Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lTNV7Bkqng1qASMbz6GrfDLmuvM.roa
File: lTNV7Bkqng1qASMbz6GrfDLmuvM.roa (raw, json)
Hash identifier: Ojwuv7ANY25zK5Z01TRCK/qfEEMXNGZ3xZjFezbDA2U=
Subject key identifier: 95:33:55:EC:19:2A:9E:0D:6A:01:23:1B:CF:A1:AB:7C:32:E6:BA:F3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1810
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lTNV7Bkqng1qASMbz6GrfDLmuvM.roa
Signing time: Mon 10 Feb 2025 14:07:33 +0000
ROA not before: Mon 10 Feb 2025 14:07:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6160 (0x1810)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:33 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=953355EC192A9E0D6A01231BCFA1AB7C32E6BAF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:11:90:45:0f:88:1c:38:a0:9d:10:ec:80:8f:
9a:a2:cd:97:4d:4a:e8:00:dc:7c:68:a6:d6:ad:a0:
63:01:1e:fd:98:91:62:da:27:c3:21:34:23:30:95:
3b:4e:f8:b0:f1:c7:1a:6f:16:06:d8:ee:fe:94:5b:
39:d4:a4:a1:ff:7f:f7:43:b1:5f:54:ec:07:73:4b:
3b:ad:e3:76:1d:8e:d8:e3:b9:5e:c3:ba:2e:da:51:
0d:ad:ad:5c:ae:87:c0:9a:59:4c:27:77:34:b2:88:
c1:bb:0a:ac:53:f9:18:10:63:99:57:ed:02:c8:cb:
0f:6d:21:cc:d8:f7:0f:b2:b9:87:a5:3a:cc:b2:1b:
7c:ca:8a:53:58:84:4b:b9:1c:e7:db:e7:62:41:fb:
c2:cc:45:56:e8:32:2e:2b:b1:45:78:2a:a4:86:04:
88:fe:c9:db:cb:64:d1:0b:01:d8:54:ec:a9:43:6b:
40:aa:c2:01:f6:42:2a:eb:23:dd:f1:d6:52:ff:12:
2d:b1:1e:60:f9:e8:e5:07:27:0e:dc:b8:14:41:aa:
14:c1:fd:b2:b8:dd:23:d5:5c:a7:4b:23:42:7d:83:
86:af:01:2e:3e:58:6e:23:bc:88:16:a8:2f:32:1d:
b4:27:df:6d:7f:15:20:27:6d:5f:43:87:12:95:74:
e9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:33:55:EC:19:2A:9E:0D:6A:01:23:1B:CF:A1:AB:7C:32:E6:BA:F3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lTNV7Bkqng1qASMbz6GrfDLmuvM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7d:f4:6c:83:66:f1:ee:26:04:61:fb:e0:70:54:c8:b8:ea:a1:
d6:7b:52:39:70:f2:83:7e:54:b9:7d:d7:cc:1c:aa:89:c1:6d:
8b:0f:1e:ea:4c:80:fd:cb:dc:9a:53:0f:83:62:cb:93:3b:b8:
d6:d8:41:13:54:31:c5:fe:1c:db:05:8e:3d:77:9f:84:82:4b:
35:56:4e:22:b8:2d:e2:25:c5:60:b0:fa:e1:ec:96:41:0b:c8:
52:6b:26:d5:74:ef:c7:97:b1:b1:dc:e6:48:69:60:f5:d0:ed:
a1:c2:59:64:e7:32:6a:5e:18:80:39:37:08:79:b2:41:c4:2b:
d3:1b:d7:af:f1:c8:65:64:23:fc:d2:9b:ba:07:34:cf:ce:fa:
65:36:e8:27:ba:9e:f2:d3:ea:00:2e:cc:26:fc:87:de:01:74:
7a:3e:c6:7a:d4:b2:e5:f8:6a:66:ee:bc:ae:f7:5f:19:84:21:
cf:f0:50:55:81:d6:47:43:49:15:03:d2:c8:bf:0b:f0:7e:98:
e5:90:ca:e9:24:ea:70:a9:97:6d:24:bc:a5:b3:2d:88:30:80:
52:f9:a8:9e:2b:3c:25:d0:2f:bd:23:15:90:e5:06:d9:ed:91:
7c:c5:81:47:34:d7:e0:48:38:6b:da:6b:99:f4:dc:13:68:b8:
a6:28:4b:fa
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICGBAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1MzM1NUVDMTkyQTlF
MEQ2QTAxMjMxQkNGQTFBQjdDMzJFNkJBRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1EZBFD4gcOKCdEOyAj5qizZdNSugA3HxoptatoGMBHv2YkWLa
J8MhNCMwlTtO+LDxxxpvFgbY7v6UWznUpKH/f/dDsV9U7AdzSzut43YdjtjjuV7D
ui7aUQ2trVyuh8CaWUwndzSyiMG7CqxT+RgQY5lX7QLIyw9tIczY9w+yuYelOsyy
G3zKilNYhEu5HOfb52JB+8LMRVboMi4rsUV4KqSGBIj+ydvLZNELAdhU7KlDa0Cq
wgH2QirrI93x1lL/Ei2xHmD56OUHJw7cuBRBqhTB/bK43SPVXKdLI0J9g4avAS4+
WG4jvIgWqC8yHbQn321/FSAnbV9DhxKVdOkrAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUlTNV7Bkqng1qASMbz6GrfDLmuvMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbFROVjdCa3FuZzFxQVNNYno2R3Jm
RExtdXZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANrTMA0G
CSqGSIb3DQEBCwUAA4IBAQB99GyDZvHuJgRh++BwVMi46qHWe1I5cPKDflS5fdfM
HKqJwW2LDx7qTID9y9yaUw+DYsuTO7jW2EETVDHF/hzbBY49d5+Egks1Vk4iuC3i
JcVgsPrh7JZBC8hSaybVdO/Hl7Gx3OZIaWD10O2hwllk5zJqXhiAOTcIebJBxCvT
G9ev8chlZCP80pu6BzTPzvplNugnup7y0+oALswm/IfeAXR6PsZ61LLl+Gpm7ryu
918ZhCHP8FBVgdZHQ0kVA9LIvwvwfpjlkMrpJOpwqZdtJLylsy2IMIBS+aieKzwl
0C+9IxWQ5QbZ7ZF8xYFHNNfgSDhr2muZ9NwTaLimKEv6
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:29 2025 by rpki-client