Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yUewPMriBVgfsrD2gNYr7LWj-1o.roa
File: yUewPMriBVgfsrD2gNYr7LWj-1o.roa (raw, json)
Hash identifier: tiaUMXmGia6FVv3EvB0SK0s7oRUhQqN/Ak4s/b3d/Jk=
Subject key identifier: C9:47:B0:3C:CA:E2:05:58:1F:B2:B0:F6:80:D6:2B:EC:B5:A3:FB:5A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17E7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yUewPMriBVgfsrD2gNYr7LWj-1o.roa
Signing time: Mon 10 Feb 2025 14:07:23 +0000
ROA not before: Mon 10 Feb 2025 14:07:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 61.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6119 (0x17e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C947B03CCAE205581FB2B0F680D62BECB5A3FB5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e1:df:ea:f1:33:3c:d7:ba:8e:6a:7d:ec:35:
90:7d:dd:8f:24:bb:93:cf:a6:9a:5a:d0:8e:5c:a1:
75:ed:ca:92:31:b3:72:41:a5:89:83:13:ae:30:9c:
f3:1a:c6:09:ba:ee:68:93:1a:48:ff:de:3f:a6:d9:
e0:db:44:46:37:f4:75:92:65:ed:20:e3:7f:70:cb:
2b:a9:ae:cf:af:64:61:36:ef:3d:5c:3d:47:1e:11:
00:63:4f:97:ba:0c:f3:88:2a:87:b2:99:a4:82:e5:
de:25:30:dd:8d:cc:9f:a7:2d:28:e2:8e:82:44:32:
05:a0:ff:be:17:19:4f:f8:c1:0f:c5:84:fb:57:6a:
2a:c3:b8:6d:7f:7d:aa:f0:89:1b:45:7d:c2:a2:11:
70:03:19:a6:fb:9c:3f:4a:52:be:5c:c0:2e:0c:8c:
85:ce:52:67:81:6b:57:b4:a0:7c:c8:08:8c:d3:13:
ab:ef:a5:db:60:82:f3:f9:03:fe:b2:3b:12:c1:bf:
63:7e:4d:28:4e:44:0f:62:b5:af:a5:f7:b7:65:eb:
cc:61:9d:81:f4:1a:61:83:ea:99:21:3f:48:d7:da:
31:b2:3b:e3:04:16:c2:25:1a:31:ef:a4:29:dc:e7:
ba:89:1a:0f:24:2f:59:0b:6a:83:23:2c:00:ca:1e:
1f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:47:B0:3C:CA:E2:05:58:1F:B2:B0:F6:80:D6:2B:EC:B5:A3:FB:5A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yUewPMriBVgfsrD2gNYr7LWj-1o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0b:17:e4:91:6a:1f:55:5c:69:cc:b4:05:2d:aa:47:f1:4f:bd:
7d:c5:ae:c5:9d:a9:be:a7:40:c3:69:65:79:8f:22:c8:c5:dc:
cb:9f:66:3d:b7:70:76:66:a9:fe:b2:82:ed:2f:83:64:bd:cf:
79:e4:dd:25:8d:b1:a8:31:03:7c:35:e3:b8:f1:dd:aa:4b:11:
89:e6:58:54:4e:e2:d9:bd:ba:02:93:fb:86:d9:4e:79:5a:48:
6d:3f:af:16:e3:fe:24:ef:7d:ae:17:fc:7f:14:f3:e1:bf:72:
43:bc:e6:4f:8c:83:46:51:6a:67:d2:64:4a:4c:33:b1:6a:c1:
4f:26:23:b0:53:65:90:6b:d3:51:5f:e1:fd:40:ac:63:4c:b6:
3e:1a:00:c9:43:73:f5:d2:fe:4c:5c:cd:0d:7e:c7:03:6d:8b:
58:f1:31:f3:0b:2c:45:54:22:c1:de:ef:45:b5:d0:98:4d:46:
4f:74:0d:87:7c:40:5f:9a:14:fa:fc:91:ec:f6:74:8a:1b:71:
d2:3b:d3:3e:b2:b6:4d:b0:cd:67:2f:a8:17:00:05:d6:7b:e2:
bd:af:c0:c6:02:65:54:ed:ff:30:b7:e7:37:2b:0e:b6:fe:86:
85:a7:f8:5e:c8:76:51:85:c4:d8:72:99:2f:4e:f6:b7:46:7b:
5d:05:df:5a
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICF+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5NDdCMDNDQ0FFMjA1
NTgxRkIyQjBGNjgwRDYyQkVDQjVBM0ZCNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDX4d/q8TM817qOan3sNZB93Y8ku5PPpppa0I5coXXtypIxs3JB
pYmDE64wnPMaxgm67miTGkj/3j+m2eDbREY39HWSZe0g439wyyuprs+vZGE27z1c
PUceEQBjT5e6DPOIKoeymaSC5d4lMN2NzJ+nLSjijoJEMgWg/74XGU/4wQ/FhPtX
airDuG1/farwiRtFfcKiEXADGab7nD9KUr5cwC4MjIXOUmeBa1e0oHzICIzTE6vv
pdtggvP5A/6yOxLBv2N+TShORA9ita+l97dl68xhnYH0GmGD6pkhP0jX2jGyO+ME
FsIlGjHvpCnc57qJGg8kL1kLaoMjLADKHh/5AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUyUewPMriBVgfsrD2gNYr7LWj+1owHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveVVld1BNcmlCVmdmc3JEMmdOWXI3
TFdqLTFvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD1CMA0G
CSqGSIb3DQEBCwUAA4IBAQALF+SRah9VXGnMtAUtqkfxT719xa7Fnam+p0DDaWV5
jyLIxdzLn2Y9t3B2Zqn+soLtL4Nkvc955N0ljbGoMQN8NeO48d2qSxGJ5lhUTuLZ
vboCk/uG2U55WkhtP68W4/4k732uF/x/FPPhv3JDvOZPjINGUWpn0mRKTDOxasFP
JiOwU2WQa9NRX+H9QKxjTLY+GgDJQ3P10v5MXM0NfscDbYtY8THzCyxFVCLB3u9F
tdCYTUZPdA2HfEBfmhT6/JHs9nSKG3HSO9M+srZNsM1nL6gXAAXWe+K9r8DGAmVU
7f8wt+c3Kw62/oaFp/heyHZRhcTYcpkvTva3RntdBd9a
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:24 2025 by rpki-client