Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kM_EVFgaaE4NqmaeGWdpOgnrIeQ.roa
File: kM_EVFgaaE4NqmaeGWdpOgnrIeQ.roa (raw, json)
Hash identifier: 3XvDgxbH7H0zOq9/e64r5LawwIV6JZ8xqVE4ohGDvG0=
Subject key identifier: 90:CF:C4:54:58:1A:68:4E:0D:AA:66:9E:19:67:69:3A:09:EB:21:E4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E18
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kM_EVFgaaE4NqmaeGWdpOgnrIeQ.roa
Signing time: Wed 29 Sep 2021 02:43:11 +0000
ROA not before: Wed 29 Sep 2021 02:43:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3608 (0xe18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=90CFC454581A684E0DAA669E1967693A09EB21E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f5:2b:4a:48:8d:36:90:00:42:d5:83:53:62:
5f:b1:b9:fc:4d:0c:d5:f1:cf:72:b7:b9:9a:09:52:
b2:13:e4:ab:2f:48:46:d1:ec:04:b9:ff:9f:44:2a:
44:a9:95:e2:39:8f:18:59:74:5e:c5:ff:b9:bc:cf:
b2:f7:03:c7:cd:7d:fa:c2:50:c2:af:7e:e8:9d:43:
8a:e8:32:fb:50:5e:a1:ae:eb:08:d4:6c:aa:6c:ba:
c1:ec:a0:5a:e3:e1:cd:08:23:e4:fc:d6:3f:b1:78:
f7:c2:1a:f5:1d:da:18:cc:00:03:67:ca:21:4e:1f:
47:54:c5:d9:79:9e:2c:ad:e0:89:ac:6b:c8:5d:f6:
50:3b:cd:81:15:95:ff:92:c7:df:48:85:07:ca:de:
2b:e7:86:3c:35:9f:fb:ff:be:fc:2e:46:2e:96:4c:
73:92:46:26:2b:22:8d:30:8e:77:f4:ba:19:48:94:
43:57:1c:86:c9:1d:5f:59:91:cb:8e:67:8c:c5:da:
48:be:ad:ab:2e:e6:03:4c:26:03:36:5a:3b:d7:22:
fd:a3:4a:07:5e:7e:c3:57:cc:51:80:51:40:ae:6f:
8f:dc:ab:48:bb:0f:47:f4:24:26:31:85:c6:b6:d7:
ee:43:16:d3:1d:8e:1d:8b:ed:3e:22:99:82:98:c8:
d7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:CF:C4:54:58:1A:68:4E:0D:AA:66:9E:19:67:69:3A:09:EB:21:E4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kM_EVFgaaE4NqmaeGWdpOgnrIeQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
92:1f:78:ff:51:1c:b1:60:73:fb:54:54:69:68:96:b0:20:40:
81:9c:04:c4:ca:1e:70:f8:64:f3:70:b5:08:d0:cb:e4:97:d7:
ed:ce:6e:e9:c4:55:cc:1e:e1:01:97:6f:1d:3d:66:9c:c6:46:
df:48:db:eb:fd:99:4f:20:20:bd:19:4b:09:80:d3:8f:6d:e6:
3b:45:4e:2c:7a:30:fa:c1:14:82:1e:07:2b:8e:57:33:30:4b:
00:c8:6b:ee:f2:14:69:0d:6a:cb:21:c8:c3:7a:2f:c2:a0:9e:
6d:b0:5e:81:a5:82:28:02:19:4e:9d:a0:c2:1b:c3:26:4b:f0:
10:56:14:4c:15:de:d6:a6:af:e9:35:94:f5:94:8b:72:c5:dd:
5d:88:d8:ca:d6:79:fe:99:e3:4e:8f:0f:03:af:d2:f2:01:12:
0a:af:95:95:ba:06:92:e5:bd:77:01:da:a0:fd:a8:1b:80:53:
7f:64:80:9c:1d:8a:08:32:27:9b:91:54:71:49:ab:1c:55:03:
d1:a2:8d:04:43:61:75:86:ae:22:a0:a8:41:9d:98:62:31:d3:
2a:5d:9c:7f:9b:e9:7a:3c:a5:be:eb:26:4e:7e:73:a5:83:6e:
5c:91:ef:11:d6:da:29:8b:d7:bc:de:1a:17:7a:bf:3b:db:42:
d3:13:4a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:16 2025 by rpki-client