59:6d:3a:71:7c:d4:a6:23:52:1b:ed:23:54:c7:
6e:11:7d:60:41:24:0b:ba:60:ff:57:c7:63:47:a2:b7:21:67:
6c:9c:e6:cf:ff:6b:91:ff:4a:64:40:57:67:fb:99:a8:69:90:
19:f3:3d:f1:29:c9:f2:fb:0e:b3:96:dc:78:48:b3:4e:3a:4d:
51:ff:ac:7d:b8:b2:8a:5e:0f:bd:bc:a1:b2:8b:d0:03:a1:f5:
4d:51:57:62:61:c9:31:d4:31:3d:62:87:00:48:a0:06:24:d2:
ed:6b:bf:ce:ee:b7:f5:0c:f2:1e:48:03:c8:8b:30:c3:d2:59:
49:28:07:79:4e:cf:3d:eb:b8:c6:63:ca:67:ba:e4:df:ee:01:
bf:df:ad:d6:26:0b:28:da:85:0b:6a:fa:92:36:fb:b4:82:68:
b1:ca:86:fd:74:19:78:fc:be:60:5d:05:1d:3b:1b:e7:66:b1:
a5:94:1f:bc:32:f7:59:f9:a1:bc:24:c4:f7:20:af:cc:60:47:
99:10:ca:f6:6c:53:5e:94:a8:27:bb:84:90:c6:a0:fd:08:d6:
da:46:4b:f1:37:14:8f:44:6a:e0:bd:83:0f:8f:70:0a:d5:cf:
82:19:f8:88
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzNTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdENjBDMTlBOURCQjQ2
RUI2OUJFRjMxQkNDOTUzMjkyMEZCOTE2NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEEd6aBaGBh8Hn2iavVTIsic0iV1E8uKdweVP2xcfZKXK1DYJ0
G3Qmb7hgOX3Lob7fQOuZmFjFTWWRe36LZvPDnc25UqzdyAUJy3sqCMRkeTeKFCpn
tNDmIKxwx5nOQ69LPurTLOZ1vFAg4PAuhdlGcTNOvmeZyyZGT2QgAG0o0iXRwxcx
PFb0HFJpPvr49lC7+/xc/oXYxHkOU7EXYQ/vZa2vHzzsspiftZEnfiB+G7Ny65hs
QC/3SIAntx4IKAkfwgfWS1POcuclmruJUoWN0YPUyRVSoIvaSAcfccimcrh0qOdr
/vs0RQH1x5sQHYwTgKBwE8xHoAgFtlEZr0SFAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUfWDBmp27RutpvvMbzJUykg+5FnIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZldEQm1wMjdSdXRwdnZNYnpKVXlr
Zy01Rm5JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtL0VDAN
BgkqhkiG9w0BAQsFAAOCAQEAGZCjBmwR0lCAAhtPVzXQvZc5usgE/lltOnF81KYj
UhvtI1THbhF9YEEkC7pg/1fHY0eityFnbJzmz/9rkf9KZEBXZ/uZqGmQGfM98SnJ
8vsOs5bceEizTjpNUf+sfbiyil4PvbyhsovQA6H1TVFXYmHJMdQxPWKHAEigBiTS
7Wu/zu639QzyHkgDyIsww9JZSSgHeU7PPeu4xmPKZ7rk3+4Bv9+t1iYLKNqFC2r6
kjb7tIJoscqG/XQZePy+YF0FHTsb52axpZQfvDL3WfmhvCTE9yCvzGBHmRDK9mxT
XpSoJ7uEkMag/QjW2kZL8TcUj0Rq4L2DD49wCtXPghn4iA==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:32:15 2025 by rpki-client