Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jlgCqZIISTIzDHJdeSt3HAO7IeU.roa
File: jlgCqZIISTIzDHJdeSt3HAO7IeU.roa (raw, json)
Hash identifier: aT7Fa8O0bNSGiXIS7OGNQ9ip4C4VsR3iaI+ebjkTWfc=
Subject key identifier: 8E:58:02:A9:92:08:49:32:33:0C:72:5D:79:2B:77:1C:03:BB:21:E5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 184F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jlgCqZIISTIzDHJdeSt3HAO7IeU.roa
Signing time: Mon 10 Feb 2025 14:07:48 +0000
ROA not before: Mon 10 Feb 2025 14:07:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 106.105.0.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6223 (0x184f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8E5802A992084932330C725D792B771C03BB21E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:58:c1:6d:19:83:1d:55:d0:b8:35:0f:a2:c3:
0d:11:29:ca:1e:4c:2a:6d:26:16:1b:24:e5:e9:99:
43:02:bc:83:0e:1d:96:1b:87:32:e7:ab:c4:c3:04:
15:51:f7:65:b0:37:7d:57:c0:00:60:d8:8d:de:75:
6e:c7:1b:cd:c3:3b:6c:ac:7c:c9:d2:5f:09:78:fe:
20:c5:e0:4a:61:a8:c7:3b:3d:11:2c:b8:36:75:10:
e7:50:ee:1f:bb:f9:03:17:74:1d:be:0c:56:1d:bc:
45:61:10:86:b9:af:30:12:25:7d:f3:c6:09:55:48:
f3:c8:ce:4e:8f:d8:93:c0:3c:50:7a:72:3c:a2:1b:
78:d7:c8:99:ed:c1:fc:90:cb:48:9f:d6:e3:d2:c0:
4d:41:0f:ac:00:86:03:87:37:31:21:1c:7c:20:61:
43:85:2f:c1:bd:2e:f9:43:ce:7c:cc:51:ce:a7:a6:
76:f9:a9:dc:19:1f:27:11:41:91:5f:3a:97:2a:21:
80:e6:2d:47:e0:ac:82:df:ba:80:b9:9b:92:90:83:
24:2f:55:4e:e5:22:fd:ee:4f:49:db:a2:a3:51:d0:
3d:f3:ac:18:33:ef:61:7e:c4:cd:44:a6:66:21:d2:
77:cd:df:13:a8:4f:3f:fa:c9:b0:87:e6:c4:b2:fa:
83:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:58:02:A9:92:08:49:32:33:0C:72:5D:79:2B:77:1C:03:BB:21:E5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jlgCqZIISTIzDHJdeSt3HAO7IeU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.0.0/20
Signature Algorithm: sha256WithRSAEncryption
09:95:a8:48:1f:b0:2d:f0:3c:ce:7b:56:6e:f8:52:0e:c1:2a:
cd:c0:59:39:a2:e5:18:19:36:79:48:3f:26:3b:4b:05:4c:95:
01:85:93:ec:a3:24:97:2a:c5:12:db:f6:73:03:5c:3f:5b:0a:
99:a6:22:f5:1f:5d:cc:e8:6f:c0:94:69:d2:8b:da:13:20:97:
99:b8:f1:e3:0e:09:c9:6d:8b:04:fb:d7:e4:86:d9:19:a0:6d:
a3:46:40:50:48:60:82:3c:80:e1:d7:2f:90:81:b9:cf:af:f3:
d8:25:e1:21:e6:0b:ed:3c:24:d0:63:9e:cc:c2:a5:23:40:ae:
fe:2e:59:41:06:f3:14:81:d6:cc:78:f0:0a:b4:59:38:07:57:
7f:06:0a:70:af:a8:73:3c:ae:1d:9a:7c:98:aa:b7:bc:95:23:
ad:e5:0e:93:d2:fe:55:f7:c3:ae:b2:f9:57:24:82:c1:01:77:
4e:6d:c9:ab:7b:b5:0f:54:ec:11:7b:87:0d:b5:52:9f:1d:05:
e3:a5:01:a5:07:49:dd:31:74:d4:b0:74:34:3e:49:a8:1f:5e:
6d:7a:e0:d1:48:be:e0:48:7e:ec:b4:6d:d2:72:b7:a9:43:ff:
40:93:23:20:5f:f0:61:d2:c5:28:86:6f:a1:0e:7a:69:b0:40:
b7:65:09:6c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICGE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFNTgwMkE5OTIwODQ5
MzIzMzBDNzI1RDc5MkI3NzFDMDNCQjIxRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdWMFtGYMdVdC4NQ+iww0RKcoeTCptJhYbJOXpmUMCvIMOHZYb
hzLnq8TDBBVR92WwN31XwABg2I3edW7HG83DO2ysfMnSXwl4/iDF4EphqMc7PREs
uDZ1EOdQ7h+7+QMXdB2+DFYdvEVhEIa5rzASJX3zxglVSPPIzk6P2JPAPFB6cjyi
G3jXyJntwfyQy0if1uPSwE1BD6wAhgOHNzEhHHwgYUOFL8G9LvlDznzMUc6npnb5
qdwZHycRQZFfOpcqIYDmLUfgrILfuoC5m5KQgyQvVU7lIv3uT0nboqNR0D3zrBgz
72F+xM1EpmYh0nfN3xOoTz/6ybCH5sSy+oM1AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUjlgCqZIISTIzDHJdeSt3HAO7IeUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvamxnQ3FaSUlTVEl6REhKZGVTdDNI
QU83SWVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGppADAN
BgkqhkiG9w0BAQsFAAOCAQEACZWoSB+wLfA8zntWbvhSDsEqzcBZOaLlGBk2eUg/
JjtLBUyVAYWT7KMklyrFEtv2cwNcP1sKmaYi9R9dzOhvwJRp0ovaEyCXmbjx4w4J
yW2LBPvX5IbZGaBto0ZAUEhggjyA4dcvkIG5z6/z2CXhIeYL7Twk0GOezMKlI0Cu
/i5ZQQbzFIHWzHjwCrRZOAdXfwYKcK+oczyuHZp8mKq3vJUjreUOk9L+VffDrrL5
VySCwQF3Tm3Jq3u1D1TsEXuHDbVSnx0F46UBpQdJ3TF01LB0ND5JqB9ebXrg0Ui+
4Eh+7LRt0nK3qUP/QJMjIF/wYdLFKIZvoQ56abBAt2UJbA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:20 2025 by rpki-client