Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yQtQqyq22b_J9dObBOmP0yuCtvM.roa
File: yQtQqyq22b_J9dObBOmP0yuCtvM.roa (raw, json)
Hash identifier: 8BuEIZujo6WAlEZfTboE2qWH5hL/b8OASBuuoqiQY40=
Subject key identifier: C9:0B:50:AB:2A:B6:D9:BF:C9:F5:D3:9B:04:E9:8F:D3:2B:82:B6:F3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10B3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yQtQqyq22b_J9dObBOmP0yuCtvM.roa
Signing time: Wed 01 Feb 2023 10:28:55 +0000
ROA not before: Wed 01 Feb 2023 10:28:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 211.74.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4275 (0x10b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:55 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C90B50AB2AB6D9BFC9F5D39B04E98FD32B82B6F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:78:cb:63:18:14:2f:42:c7:c9:10:25:c1:46:
d8:fb:6a:1c:ad:95:d2:fd:09:68:a7:e0:e9:2a:6a:
b5:f5:be:58:b6:58:62:79:cc:24:db:61:3f:f9:f5:
cf:db:b0:39:0b:46:cd:af:77:ff:b0:c9:cc:1c:87:
49:7f:f5:cf:71:cf:a9:4a:fc:c8:36:ca:0b:4b:fa:
bc:10:60:e0:9f:ab:30:e0:a5:a0:c6:ac:9d:9d:62:
68:e6:96:44:ea:6e:da:8b:bb:e2:dd:01:c9:59:51:
0c:2e:43:ba:13:83:98:c5:30:0c:76:38:fa:cb:59:
f1:45:2c:06:41:15:6a:78:0c:e7:17:eb:3e:39:f3:
26:f5:ed:3e:fc:1b:c5:c1:a6:4e:1b:da:4f:b5:bd:
42:9b:97:63:1e:39:a9:fc:0f:61:34:96:a8:df:4a:
a6:cd:8f:5d:c7:b4:4f:01:e3:90:61:40:a3:41:87:
9b:73:8c:68:1f:e1:62:67:64:16:b4:82:11:68:9a:
9e:f4:a9:ed:23:be:e2:f6:43:a2:1e:65:7d:ec:df:
cf:c0:6c:79:d2:16:9e:29:2d:d6:df:95:34:2f:98:
11:5f:14:11:ef:dd:6d:a7:7b:d3:0d:fe:58:3e:9a:
10:57:ba:37:4a:e1:73:81:08:cd:bc:c3:79:8e:f5:
a9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0B:50:AB:2A:B6:D9:BF:C9:F5:D3:9B:04:E9:8F:D3:2B:82:B6:F3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yQtQqyq22b_J9dObBOmP0yuCtvM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b2:20:d1:92:07:23:6b:10:8f:b9:90:a7:81:30:fe:d7:ff:ec:
2d:13:32:82:82:20:14:6d:99:42:44:01:2d:31:cf:3d:33:89:
63:a9:24:35:fd:5f:ff:1e:6d:97:31:d0:6c:4a:e0:92:85:9a:
66:67:0f:8e:bd:de:ff:63:6c:35:3e:06:54:8c:a2:3c:06:42:
db:74:67:7d:b5:67:e6:55:f6:ce:b8:61:06:4b:6f:61:e5:48:
60:51:12:a7:53:51:1b:da:1b:b3:be:55:ae:dd:3d:a1:68:50:
46:ea:f9:73:68:65:6e:52:5e:76:f4:a9:13:a0:fc:7a:2e:e7:
1a:5b:be:ab:62:f1:82:dc:1e:e4:2d:0d:34:08:04:84:1e:e3:
9d:73:d9:f7:fd:03:e2:86:cf:ae:2b:bc:61:55:71:11:50:90:
ff:60:47:ed:2c:e7:f3:55:f1:c2:07:24:e3:a7:d6:0c:98:62:
3f:8b:47:0a:65:73:32:c1:06:f1:5b:25:20:35:31:fd:fb:c5:
c2:5d:8c:de:c0:57:b4:d1:ae:69:eb:14:b8:2c:c6:cf:f0:bc:
5f:db:88:c9:1c:56:61:44:43:de:02:9c:20:a6:2b:fc:e7:64:
68:f9:83:57:e5:48:5f:da:ec:de:df:d9:4e:2f:ce:d4:aa:39:
80:a1:77:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:17:05 2025 by rpki-client