Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BsvEv-uM3S2Oxgbx8q0WtdkYTjM.roa
File: BsvEv-uM3S2Oxgbx8q0WtdkYTjM.roa (raw, json)
Hash identifier: qIWxr1yLkfHAfjG0UrDz0KAM1E0Oex5pQa1GJjU3XYU=
Subject key identifier: 06:CB:C4:BF:EB:8C:DD:2D:8E:C6:06:F1:F2:AD:16:B5:D9:18:4E:33
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1842
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BsvEv-uM3S2Oxgbx8q0WtdkYTjM.roa
Signing time: Mon 10 Feb 2025 14:07:44 +0000
ROA not before: Mon 10 Feb 2025 14:07:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 203.190.16.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6210 (0x1842)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=06CBC4BFEB8CDD2D8EC606F1F2AD16B5D9184E33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:76:ee:69:f0:5f:d7:b5:50:27:80:a0:19:
fa:dc:de:89:7c:c6:84:25:2d:00:63:8d:2e:c9:b3:
5f:18:f1:2b:e0:53:ad:cd:0f:f9:27:84:6e:c5:7b:
2c:50:f9:f5:54:d5:4e:9e:ef:26:e1:7e:f5:0b:3f:
c9:f0:2f:89:ce:8a:3e:7c:b0:a0:fb:2f:c6:d6:a2:
8e:b4:dc:46:b7:c9:9e:5a:48:b4:13:6b:49:a7:38:
dd:9a:9e:1a:8d:38:b8:47:53:1d:8b:d7:04:d7:f1:
07:60:b3:cc:01:25:9c:67:80:1f:68:a6:f3:b4:7a:
96:e9:74:4a:8c:0b:ec:fb:3f:2b:86:72:2c:32:31:
42:39:cf:e7:b5:14:8a:b6:1f:cf:80:18:4e:01:79:
f3:44:c2:70:5d:19:58:df:f1:c0:f2:51:0a:2f:84:
da:60:8d:a7:0b:ea:6d:cd:29:d1:2f:02:c3:68:f2:
4e:3b:ae:a6:2d:3f:43:0c:19:6b:ac:54:ba:74:7f:
31:40:32:f3:48:85:58:3f:33:a8:69:08:dd:72:84:
ff:13:9c:da:0f:b5:39:77:29:85:20:3b:76:6c:ba:
c6:db:a9:05:f5:48:6b:1e:93:ed:ea:4d:25:28:42:
99:ec:74:93:1e:00:2c:13:07:65:1f:5e:85:db:1a:
5a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CB:C4:BF:EB:8C:DD:2D:8E:C6:06:F1:F2:AD:16:B5:D9:18:4E:33
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BsvEv-uM3S2Oxgbx8q0WtdkYTjM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.190.16.0/21
Signature Algorithm: sha256WithRSAEncryption
5e:c9:0b:a0:8b:e7:68:b4:65:0a:9e:0f:a9:18:4c:a9:78:e8:
5a:03:a2:5e:bd:02:6e:70:9b:02:69:e5:f5:6c:a1:93:8c:97:
d9:ee:34:8d:ad:f8:97:23:d1:db:d6:fc:7e:22:f8:2c:f2:dc:
ca:bd:55:db:76:6f:be:ed:4e:84:ae:7e:e7:0e:2e:a6:4f:e5:
17:e4:f9:7d:d7:55:fe:4d:52:2b:c3:02:61:04:01:ae:f2:bc:
87:23:dd:b2:f9:86:b3:aa:f3:52:9a:9e:4b:a3:fb:dc:70:73:
42:59:e6:35:51:4a:6b:60:67:29:6b:1e:39:78:df:04:b4:0d:
9f:58:d4:33:f0:59:1f:b6:92:93:08:e4:b1:89:a2:eb:38:04:
92:3b:2e:68:d4:16:10:bd:4a:77:b0:ff:a1:b8:f3:46:d5:c2:
c1:39:4e:d2:b6:c6:fd:82:2e:fd:fb:37:7f:b8:56:ba:e8:cf:
42:b7:40:63:07:7a:c0:98:4f:b6:9c:fc:19:47:c7:73:8f:e9:
cf:74:8b:66:f6:65:49:36:8b:e9:a3:45:8b:a8:de:b2:e5:63:
f7:63:a9:d8:2a:4a:dc:a1:b1:bf:01:08:bf:3c:3e:9c:21:14:
57:1f:69:e7:27:0e:4a:3a:49:e7:4a:86:65:d7:63:43:c7:c2:
64:0a:77:de
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICGEIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2Q0JDNEJGRUI4Q0RE
MkQ4RUM2MDZGMUYyQUQxNkI1RDkxODRFMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3lnbuafBf17VQJ4CgGfrc3ol8xoQlLQBjjS7Js18Y8SvgU63N
D/knhG7FeyxQ+fVU1U6e7ybhfvULP8nwL4nOij58sKD7L8bWoo603Ea3yZ5aSLQT
a0mnON2anhqNOLhHUx2L1wTX8Qdgs8wBJZxngB9opvO0epbpdEqMC+z7PyuGciwy
MUI5z+e1FIq2H8+AGE4BefNEwnBdGVjf8cDyUQovhNpgjacL6m3NKdEvAsNo8k47
rqYtP0MMGWusVLp0fzFAMvNIhVg/M6hpCN1yhP8TnNoPtTl3KYUgO3ZsusbbqQX1
SGsek+3qTSUoQpnsdJMeACwTB2UfXoXbGlpdAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUBsvEv+uM3S2Oxgbx8q0WtdkYTjMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQnN2RXYtdU0zUzJPeGdieDhxMFd0
ZGtZVGpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+EDAN
BgkqhkiG9w0BAQsFAAOCAQEAXskLoIvnaLRlCp4PqRhMqXjoWgOiXr0CbnCbAmnl
9Wyhk4yX2e40ja34lyPR29b8fiL4LPLcyr1V23Zvvu1OhK5+5w4upk/lF+T5fddV
/k1SK8MCYQQBrvK8hyPdsvmGs6rzUpqeS6P73HBzQlnmNVFKa2BnKWseOXjfBLQN
n1jUM/BZH7aSkwjksYmi6zgEkjsuaNQWEL1Kd7D/objzRtXCwTlO0rbG/YIu/fs3
f7hWuujPQrdAYwd6wJhPtpz8GUfHc4/pz3SLZvZlSTaL6aNFi6jesuVj92Op2CpK
3KGxvwEIvzw+nCEUVx9p5ycOSjpJ50qGZddjQ8fCZAp33g==
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:18:52 2025 by rpki-client