Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/g0kS0HdLorKRybpzfLtHzneKQlU.roa
File: g0kS0HdLorKRybpzfLtHzneKQlU.roa (raw, json)
Hash identifier: aj6tuiSOcQS8iFKtq1BELi4ofBYgO0ns9zeYX4Qhk6E=
Subject key identifier: 83:49:12:D0:77:4B:A2:B2:91:C9:BA:73:7C:BB:47:CE:77:8A:42:55
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08E4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/g0kS0HdLorKRybpzfLtHzneKQlU.roa
Signing time: Tue 29 Sep 2020 09:52:34 +0000
ROA not before: Tue 29 Sep 2020 09:52:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.147.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2276 (0x8e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=834912D0774BA2B291C9BA737CBB47CE778A4255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d5:1d:97:7d:b1:39:5b:2a:5b:9f:91:15:5f:
07:b5:00:17:70:b9:12:5f:43:4b:7b:b8:e1:f3:6b:
6f:e4:11:f3:fc:93:72:48:af:d8:37:99:8b:b4:75:
2e:f1:87:db:4e:1f:ca:9a:58:7b:87:91:40:b5:c2:
ad:7b:6d:cf:f6:12:93:80:f9:a7:4e:b0:81:58:85:
03:0a:53:3d:86:65:16:3c:fd:b1:2d:f5:f2:3f:81:
42:24:18:f6:c4:e4:ad:f5:d1:57:92:95:0e:4e:fc:
6c:22:2c:e7:8a:e8:65:cf:95:5d:80:81:92:98:80:
6c:35:ee:30:76:c0:c4:6e:e4:19:52:87:14:9d:3c:
44:fa:f3:da:4b:02:8f:ea:10:41:de:52:4c:d3:d0:
6a:7f:76:f2:91:d7:fe:d7:7b:3f:ab:00:c5:05:7d:
98:8f:39:67:54:09:28:af:f9:f2:f6:0d:21:61:2c:
15:5b:70:03:1b:8d:70:7e:7a:e8:50:d3:8f:38:4d:
a6:51:c3:11:58:a3:63:9f:e8:b4:2e:d7:75:70:00:
ff:fa:ea:8d:bd:a3:df:be:4c:a0:dd:51:ae:f4:08:
bb:5c:7d:94:0c:3a:7c:49:6e:9b:92:2b:9d:9c:cf:
79:a3:78:30:68:84:db:dd:64:b7:c8:06:8d:af:a2:
9a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:49:12:D0:77:4B:A2:B2:91:C9:BA:73:7C:BB:47:CE:77:8A:42:55
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/g0kS0HdLorKRybpzfLtHzneKQlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.192.0/18
Signature Algorithm: sha256WithRSAEncryption
01:83:47:14:65:76:16:82:c8:c6:42:95:e1:71:34:64:3a:0c:
7f:7e:5c:5d:f7:db:81:d4:03:b7:a5:58:c4:13:af:26:21:ef:
23:9d:19:68:01:8d:ba:43:ef:ef:18:79:17:01:fe:9a:fa:e0:
1f:7b:7f:25:84:5d:e8:51:56:15:cb:79:7a:a3:20:d3:3a:44:
d6:5e:57:34:9c:49:4f:81:64:83:2b:04:27:a7:c3:ff:ef:68:
10:33:a5:c9:84:65:42:e5:b0:40:9c:28:dc:5f:7c:92:e5:90:
8a:08:93:df:36:2a:03:fb:81:04:60:41:c1:be:00:bf:80:eb:
f0:26:9b:9f:0b:1c:d1:b6:5b:1d:73:6e:66:37:36:86:17:6c:
df:8f:36:b4:05:24:b1:fb:e4:05:33:7b:91:8c:3d:60:e6:11:
46:16:a2:c5:e6:d3:ab:02:93:84:b4:22:a4:e7:28:fe:ce:10:
c2:bf:ff:f4:e3:2d:eb:d6:b7:a4:f6:b0:6d:1d:05:fa:37:ee:
e4:4a:88:11:b2:ea:0e:aa:5b:e7:b9:ce:74:50:65:1a:fb:81:
0d:f3:94:e8:54:1c:76:5d:77:d2:cb:2d:b4:fb:a5:a7:dc:93:
91:54:bb:5a:ab:a5:64:3a:65:ae:dd:94:48:9a:ca:05:77:96:
da:2d:9c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:37:45 2025 by rpki-client