Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/y8Hv3fnm-FMmjdFv296lo7If_AI.roa
File: y8Hv3fnm-FMmjdFv296lo7If_AI.roa (raw, json)
Hash identifier: FtpW3iXnqAL0Mlz96dBCohByD0bourk+4prYeiidyYw=
Subject key identifier: CB:C1:EF:DD:F9:E6:F8:53:26:8D:D1:6F:DB:DE:A5:A3:B2:1F:FC:02
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y8Hv3fnm-FMmjdFv296lo7If_AI.roa
Signing time: Thu 15 Sep 2022 02:43:51 +0000
ROA not before: Thu 15 Sep 2022 02:43:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131586
IP address blocks: 106.106.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CBC1EFDDF9E6F853268DD16FDBDEA5A3B21FFC02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3d:e3:81:da:27:e8:ea:48:0e:c8:5d:5b:c6:
aa:01:41:76:2a:3c:95:92:d8:9c:48:8e:b4:d4:c9:
23:ea:79:27:2b:71:7c:bf:e8:2d:c0:2e:bb:bb:06:
50:b4:75:09:9c:d7:a8:d7:06:f5:bc:fe:e9:4c:65:
0b:24:9f:67:df:65:b0:56:bb:58:ee:15:a5:c0:17:
7d:9d:4a:fe:f4:21:e4:7a:9f:d1:b4:bd:4e:81:e9:
36:90:d0:79:0f:62:81:e1:b8:79:7b:78:6a:33:99:
57:61:5e:fd:ab:c7:3c:e1:77:57:fc:47:a9:88:8c:
d2:98:fa:2d:aa:d2:2c:51:90:01:6c:22:db:dd:c5:
33:d5:04:38:c1:df:47:b0:46:ce:32:53:92:b2:f5:
b0:d9:35:be:4d:fc:f1:bb:91:46:de:86:e9:17:a1:
e9:bd:73:17:e1:27:89:ca:2a:2a:68:ce:8e:e5:04:
b0:0d:a8:e3:92:3a:99:33:0a:a5:29:ce:7a:c9:4c:
83:8e:47:ef:53:c9:96:7a:29:c8:49:62:6f:7a:72:
d0:93:5d:33:20:d3:32:19:52:44:90:31:2b:9b:bc:
79:e1:ec:d7:e4:5f:2e:cb:a2:60:9b:1d:bb:7c:53:
b3:73:69:77:ae:f5:85:68:c5:5e:70:17:c4:26:16:
0c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C1:EF:DD:F9:E6:F8:53:26:8D:D1:6F:DB:DE:A5:A3:B2:1F:FC:02
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y8Hv3fnm-FMmjdFv296lo7If_AI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.0.0/17
Signature Algorithm: sha256WithRSAEncryption
75:9e:80:36:d1:a0:4c:a5:0b:67:b5:55:9f:22:81:6b:ed:f1:
d3:dc:91:cf:03:18:db:12:90:be:cf:02:a5:d7:8c:44:21:24:
14:1b:b6:94:32:b3:18:5d:26:77:15:0f:e0:bb:f4:bd:17:a5:
95:6e:1f:0c:30:8b:7b:bd:40:61:69:51:06:d1:b4:b0:0f:de:
58:78:59:e2:1a:54:8a:36:8b:ae:59:d5:c5:f9:39:5a:1b:44:
8e:f8:9f:ff:18:62:ce:fb:57:8d:18:3f:ac:54:5f:ca:8a:e3:
7d:ad:c4:41:67:b2:d2:b7:65:be:95:9f:f8:26:8a:af:52:57:
0c:ff:e0:7c:24:11:43:e3:21:d1:25:e8:ed:9e:7e:45:08:27:
64:40:72:cf:cc:98:cc:86:ca:e1:3a:1e:ee:20:f5:6f:91:cb:
25:10:2b:5f:0a:26:10:3c:d1:cf:af:a7:dc:c5:56:35:39:60:
f8:b3:0b:14:74:7d:3d:73:cc:87:47:d1:ba:81:9f:e7:3a:73:
8b:cd:d6:66:97:d0:88:cc:23:bf:54:04:3c:42:77:b9:a8:70:
05:2c:a5:e3:3b:86:c2:3c:e5:d1:24:a7:c5:86:b8:94:2d:1b:
cf:95:84:3d:0a:23:00:60:96:86:bc:ff:89:01:84:6b:83:2f:
9c:b7:33:79
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMjA5MTUw
MjQzNTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENCQzFFRkRERjlFNkY4
NTMyNjhERDE2RkRCREVBNUEzQjIxRkZDMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCZPeOB2ifo6kgOyF1bxqoBQXYqPJWS2JxIjrTUySPqeScrcXy/
6C3ALru7BlC0dQmc16jXBvW8/ulMZQskn2ffZbBWu1juFaXAF32dSv70IeR6n9G0
vU6B6TaQ0HkPYoHhuHl7eGozmVdhXv2rxzzhd1f8R6mIjNKY+i2q0ixRkAFsItvd
xTPVBDjB30ewRs4yU5Ky9bDZNb5N/PG7kUbehukXoem9cxfhJ4nKKipozo7lBLAN
qOOSOpkzCqUpznrJTIOOR+9TyZZ6KchJYm96ctCTXTMg0zIZUkSQMSubvHnh7Nfk
Xy7LomCbHbt8U7NzaXeu9YVoxV5wF8QmFgzTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUy8Hv3fnm+FMmjdFv296lo7If/AIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveThIdjNmbm0tRk1tamRGdjI5Nmxv
N0lmX0FJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB2pqADAN
BgkqhkiG9w0BAQsFAAOCAQEAdZ6ANtGgTKULZ7VVnyKBa+3x09yRzwMY2xKQvs8C
pdeMRCEkFBu2lDKzGF0mdxUP4Lv0vRellW4fDDCLe71AYWlRBtG0sA/eWHhZ4hpU
ijaLrlnVxfk5WhtEjvif/xhizvtXjRg/rFRfyorjfa3EQWey0rdlvpWf+CaKr1JX
DP/gfCQRQ+Mh0SXo7Z5+RQgnZEByz8yYzIbK4Toe7iD1b5HLJRArXwomEDzRz6+n
3MVWNTlg+LMLFHR9PXPMh0fRuoGf5zpzi83WZpfQiMwjv1QEPEJ3uahwBSyl4zuG
wjzl0SSnxYa4lC0bz5WEPQojAGCWhrz/iQGEa4MvnLczeQ==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:21:24 2025 by rpki-client