Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pu-5mek8UJdq0mfS3eoq3K-dp5w.roa
File: pu-5mek8UJdq0mfS3eoq3K-dp5w.roa (raw, json)
Hash identifier: n/RUoIK6T/997Y+j3XQw0hSCuol90DC4+aX3FEFlpIA=
Subject key identifier: A6:EF:B9:99:E9:3C:50:97:6A:D2:67:D2:DD:EA:2A:DC:AF:9D:A7:9C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17E5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pu-5mek8UJdq0mfS3eoq3K-dp5w.roa
Signing time: Mon 10 Feb 2025 14:07:23 +0000
ROA not before: Mon 10 Feb 2025 14:07:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 122.147.16.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6117 (0x17e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A6EFB999E93C50976AD267D2DDEA2ADCAF9DA79C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f8:d7:20:99:83:79:fb:ff:ab:67:2b:e8:78:
52:02:83:41:cc:59:aa:ff:67:cf:42:88:c2:82:d3:
6c:3c:fa:90:7d:4e:fb:ee:fb:00:55:ed:d3:4d:5f:
35:3a:84:a1:38:c8:44:a6:29:c8:d2:7e:23:71:78:
6d:c9:aa:af:ac:57:a7:33:f1:38:12:7e:39:98:5e:
b2:4e:95:9c:2d:9c:c5:1f:1b:46:18:f9:d8:ae:b2:
82:62:bd:95:c3:ef:0b:46:93:0a:20:93:0d:dd:86:
82:14:ee:71:07:65:d9:9b:29:80:4f:41:f3:b0:05:
9f:d3:a6:54:71:83:c5:1a:eb:8f:0d:4e:b4:96:3e:
17:7b:b2:64:d6:be:5f:1c:8f:95:9f:d2:18:ff:8a:
29:fd:a5:de:b5:30:c0:1d:c6:c8:1a:f1:3b:23:82:
80:5d:ea:4f:12:50:55:5f:a0:5d:1f:54:fa:d3:37:
30:65:f1:cf:06:40:cc:36:15:da:a1:03:0e:be:8c:
ee:ae:c7:cd:b2:80:84:95:52:c2:98:14:56:8e:83:
2d:ba:93:4e:2d:d6:a8:19:33:dc:07:1a:90:08:bd:
77:72:22:93:f7:b7:8d:5b:cc:33:74:0a:04:9a:d4:
37:d2:28:37:7e:93:6a:c1:5a:71:07:9e:f9:16:0f:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:EF:B9:99:E9:3C:50:97:6A:D2:67:D2:DD:EA:2A:DC:AF:9D:A7:9C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pu-5mek8UJdq0mfS3eoq3K-dp5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
49:b6:c1:06:a7:fc:47:38:f0:db:5f:6f:6c:ee:6d:cc:25:63:
55:ee:d5:ef:b0:6c:b8:a5:3d:e9:eb:58:8c:e8:b7:2d:80:15:
d4:d0:dd:84:ab:f5:cc:5c:60:c1:20:37:c3:32:93:d1:9b:19:
58:1e:b0:89:b2:59:b2:59:44:7b:db:20:38:7f:9d:eb:92:d8:
c0:e8:07:3a:df:f2:72:29:98:5f:af:5c:e5:e4:fc:c3:5d:dc:
5e:a8:0a:e3:aa:88:2c:4e:66:6c:46:c2:8b:fc:c8:5b:1a:ca:
22:3f:aa:03:06:66:f7:e2:e8:61:61:0b:14:f2:31:89:50:6c:
9b:84:10:a0:45:1b:fc:9a:6d:3d:45:c9:6d:74:a4:f2:12:52:
45:f7:17:ae:c2:5e:df:f8:27:9f:2b:e5:44:b3:8d:af:f7:0f:
d4:42:36:27:a1:ff:1b:63:b1:d7:f9:f9:cb:ef:d4:6f:2b:51:
39:16:05:49:c5:d3:f7:16:f4:fc:fb:ba:0b:33:18:25:0d:59:
6a:6f:f9:56:2b:84:d2:55:95:2c:71:8e:3c:0b:2d:32:0e:e9:
38:93:4c:ca:fe:a8:5d:2d:c6:91:64:7e:bf:65:6e:77:b0:7a:
5e:a1:01:60:99:76:d7:a6:7d:9d:d6:79:30:29:2e:dd:b2:5d:
79:db:a9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:19 2025 by rpki-client