Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tq8zlr28V5x7SyB5GRPxCPTfXcc.roa
File: tq8zlr28V5x7SyB5GRPxCPTfXcc.roa (raw, json)
Hash identifier: ysZbwpzeGQu36jAwC6Kd0PIHu/H4BlPNAtIbwsAJOHk=
Subject key identifier: B6:AF:33:96:BD:BC:57:9C:7B:4B:20:79:19:13:F1:08:F4:DF:5D:C7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17BD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tq8zlr28V5x7SyB5GRPxCPTfXcc.roa
Signing time: Mon 10 Feb 2025 14:07:12 +0000
ROA not before: Mon 10 Feb 2025 14:07:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 210.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6077 (0x17bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B6AF3396BDBC579C7B4B20791913F108F4DF5DC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:87:72:e9:42:e1:f0:63:9b:47:dc:0f:c5:
81:14:b3:61:97:98:90:a8:f1:4e:38:16:8d:2a:76:
9e:bd:9e:6f:bf:50:fd:b4:a7:1d:1c:29:8c:4f:93:
90:05:ff:87:50:a9:57:53:60:97:06:77:5c:de:7b:
24:86:fc:19:a8:a4:b5:39:a1:d4:70:c1:a2:55:f3:
d8:40:f8:d3:26:2a:a0:2d:d1:dd:3a:70:07:67:f2:
a3:86:8f:1a:e0:97:0f:fd:4e:7e:1f:17:41:e8:b4:
ac:d2:b4:4a:d0:15:29:13:15:df:81:0f:3f:bd:f2:
38:61:e7:98:70:75:f7:92:6d:89:1e:e0:ae:74:8e:
60:b0:6b:ca:89:74:da:34:1c:00:5b:32:e7:fb:a3:
01:69:93:90:02:98:59:ed:25:1b:20:06:31:14:ea:
3c:b6:42:67:e1:1c:5d:ff:31:f7:ab:a7:6b:65:cf:
b9:fa:d3:84:24:cb:f6:19:27:a0:ad:25:e2:c9:e1:
1a:5d:a5:24:72:b2:39:a8:72:85:e5:77:6e:68:0c:
f7:de:6c:20:57:48:08:2c:22:fa:44:17:84:55:6a:
26:ef:66:28:7f:f6:68:c7:cc:ff:74:4a:2f:58:b0:
34:c1:f9:46:d7:f3:d8:ef:23:a1:9a:0d:d9:a3:fa:
84:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:AF:33:96:BD:BC:57:9C:7B:4B:20:79:19:13:F1:08:F4:DF:5D:C7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tq8zlr28V5x7SyB5GRPxCPTfXcc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:df:9d:61:8d:fa:83:06:1c:ca:0c:51:67:ae:1f:48:9e:64:
1f:a5:48:02:cc:23:3e:50:46:05:d3:68:e2:37:05:c2:9b:0d:
a9:a3:1e:30:ea:da:96:2e:c3:40:76:19:4c:5b:db:31:31:a0:
8a:52:ed:22:3a:27:91:20:80:3e:c2:fd:11:52:cc:77:c4:f4:
cc:a0:a7:06:dd:a2:4a:8b:31:9f:26:ef:18:61:a9:7f:d5:1d:
9b:33:b4:76:1b:44:96:dd:68:51:60:51:81:5f:b5:c5:48:28:
81:06:2b:a8:49:50:38:24:ce:10:52:88:27:a3:fc:08:a8:fe:
ae:04:73:97:81:b9:a9:a9:40:8c:b7:1e:10:29:33:60:bd:6e:
01:f2:ad:29:f0:18:da:17:c6:f8:ef:5d:24:c9:94:0f:00:02:
5e:5f:55:8a:c0:c6:ef:d4:77:96:11:59:e2:77:ba:41:bf:af:
04:74:14:92:ae:04:0a:ba:a2:a5:41:13:6e:28:1e:ed:b7:6f:
9f:6d:0f:3a:35:7e:3c:ed:c8:52:67:c5:6d:98:eb:d7:08:0d:
31:db:a2:d5:90:2e:01:b3:8b:00:9a:d5:de:41:ce:eb:99:67:
eb:4d:a4:69:61:48:97:20:41:05:11:13:c8:8f:95:67:e9:23:
91:60:98:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:04:09 2025 by rpki-client