Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qpcx2_JFeqeh2WzCTvFmnkkxn4s.roa
File: qpcx2_JFeqeh2WzCTvFmnkkxn4s.roa (raw, json)
Hash identifier: SybcI+T0TVpTLZgzu1ncwrjdZte9VUldWnjjzIy5F7I=
Subject key identifier: AA:97:31:DB:F2:45:7A:A7:A1:D9:6C:C2:4E:F1:66:9E:49:31:9F:8B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0C29
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qpcx2_JFeqeh2WzCTvFmnkkxn4s.roa
Signing time: Sun 07 Feb 2021 07:05:49 +0000
ROA not before: Sun 07 Feb 2021 07:05:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18049
IP address blocks: 106.105.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3113 (0xc29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 07:05:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA9731DBF2457AA7A1D96CC24EF1669E49319F8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:18:17:27:41:f3:22:9a:87:00:f2:46:db:2c:
2e:8a:c6:b0:6f:9d:1d:88:81:99:fd:3c:7d:9c:75:
5d:c5:56:96:99:e0:55:dd:5b:e9:e0:b2:e0:0e:d6:
6e:28:cc:4c:49:77:8b:6c:8b:19:bb:1e:a8:d7:b7:
84:ec:de:01:86:07:8f:d8:42:88:ad:10:01:d2:fa:
c9:f5:3a:0b:9c:d5:ba:87:88:a2:a2:c1:5e:9a:d6:
f5:86:0f:7b:c0:e3:5b:59:e2:05:29:32:78:af:df:
38:39:77:7b:ae:74:54:2f:82:4c:2a:95:a6:83:29:
a6:f9:4c:9c:bf:62:c0:9e:ae:01:04:2e:9e:26:d2:
2a:de:83:67:12:70:bf:c6:14:2e:50:97:28:4f:f4:
2d:0e:9d:83:c8:79:29:51:d0:06:04:74:38:4a:f5:
df:2e:c6:10:8d:5d:53:c6:b1:0e:c8:38:21:30:f2:
df:36:96:2c:af:3c:5c:a8:8d:63:2c:20:8c:da:61:
80:8d:dc:c7:39:a4:53:6a:fa:84:c4:14:72:cb:47:
d9:a1:fa:9f:64:b7:63:a5:51:0f:db:4b:e2:1a:e9:
a6:b8:ca:7f:27:51:f8:4c:60:47:00:ac:c8:e3:a8:
68:13:8b:a2:f0:62:34:b9:ed:2b:ca:48:95:f5:11:
07:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:97:31:DB:F2:45:7A:A7:A1:D9:6C:C2:4E:F1:66:9E:49:31:9F:8B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qpcx2_JFeqeh2WzCTvFmnkkxn4s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.164.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:fe:02:24:c7:3c:1b:04:cb:f9:d9:22:70:38:4b:32:1d:d2:
ce:5e:e0:05:49:9e:ee:8c:ef:84:07:82:e1:03:b3:0b:29:53:
02:bd:02:d3:79:c5:c5:ea:39:65:43:17:e5:94:51:5f:d0:cb:
31:c9:07:52:f5:54:fe:62:9a:a5:44:05:f6:5e:ed:71:0d:fe:
4e:ca:f7:d5:78:e1:42:a4:75:3d:80:8b:98:5e:06:44:06:4d:
e2:76:b8:41:55:de:3b:bb:35:0b:0c:cb:7c:45:1d:63:f2:51:
4d:dd:9d:0c:92:f7:f1:0a:49:23:1d:db:1b:e6:b1:60:a8:35:
0f:31:5e:42:0d:55:ce:a8:a2:30:42:11:50:84:47:a1:b6:c0:
5b:a0:6a:ff:a7:92:d4:d2:71:73:82:a0:ac:23:56:e6:21:94:
43:d4:81:8b:16:bc:28:d5:4b:f0:f5:84:6a:2d:3a:c5:f4:8a:
2b:92:c1:26:74:47:18:7f:26:17:1e:88:7f:d2:81:be:83:bb:
bb:a1:fd:78:5d:32:b9:55:36:c0:c0:23:16:3a:7d:25:a8:5a:
e2:7a:9e:f4:04:ee:9a:b3:9d:27:0c:54:31:86:75:f9:91:a1:
07:da:6b:8e:da:0d:81:c8:f4:70:e0:5f:10:96:e2:77:0d:42:
ac:80:be:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:14:28 2025 by rpki-client