Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/x4gJFIGscRuPt_FmdvL_sGus0nk.roa
File: x4gJFIGscRuPt_FmdvL_sGus0nk.roa (raw, json)
Hash identifier: R8G+Noa86q8Ht18yrsbWgEm0JuNYE0dQuBlBapmazog=
Subject key identifier: C7:88:09:14:81:AC:71:1B:8F:B7:F1:66:76:F2:FF:B0:6B:AC:D2:79
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 13E2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x4gJFIGscRuPt_FmdvL_sGus0nk.roa
Signing time: Fri 01 Sep 2023 09:25:33 +0000
ROA not before: Fri 01 Sep 2023 09:25:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9919
IP address blocks: 218.210.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5090 (0x13e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:25:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C788091481AC711B8FB7F16676F2FFB06BACD279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:26:3a:aa:af:63:b8:1b:9d:97:81:16:10:fa:
85:5f:33:04:02:82:70:fe:e6:cd:38:55:84:7d:ac:
a1:e3:48:f8:97:cb:3e:94:85:f5:f6:fb:7d:4c:41:
1d:2f:7e:39:7d:da:f8:a2:d9:49:91:70:23:32:05:
96:f2:f2:e9:58:68:5f:4d:66:b6:d7:b2:f4:73:3d:
ea:bd:e4:31:ab:f8:a8:5b:8b:0f:a1:be:a2:ed:20:
18:4f:e4:66:52:64:c9:04:43:dd:48:93:ac:5d:32:
4f:59:fc:a1:53:2d:06:a8:13:fe:d3:4a:07:04:54:
60:a5:a7:96:59:05:1b:e5:9f:1d:58:9a:71:23:6a:
bf:de:66:e2:fb:1c:63:8d:dd:7f:1a:d4:7e:4c:e9:
15:a7:90:76:6c:d2:c8:95:2a:ad:f2:5a:ee:49:63:
aa:39:67:c4:16:f0:37:0a:85:44:69:58:b6:48:c0:
56:80:42:32:df:a1:0c:43:34:3e:31:85:fc:97:b1:
40:17:0c:3d:ae:6b:1d:58:ee:31:54:0e:80:b5:c4:
b9:2e:b0:99:b8:ac:50:9d:86:90:f2:c7:ab:05:80:
c2:95:17:93:6d:1c:03:c5:d5:58:4a:9c:ed:4d:43:
da:31:e3:3f:bd:ed:cc:ff:86:03:65:4f:fe:74:39:
ad:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:88:09:14:81:AC:71:1B:8F:B7:F1:66:76:F2:FF:B0:6B:AC:D2:79
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x4gJFIGscRuPt_FmdvL_sGus0nk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/15
Signature Algorithm: sha256WithRSAEncryption
ab:a0:31:a5:42:90:90:b2:a8:54:56:0b:d4:b6:70:ec:ed:d3:
ce:94:4c:e6:76:67:85:d8:9c:9b:18:d7:93:d2:2c:73:a4:42:
9a:08:f5:b4:30:8b:05:9b:76:f6:62:85:d1:2e:bf:33:92:79:
84:b3:7b:2b:8a:c0:8f:cf:8b:e9:f6:2c:8c:67:c9:70:9f:ee:
77:8c:44:d7:a9:f9:ef:35:82:35:3a:c6:32:31:43:5b:0b:14:
2a:2a:76:95:cf:09:4e:1e:7d:80:87:ea:50:fa:cd:f7:f9:33:
d8:db:8f:f6:ba:32:ce:05:1f:c0:d9:6a:cb:54:a2:fd:63:97:
a2:2c:dc:37:ed:71:08:9b:5c:0b:fd:08:e9:e2:51:52:41:a3:
d4:32:24:9d:ca:7f:83:4b:9a:4c:e6:43:33:d9:50:ca:f3:c2:
00:bf:4f:8b:f1:5b:3e:f6:16:2d:84:3e:07:27:9e:0e:98:9a:
4c:3e:1d:ff:f0:fc:f9:ee:c6:ea:bf:2d:99:29:2a:1f:b1:f0:
80:7d:e5:23:82:e2:20:6d:46:ca:4a:1a:65:48:04:ad:29:61:
08:7c:22:9b:63:d7:3c:b6:61:90:12:87:6c:ca:40:3f:63:64:
69:7a:ef:76:d8:84:8b:b2:8d:62:6d:2d:94:c9:70:b9:c7:5a:
32:35:01:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:35:27 2025 by rpki-client