Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XcrPC5kT_4xgWw4I20HUVH2A-_8.roa
File: XcrPC5kT_4xgWw4I20HUVH2A-_8.roa (raw, json)
Hash identifier: YnSulXutW/tabA02/828U62qKgOLNpwN/RfiX+HGxX4=
Subject key identifier: 5D:CA:CF:0B:99:13:FF:8C:60:5B:0E:08:DB:41:D4:54:7D:80:FB:FF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17A4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XcrPC5kT_4xgWw4I20HUVH2A-_8.roa
Signing time: Mon 10 Feb 2025 14:07:07 +0000
ROA not before: Mon 10 Feb 2025 14:07:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.205.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6052 (0x17a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5DCACF0B9913FF8C605B0E08DB41D4547D80FBFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2f:1d:04:21:f4:dd:95:8d:73:5e:cf:12:39:
db:e2:72:d0:a2:a2:b0:8b:dd:fd:ca:63:76:f1:1c:
83:fa:b7:8d:b1:68:8c:fd:9e:06:f3:7c:b8:4b:71:
67:78:52:e9:39:1d:db:7a:b3:93:56:24:d7:8c:ad:
bf:89:80:a8:85:01:c7:6a:ae:ef:28:64:67:be:6d:
fc:6a:22:1d:95:bf:99:ba:8b:92:0c:7c:01:ee:ca:
6d:43:d3:e1:a9:92:92:0a:7e:66:fb:4c:fa:95:b4:
42:b8:e0:88:01:81:40:e8:b0:06:4c:31:9b:4f:a7:
89:cb:2a:ce:51:de:15:6a:cf:52:15:c0:e8:04:8b:
09:8a:d6:31:59:aa:b0:5f:b0:55:a4:d4:4e:5e:d1:
16:15:12:4d:9c:eb:f0:46:d4:2d:ed:fb:8b:f6:1e:
4e:4d:5c:30:31:a3:a7:c8:56:4f:2c:3e:00:6b:07:
a5:bc:0f:61:33:25:55:95:ef:97:c8:2c:60:d7:bd:
dd:43:94:37:32:e6:79:97:75:45:59:d7:25:23:05:
91:b1:ae:11:59:29:45:d7:82:8c:a3:f2:78:49:11:
bd:0a:f9:75:51:5f:ac:e4:73:07:4d:e3:1d:57:96:
83:bf:ee:17:fe:ea:d0:67:95:1f:aa:a6:38:7c:dc:
5d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:CA:CF:0B:99:13:FF:8C:60:5B:0E:08:DB:41:D4:54:7D:80:FB:FF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XcrPC5kT_4xgWw4I20HUVH2A-_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.56.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:f8:2c:c9:e4:62:2f:1a:25:6f:a3:12:b4:b2:c0:d6:08:05:
78:6c:4d:15:e8:a4:8e:5f:d4:66:01:16:82:0f:68:f0:3e:f1:
45:fa:9a:4b:4e:1c:a5:2a:25:82:8f:06:43:0e:4f:69:5e:8d:
27:66:5e:79:fe:11:61:70:a5:e0:8f:0e:32:58:b6:5a:a3:ec:
47:78:5f:84:2e:1a:ee:5f:55:b9:c0:5c:ef:c4:dd:96:4f:62:
d1:61:4a:e5:81:20:c7:83:99:53:fb:fc:80:d5:46:c2:e3:de:
54:21:1e:c6:eb:fc:b9:7f:96:8d:4f:56:51:ca:9e:34:69:dc:
ac:03:8f:37:bb:a5:dc:94:c4:e6:54:12:77:12:5f:7a:0c:db:
53:4e:b2:2f:12:51:3f:dd:d1:63:83:70:a0:03:5a:30:9a:62:
4b:c4:74:e1:78:17:9f:33:16:2c:bd:da:cf:d7:c6:88:ec:0b:
82:b6:94:06:1e:69:42:32:b7:79:82:71:c0:2d:99:b9:42:fa:
21:db:d7:88:68:49:23:4e:b6:3c:44:ec:aa:f0:af:d4:27:c6:
70:48:97:fb:8b:92:fa:15:59:19:b6:a3:8d:c9:b8:f5:2f:d3:
1b:bd:5c:61:f6:b1:fc:0d:a9:28:31:95:2a:62:cf:a4:47:23:
da:70:45:38
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICF6QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVEQ0FDRjBCOTkxM0ZG
OEM2MDVCMEUwOERCNDFENDU0N0Q4MEZCRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCULx0EIfTdlY1zXs8SOdvictCiorCL3f3KY3bxHIP6t42xaIz9
ngbzfLhLcWd4Uuk5Hdt6s5NWJNeMrb+JgKiFAcdqru8oZGe+bfxqIh2Vv5m6i5IM
fAHuym1D0+GpkpIKfmb7TPqVtEK44IgBgUDosAZMMZtPp4nLKs5R3hVqz1IVwOgE
iwmK1jFZqrBfsFWk1E5e0RYVEk2c6/BG1C3t+4v2Hk5NXDAxo6fIVk8sPgBrB6W8
D2EzJVWV75fILGDXvd1DlDcy5nmXdUVZ1yUjBZGxrhFZKUXXgoyj8nhJEb0K+XVR
X6zkcwdN4x1XloO/7hf+6tBnlR+qpjh83F2BAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUXcrPC5kT/4xgWw4I20HUVH2A+/8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWGNyUEM1a1RfNHhnV3c0STIwSFVW
SDJBLV84LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNODAN
BgkqhkiG9w0BAQsFAAOCAQEAwfgsyeRiLxolb6MStLLA1ggFeGxNFeikjl/UZgEW
gg9o8D7xRfqaS04cpSolgo8GQw5PaV6NJ2Zeef4RYXCl4I8OMli2WqPsR3hfhC4a
7l9VucBc78Tdlk9i0WFK5YEgx4OZU/v8gNVGwuPeVCEexuv8uX+WjU9WUcqeNGnc
rAOPN7ul3JTE5lQSdxJfegzbU06yLxJRP93RY4NwoANaMJpiS8R04XgXnzMWLL3a
z9fGiOwLgraUBh5pQjK3eYJxwC2ZuUL6IdvXiGhJI062PETsqvCv1CfGcEiX+4uS
+hVZGbajjcm49S/TG71cYfax/A2pKDGVKmLPpEcj2nBFOA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 11:37:12 2025 by rpki-client