Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qjwUc_1okWinMnjWsqShOXg1IdU.roa
File: qjwUc_1okWinMnjWsqShOXg1IdU.roa (raw, json)
Hash identifier: 6yIJtVLNcTyURXat2A4xc/A65lW+/9f/Oez64b2igqs=
Subject key identifier: AA:3C:14:73:FD:68:91:68:A7:32:78:D6:B2:A4:A1:39:78:35:21:D5
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E1E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qjwUc_1okWinMnjWsqShOXg1IdU.roa
Signing time: Wed 29 Sep 2021 02:43:13 +0000
ROA not before: Wed 29 Sep 2021 02:43:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 203.70.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3614 (0xe1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AA3C1473FD689168A73278D6B2A4A139783521D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:ae:9f:39:0e:46:cc:8f:12:85:fd:1c:9f:
a6:46:57:29:7c:3d:37:98:87:9c:e9:e3:b6:98:17:
26:4c:91:0b:72:f5:2e:7c:3d:49:08:de:48:96:1c:
42:cd:08:e5:6d:76:7a:3c:63:dd:44:0e:d8:86:17:
92:e6:b6:75:8b:a8:df:4f:d0:bb:75:43:55:9b:57:
3c:2b:52:21:47:44:43:2d:c4:81:81:87:a0:5b:6f:
5d:69:6f:ba:da:88:b5:74:e0:c1:ad:67:1e:9a:3a:
70:6b:8d:ed:2a:62:36:56:37:7f:77:0d:e9:a0:60:
dd:9d:56:bd:f6:ed:1c:20:15:3a:5c:cc:34:b9:02:
6a:bf:54:fa:06:96:ad:b7:96:30:30:74:28:33:6e:
84:1c:f2:d9:0c:9c:4b:2d:b7:0c:2e:09:85:e6:f4:
6a:f8:1f:f4:24:cf:f7:98:dc:d4:70:55:86:a4:8b:
53:a7:3a:a0:31:89:94:64:d9:e5:a4:a6:ab:15:40:
7d:66:a7:78:bd:40:ba:ca:07:26:41:41:c3:59:94:
1d:a4:44:1e:42:6b:5e:b2:63:08:4f:cb:56:d5:84:
e9:af:b6:10:c7:31:22:fe:1b:a0:b5:01:2a:f7:ed:
40:2f:55:dd:81:b0:21:fe:ef:1d:6e:3c:cb:d6:3e:
b1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3C:14:73:FD:68:91:68:A7:32:78:D6:B2:A4:A1:39:78:35:21:D5
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qjwUc_1okWinMnjWsqShOXg1IdU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:86:52:97:28:d7:72:b0:be:d0:e5:74:72:6a:eb:7a:03:8b:
9e:07:84:51:d2:7b:4c:11:e5:f1:4f:bf:fa:4c:42:6e:cb:7b:
97:1c:14:c7:85:20:5a:40:7a:e6:52:aa:f5:ac:9e:72:79:0f:
51:62:c6:0f:a4:4e:39:56:fe:81:79:33:16:b4:f2:fb:54:6d:
a9:da:c3:b8:bf:58:bc:7f:01:1b:20:6d:cb:33:d6:3a:78:6a:
5b:8d:37:98:ab:d6:3e:75:76:c5:ce:17:4c:b5:14:09:10:ae:
74:43:c9:f1:be:a6:dd:28:ee:4b:50:76:e7:53:32:51:02:87:
88:c0:a5:f5:96:f2:22:8f:33:30:c5:6c:8d:66:c4:b8:b5:27:
2e:3f:fe:93:69:bf:9d:35:5a:55:d0:3b:66:46:f5:90:aa:c7:
f1:33:c9:fa:33:80:43:1a:47:98:15:51:58:25:a0:4d:8a:70:
dd:27:12:9c:63:b0:40:15:f9:0e:cc:67:37:5b:3d:cb:a0:4a:
af:25:c6:da:12:ae:c0:e1:cb:ca:09:49:c5:c4:d9:9a:ff:4c:
93:73:e8:ca:ba:a7:db:40:92:c3:20:f2:34:dd:06:da:e8:61:
fd:21:6b:ed:8a:b3:b5:e9:cc:db:a3:f9:c8:eb:6c:d2:f4:fc:
e9:a0:7b:be
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMTA5Mjkw
MjQzMTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFBM0MxNDczRkQ2ODkx
NjhBNzMyNzhENkIyQTRBMTM5NzgzNTIxRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCz4K6fOQ5GzI8Shf0cn6ZGVyl8PTeYh5zp47aYFyZMkQty9S58
PUkI3kiWHELNCOVtdno8Y91EDtiGF5LmtnWLqN9P0Lt1Q1WbVzwrUiFHREMtxIGB
h6Bbb11pb7raiLV04MGtZx6aOnBrje0qYjZWN393DemgYN2dVr327RwgFTpczDS5
Amq/VPoGlq23ljAwdCgzboQc8tkMnEsttwwuCYXm9Gr4H/Qkz/eY3NRwVYaki1On
OqAxiZRk2eWkpqsVQH1mp3i9QLrKByZBQcNZlB2kRB5Ca16yYwhPy1bVhOmvthDH
MSL+G6C1ASr37UAvVd2BsCH+7x1uPMvWPrENAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUqjwUc/1okWinMnjWsqShOXg1IdUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcWp3VWNfMW9rV2luTW5qV3NxU2hP
WGcxSWRVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtGMA0G
CSqGSIb3DQEBCwUAA4IBAQAAhlKXKNdysL7Q5XRyaut6A4ueB4RR0ntMEeXxT7/6
TEJuy3uXHBTHhSBaQHrmUqr1rJ5yeQ9RYsYPpE45Vv6BeTMWtPL7VG2p2sO4v1i8
fwEbIG3LM9Y6eGpbjTeYq9Y+dXbFzhdMtRQJEK50Q8nxvqbdKO5LUHbnUzJRAoeI
wKX1lvIijzMwxWyNZsS4tScuP/6Tab+dNVpV0DtmRvWQqsfxM8n6M4BDGkeYFVFY
JaBNinDdJxKcY7BAFfkOzGc3Wz3LoEqvJcbaEq7A4cvKCUnFxNma/0yTc+jKuqfb
QJLDIPI03Qba6GH9IWvtirO16czbo/nI62zS9PzpoHu+
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:27:54 2025 by rpki-client