Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GjndwSBlD07mC3VkqzzXy8o32Oc.roa
File: GjndwSBlD07mC3VkqzzXy8o32Oc.roa (raw, json)
Hash identifier: HSSeawW6rVuwixj+gVmoTmklZmq//0CvWbQLy6z9ZB4=
Subject key identifier: 1A:39:DD:C1:20:65:0F:4E:E6:0B:75:64:AB:3C:D7:CB:CA:37:D8:E7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 177B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GjndwSBlD07mC3VkqzzXy8o32Oc.roa
Signing time: Mon 10 Feb 2025 14:06:57 +0000
ROA not before: Mon 10 Feb 2025 14:06:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6011 (0x177b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1A39DDC120650F4EE60B7564AB3CD7CBCA37D8E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7e:bd:a5:d6:96:38:d3:43:b2:51:09:11:24:
c7:7a:0e:3d:cf:4e:6a:45:1a:7e:d6:95:cd:dd:7e:
1a:b8:ba:ea:37:49:ee:b3:b9:81:eb:33:09:b6:f7:
8a:a6:aa:54:c3:e5:17:69:e0:2f:0a:54:a0:11:f2:
c7:54:88:ef:36:3c:21:12:15:2a:b7:f5:ca:53:87:
e3:dc:54:41:b3:07:f1:74:f0:b3:ad:b5:31:7c:cd:
7a:dc:79:f6:30:ea:2a:00:e0:6d:d0:4b:72:fe:2a:
5f:10:fc:2c:a6:f5:09:ed:9a:29:9b:4f:99:b8:58:
de:7c:1b:76:a1:84:43:2a:b6:81:8c:6c:10:1b:1b:
fb:ba:18:72:57:2a:43:26:26:3d:6b:e9:84:1f:d0:
dc:98:9c:d3:ea:e6:74:21:62:33:ad:4b:3b:5b:33:
6c:b2:88:e8:20:e8:7a:4b:eb:ce:6c:4e:c0:62:07:
05:5b:d9:09:d0:a3:b0:e8:d5:60:4b:a6:f8:f5:65:
23:3e:8a:37:a6:06:99:60:f1:a2:9f:59:13:5c:b2:
9d:bc:30:a6:53:c8:f5:0f:e5:a2:e0:d4:c0:46:20:
9a:6c:a3:09:68:90:a6:28:eb:6a:eb:53:1e:dd:d7:
96:b0:d8:c2:31:28:87:13:ca:c1:c4:a1:d1:c9:fc:
fc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:39:DD:C1:20:65:0F:4E:E6:0B:75:64:AB:3C:D7:CB:CA:37:D8:E7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GjndwSBlD07mC3VkqzzXy8o32Oc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
41:f6:59:dc:ee:36:36:37:c1:d6:fe:e1:be:ab:51:1d:15:e7:
4c:d6:d4:66:7d:46:4b:c3:95:80:bc:4f:74:9e:2a:96:23:2e:
c0:46:ea:65:57:59:d9:68:b4:34:a6:1c:45:78:e5:07:2d:26:
c1:19:f8:09:9d:85:4c:4a:03:aa:53:15:9f:e3:53:3a:78:c5:
4a:cd:69:fe:0a:82:78:e9:ca:de:18:9a:b0:1b:0b:01:d9:2b:
02:54:c4:97:71:97:da:34:da:23:32:8a:bf:cb:69:9c:62:9d:
3a:06:25:bb:24:79:0b:c3:d5:51:9d:38:24:84:28:2e:f3:16:
57:1e:20:c3:51:51:09:4f:d7:20:39:61:62:c6:00:a3:34:72:
b6:de:e9:16:d6:75:97:7f:aa:be:f9:ea:b8:d5:3c:66:ba:00:
d8:dd:a1:f4:da:34:dd:fe:a7:5f:c3:c3:49:c5:53:a8:f9:9e:
11:af:ea:a6:0d:1b:07:16:43:e1:e4:99:1a:d9:53:55:dc:11:
9b:f0:4e:b8:af:15:27:68:e3:c4:89:67:f1:a0:d9:f1:2a:2c:
84:e5:a0:e5:a2:0e:b2:3f:6e:fc:b6:9a:89:cf:15:e2:3e:a2:
a0:e9:e6:99:7c:1d:25:9f:a7:a1:2a:dc:b3:88:a0:f4:7a:f8:
a9:b1:bd:cd
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICF3swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA2NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBMzlEREMxMjA2NTBG
NEVFNjBCNzU2NEFCM0NEN0NCQ0EzN0Q4RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYfr2l1pY400OyUQkRJMd6Dj3PTmpFGn7Wlc3dfhq4uuo3Se6z
uYHrMwm294qmqlTD5Rdp4C8KVKAR8sdUiO82PCESFSq39cpTh+PcVEGzB/F08LOt
tTF8zXrcefYw6ioA4G3QS3L+Kl8Q/Cym9QntmimbT5m4WN58G3ahhEMqtoGMbBAb
G/u6GHJXKkMmJj1r6YQf0NyYnNPq5nQhYjOtSztbM2yyiOgg6HpL685sTsBiBwVb
2QnQo7Do1WBLpvj1ZSM+ijemBplg8aKfWRNcsp28MKZTyPUP5aLg1MBGIJpsowlo
kKYo62rrUx7d15aw2MIxKIcTysHEodHJ/Py5AgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUGjndwSBlD07mC3VkqzzXy8o32OcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvR2puZHdTQmxEMDdtQzNWa3F6elh5
OG8zMk9jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATtoMA0G
CSqGSIb3DQEBCwUAA4IBAQBB9lnc7jY2N8HW/uG+q1EdFedM1tRmfUZLw5WAvE90
niqWIy7ARuplV1nZaLQ0phxFeOUHLSbBGfgJnYVMSgOqUxWf41M6eMVKzWn+CoJ4
6creGJqwGwsB2SsCVMSXcZfaNNojMoq/y2mcYp06BiW7JHkLw9VRnTgkhCgu8xZX
HiDDUVEJT9cgOWFixgCjNHK23ukW1nWXf6q++eq41TxmugDY3aH02jTd/qdfw8NJ
xVOo+Z4Rr+qmDRsHFkPh5Jka2VNV3BGb8E64rxUnaOPEiWfxoNnxKiyE5aDlog6y
P278tpqJzxXiPqKg6eaZfB0ln6ehKtyziKD0evipsb3N
-----END CERTIFICATE-----
Generated at Mon Apr 7 08:06:51 2025 by rpki-client