Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCCC/tv4GZiN_wtS3WKqnP_LWSbdzKY4.roa
File: tv4GZiN_wtS3WKqnP_LWSbdzKY4.roa (raw, json)
Hash identifier: aE2N3X4oDdaTvKnAkMXCHUghw0OTeruqdeNMkgMTz58=
Subject key identifier: B6:FE:06:66:23:7F:C2:D4:B7:58:AA:A7:3F:F2:D6:49:B7:73:29:8E
Certificate issuer: /CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE
Certificate serial: FC
Authority key identifier: 07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/tv4GZiN_wtS3WKqnP_LWSbdzKY4.roa
Signing time: Mon 10 Feb 2025 13:45:44 +0000
ROA not before: Mon 10 Feb 2025 13:45:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 19551
IP address blocks: 157.20.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252 (0xfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE
Validity
Not Before: Feb 10 13:45:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B6FE0666237FC2D4B758AAA73FF2D649B773298E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1e:06:49:d7:85:0d:21:46:5e:7b:2c:d5:b5:
42:9b:14:be:98:84:59:59:b2:73:62:5e:94:86:b9:
74:00:92:06:54:0e:57:54:8d:b4:71:40:1a:da:d5:
10:99:52:c2:13:09:da:f6:0f:0b:06:d2:be:31:21:
30:a9:7a:ce:a8:0a:f3:c9:34:47:21:18:20:50:40:
45:41:2c:95:15:da:aa:ba:f2:e8:ab:f0:ec:21:0b:
aa:e6:83:06:2f:43:2c:0d:61:0e:15:0c:2a:69:bf:
41:25:2b:af:48:30:83:25:75:99:77:2c:14:35:f7:
7d:4e:1c:03:ac:71:72:e9:46:6c:08:4e:88:f0:5b:
d5:7c:39:b3:0d:4f:e4:a2:dd:50:c7:d0:b4:85:67:
a0:1f:a5:bf:b4:40:33:c6:79:36:82:5e:a2:73:c8:
a0:ea:d2:67:b0:cf:22:f4:2a:cc:48:5e:fc:35:9e:
fb:20:12:db:61:9d:4f:d0:ff:07:71:6c:bf:20:b7:
1b:5e:ea:3a:07:00:e4:03:f4:44:5d:70:07:c3:89:
0d:71:30:82:63:58:41:d6:ba:c1:09:7e:8f:d0:53:
a3:a7:28:f5:2f:1e:c1:04:47:c5:c8:ba:78:56:bb:
94:57:79:6c:f9:fe:ad:b5:5d:10:7a:9e:97:11:52:
6f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FE:06:66:23:7F:C2:D4:B7:58:AA:A7:3F:F2:D6:49:B7:73:29:8E
X509v3 Authority Key Identifier:
keyid:07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/tv4GZiN_wtS3WKqnP_LWSbdzKY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.106.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:57:e8:11:f1:38:e2:8f:01:55:13:b2:1e:56:47:3b:44:24:
4a:0b:89:34:b6:f8:26:1f:e7:d8:5e:d0:0c:ec:e4:1b:55:56:
f7:c5:27:ec:2b:b5:b3:c3:b5:5d:95:8a:a4:86:fa:af:74:6c:
a7:aa:b8:0d:f3:96:ae:f1:69:02:24:03:89:e2:bd:60:c5:3e:
87:f0:60:42:bc:b7:31:ce:5f:fe:d8:f7:d3:ce:ea:90:dc:68:
51:08:98:52:b6:14:dc:37:29:b4:67:6b:7e:6b:d4:d6:1e:16:
2c:41:71:75:39:fc:7b:d2:ff:2a:60:9e:5f:6a:6b:63:d1:44:
b0:1d:60:e6:ad:e2:a5:c3:61:58:1e:fb:dc:99:59:d8:25:fb:
b1:3e:bc:60:c5:4f:9b:19:2a:28:3c:c1:55:10:f1:c6:04:7e:
d6:7e:9c:7b:5d:38:c6:d8:02:13:ed:f4:99:8b:21:8b:04:b8:
dc:f2:b7:39:7e:e9:d9:63:ea:15:ca:1a:e4:2e:d6:7a:67:54:
3c:42:e6:1c:e1:f1:a9:92:f8:1b:a1:b0:de:c7:e3:de:03:99:
b8:64:dd:7e:2e:6b:5b:0d:c0:ad:86:ed:4c:39:ee:a9:4b:ec:
c6:29:83:6e:6b:b1:e6:34:b4:a5:44:da:74:5d:a3:77:d5:59:
91:9d:70:46
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdF
MzZBM0QyMTlBOEFGQzg0Rjg4QjMwNTUzRTYzOENFNkMyQ0VDRTAeFw0yNTAyMTAx
MzQ1NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2RkUwNjY2MjM3RkMy
RDRCNzU4QUFBNzNGRjJENjQ5Qjc3MzI5OEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChHgZJ14UNIUZeeyzVtUKbFL6YhFlZsnNiXpSGuXQAkgZUDldU
jbRxQBra1RCZUsITCdr2DwsG0r4xITCpes6oCvPJNEchGCBQQEVBLJUV2qq68uir
8OwhC6rmgwYvQywNYQ4VDCppv0ElK69IMIMldZl3LBQ1931OHAOscXLpRmwITojw
W9V8ObMNT+Si3VDH0LSFZ6Afpb+0QDPGeTaCXqJzyKDq0mewzyL0KsxIXvw1nvsg
EtthnU/Q/wdxbL8gtxte6joHAOQD9ERdcAfDiQ1xMIJjWEHWusEJfo/QU6OnKPUv
HsEER8XIunhWu5RXeWz5/q21XRB6npcRUm8bAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUtv4GZiN/wtS3WKqnP/LWSbdzKY4wHwYDVR0jBBgwFoAUB+NqPSGaivyE+Isw
VT5jjObCzs4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy9C
LU5xUFNHYWl2eUUtSXN3VlQ1ampPYkN6czQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0ItTnFQU0dhaXZ5RS1Jc3dWVDVqak9iQ3pzNC5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DQ0MvdHY0R1ppTl93dFMzV0txblBfTFdT
YmR6S1k0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UajAN
BgkqhkiG9w0BAQsFAAOCAQEAyVfoEfE44o8BVROyHlZHO0QkSguJNLb4Jh/n2F7Q
DOzkG1VW98Un7Cu1s8O1XZWKpIb6r3Rsp6q4DfOWrvFpAiQDieK9YMU+h/BgQry3
Mc5f/tj3087qkNxoUQiYUrYU3DcptGdrfmvU1h4WLEFxdTn8e9L/KmCeX2prY9FE
sB1g5q3ipcNhWB773JlZ2CX7sT68YMVPmxkqKDzBVRDxxgR+1n6ce104xtgCE+30
mYshiwS43PK3OX7p2WPqFcoa5C7WemdUPELmHOHxqZL4G6Gw3sfj3gOZuGTdfi5r
Ww3ArYbtTDnuqUvsximDbmux5jS0pUTadF2jd9VZkZ1wRg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:21:09 2025 by rpki-client