Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/wTqVopfg8AnO1oSUfL4-3pkqwOQ.roa
File: wTqVopfg8AnO1oSUfL4-3pkqwOQ.roa (raw, json)
Hash identifier: lLw1XFlrUU8fptV8+C/QfQpNdbEjGKvFJh2xrI+nu+c=
Subject key identifier: C1:3A:95:A2:97:E0:F0:09:CE:D6:84:94:7C:BE:3E:DE:99:2A:C0:E4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1835
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wTqVopfg8AnO1oSUfL4-3pkqwOQ.roa
Signing time: Mon 10 Feb 2025 14:07:41 +0000
ROA not before: Mon 10 Feb 2025 14:07:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6197 (0x1835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C13A95A297E0F009CED684947CBE3EDE992AC0E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d3:05:18:d6:d1:8a:29:a0:21:74:08:ed:0d:
b7:2e:62:ca:b4:9b:5a:b6:b4:c6:ef:2b:c7:f5:57:
2e:f7:01:72:60:88:9e:86:cd:d5:44:2b:7b:98:d5:
f6:5f:6f:6d:c8:82:30:7d:ac:41:7e:1f:da:1e:50:
d6:4d:6f:ad:31:3c:5a:b9:ba:86:2f:d0:14:dd:4c:
db:b5:6e:d2:8e:12:6b:ce:6c:d3:1c:6e:9f:2f:9d:
fc:98:67:74:ca:2d:7d:29:4a:fb:61:96:cf:55:f8:
57:2f:fc:bf:64:c7:e7:4a:da:0f:b0:8b:22:38:e0:
7e:48:8d:a5:19:7b:78:fc:5b:08:43:df:5a:0e:ff:
01:a8:e5:36:39:1d:e1:a2:eb:5a:62:61:76:0c:1c:
e7:a8:52:c7:0b:72:4d:60:09:fb:dc:3f:a2:8b:c0:
31:1f:85:de:9f:2d:e0:74:ca:67:1a:13:e8:eb:be:
8e:44:e8:40:e7:0f:01:c4:20:b2:ae:d3:fb:49:43:
9a:1d:74:0a:bc:91:df:62:b2:59:ad:8b:54:d9:d6:
15:85:80:ea:3f:49:82:4a:c6:68:8f:70:e1:a5:74:
51:9f:de:71:e2:30:64:41:d1:f7:72:41:52:5c:c6:
5a:7c:7a:de:04:21:de:ff:8a:5a:7a:e3:5f:df:cb:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3A:95:A2:97:E0:F0:09:CE:D6:84:94:7C:BE:3E:DE:99:2A:C0:E4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wTqVopfg8AnO1oSUfL4-3pkqwOQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1f:9b:74:ed:d2:b7:43:c6:a4:39:be:76:c5:4a:4f:5a:cb:26:
24:b0:f3:4e:ec:75:d8:81:a9:eb:20:22:fc:50:07:57:6f:30:
5e:f1:89:de:0e:5d:0f:99:49:a9:80:87:2a:1c:b1:21:61:59:
e2:95:61:a8:11:ed:83:2e:bb:ba:9c:e6:7d:15:95:cc:bd:ce:
63:d4:ce:62:4a:12:b3:ec:af:03:0a:ef:81:a2:2f:1f:55:de:
33:7d:0c:b7:1e:35:e8:63:f9:51:ed:0c:04:2b:27:d3:e1:fb:
18:44:bd:9e:64:23:83:ea:6f:c6:db:bd:c5:40:02:4f:bf:af:
02:1f:2f:07:53:79:52:23:a1:8b:1d:c8:05:a2:47:2d:18:1e:
ba:6f:9a:97:e6:d4:e5:01:6a:8e:b1:db:07:8a:2d:3d:a7:c6:
7e:68:88:c8:94:0a:49:d1:2b:57:42:5f:2d:b3:05:17:1a:75:
5d:9f:d4:dd:5d:3c:c5:34:95:9e:88:fc:80:69:50:1f:52:fc:
8e:7f:79:a2:be:c1:c6:19:26:37:a5:9b:7e:95:92:ec:ef:e5:
64:e0:f3:9e:1e:15:97:38:92:ed:23:ff:05:e3:8c:9a:11:81:
32:0a:19:98:a7:64:a8:1e:4c:8f:f3:8d:7b:c9:1d:fa:8b:2e:
3c:3d:cb:54
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICGDUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxM0E5NUEyOTdFMEYw
MDlDRUQ2ODQ5NDdDQkUzRURFOTkyQUMwRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDh0wUY1tGKKaAhdAjtDbcuYsq0m1q2tMbvK8f1Vy73AXJgiJ6G
zdVEK3uY1fZfb23IgjB9rEF+H9oeUNZNb60xPFq5uoYv0BTdTNu1btKOEmvObNMc
bp8vnfyYZ3TKLX0pSvthls9V+Fcv/L9kx+dK2g+wiyI44H5IjaUZe3j8WwhD31oO
/wGo5TY5HeGi61piYXYMHOeoUscLck1gCfvcP6KLwDEfhd6fLeB0ymcaE+jrvo5E
6EDnDwHEILKu0/tJQ5oddAq8kd9islmti1TZ1hWFgOo/SYJKxmiPcOGldFGf3nHi
MGRB0fdyQVJcxlp8et4EId7/ilp641/fy4+/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUwTqVopfg8AnO1oSUfL4+3pkqwOQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvd1RxVm9wZmc4QW5PMW9TVWZMNC0z
cGtxd09RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3szgDAN
BgkqhkiG9w0BAQsFAAOCAQEAH5t07dK3Q8akOb52xUpPWssmJLDzTux12IGp6yAi
/FAHV28wXvGJ3g5dD5lJqYCHKhyxIWFZ4pVhqBHtgy67upzmfRWVzL3OY9TOYkoS
s+yvAwrvgaIvH1XeM30Mtx416GP5Ue0MBCsn0+H7GES9nmQjg+pvxtu9xUACT7+v
Ah8vB1N5UiOhix3IBaJHLRgeum+al+bU5QFqjrHbB4otPafGfmiIyJQKSdErV0Jf
LbMFFxp1XZ/U3V08xTSVnoj8gGlQH1L8jn95or7BxhkmN6WbfpWS7O/lZODznh4V
lziS7SP/BeOMmhGBMgoZmKdkqB5Mj/ONe8kd+osuPD3LVA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:34 2025 by rpki-client