Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/z-pRKDBL0pBfv8u_lAO-ULPyUAk.roa
File: z-pRKDBL0pBfv8u_lAO-ULPyUAk.roa (raw, json)
Hash identifier: TctS2wG5RjZArf+e76+ln9kcYVl13sjPm8dZp8Qcer4=
Subject key identifier: CF:EA:51:28:30:4B:D2:90:5F:BF:CB:BF:94:03:BE:50:B3:F2:50:09
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1809
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/z-pRKDBL0pBfv8u_lAO-ULPyUAk.roa
Signing time: Mon 10 Feb 2025 14:07:31 +0000
ROA not before: Mon 10 Feb 2025 14:07:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131586
IP address blocks: 106.106.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6153 (0x1809)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CFEA5128304BD2905FBFCBBF9403BE50B3F25009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:36:95:7b:60:d9:94:29:8f:52:26:0d:6b:bb:
fd:37:b9:f0:e9:bb:18:bd:c8:dc:81:96:81:11:15:
c3:3a:10:02:ca:aa:b2:d0:f7:60:84:26:10:5c:10:
62:52:4e:08:a6:03:d6:6e:57:fe:52:bb:83:2e:6c:
a7:97:11:63:fa:dc:a6:f0:dd:59:08:32:19:eb:f8:
ac:b8:e4:d9:b2:81:ec:26:72:bd:cd:29:ac:de:c6:
a4:dc:17:a8:2a:c5:b8:e6:e6:50:05:fd:e0:24:0f:
4c:4b:b2:90:06:93:1b:9f:84:e8:f4:81:80:95:46:
7f:ec:dc:48:2e:be:e3:e1:84:3d:08:92:45:b6:87:
5e:17:3c:90:3f:79:4e:b5:9e:d8:a6:60:db:d4:7a:
de:1c:34:e5:12:cd:ef:a0:03:3f:10:71:23:03:c8:
9c:e3:f1:65:29:9a:d4:5a:93:81:80:b3:23:13:43:
9c:96:da:be:0d:07:5e:5f:f0:2b:3d:ac:8c:d8:5e:
54:21:3c:6c:93:5d:59:64:c3:2d:45:ca:ad:95:50:
6e:a1:9b:ff:ab:7c:d6:fd:49:72:14:d0:45:c3:ce:
13:12:58:4f:12:8e:41:d7:92:8e:15:f1:7d:64:45:
fc:27:d9:a9:a2:bc:c4:09:cd:0f:a9:2f:e3:5d:5f:
c2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:EA:51:28:30:4B:D2:90:5F:BF:CB:BF:94:03:BE:50:B3:F2:50:09
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/z-pRKDBL0pBfv8u_lAO-ULPyUAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.106.0.0/17
Signature Algorithm: sha256WithRSAEncryption
03:51:d4:06:b1:30:26:b1:b8:f1:8c:8e:79:02:1e:12:5b:1b:
57:20:f2:a4:47:94:44:23:9c:59:39:2c:44:a9:85:56:de:dc:
c2:86:1d:8e:69:94:4b:88:24:94:52:65:1f:3c:c7:78:2d:28:
4d:c5:17:11:49:48:2b:07:4e:ab:d3:fa:43:5a:c4:a9:82:aa:
7f:02:76:00:4a:dc:72:49:b1:92:e3:db:be:cc:32:f0:74:eb:
f4:4f:2f:a3:76:0f:05:30:4c:53:7b:3a:e1:21:e3:3a:ee:57:
7b:4c:dc:f8:91:5a:bb:8e:ef:dd:fe:a2:1b:a5:98:60:3f:04:
65:d0:aa:a7:83:27:71:a8:dd:48:9e:c7:87:15:ca:09:58:04:
ed:57:95:18:9d:b0:b9:1b:45:9e:bd:b9:a0:c2:93:6b:b2:53:
06:23:0c:b5:80:ea:20:7c:f8:34:0b:e4:ad:ae:e7:b4:00:19:
f2:3b:c5:12:96:ba:01:4c:9f:55:0d:8a:e5:56:95:a5:c9:a5:
db:86:eb:a4:00:3b:3f:1f:85:f5:14:81:b6:20:24:dd:c2:3c:
ac:50:fc:0f:da:3e:5a:0f:ae:eb:8b:a5:7b:9a:ad:df:b9:41:
89:a6:f1:99:17:8b:52:09:c4:cd:ef:b2:0d:33:68:b9:39:6e:
e0:ab:cb:6f
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICGAkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENGRUE1MTI4MzA0QkQy
OTA1RkJGQ0JCRjk0MDNCRTUwQjNGMjUwMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCNpV7YNmUKY9SJg1ru/03ufDpuxi9yNyBloERFcM6EALKqrLQ
92CEJhBcEGJSTgimA9ZuV/5Su4MubKeXEWP63Kbw3VkIMhnr+Ky45Nmygewmcr3N
KazexqTcF6gqxbjm5lAF/eAkD0xLspAGkxufhOj0gYCVRn/s3EguvuPhhD0IkkW2
h14XPJA/eU61ntimYNvUet4cNOUSze+gAz8QcSMDyJzj8WUpmtRak4GAsyMTQ5yW
2r4NB15f8Cs9rIzYXlQhPGyTXVlkwy1Fyq2VUG6hm/+rfNb9SXIU0EXDzhMSWE8S
jkHXko4V8X1kRfwn2amivMQJzQ+pL+NdX8JDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUz+pRKDBL0pBfv8u/lAO+ULPyUAkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvei1wUktEQkwwcEJmdjh1X2xBTy1V
TFB5VUFrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB2pqADAN
BgkqhkiG9w0BAQsFAAOCAQEAA1HUBrEwJrG48YyOeQIeElsbVyDypEeURCOcWTks
RKmFVt7cwoYdjmmUS4gklFJlHzzHeC0oTcUXEUlIKwdOq9P6Q1rEqYKqfwJ2AErc
ckmxkuPbvswy8HTr9E8vo3YPBTBMU3s64SHjOu5Xe0zc+JFau47v3f6iG6WYYD8E
ZdCqp4MncajdSJ7HhxXKCVgE7VeVGJ2wuRtFnr25oMKTa7JTBiMMtYDqIHz4NAvk
ra7ntAAZ8jvFEpa6AUyfVQ2K5VaVpcml24brpAA7Px+F9RSBtiAk3cI8rFD8D9o+
Wg+u64ule5qt37lBiabxmReLUgnEze+yDTNouTlu4KvLbw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 07:59:31 2025 by rpki-client