Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_9bqKwOfPxRAJJfwW6BvnZ3RPFA.roa
File: _9bqKwOfPxRAJJfwW6BvnZ3RPFA.roa (raw, json)
Hash identifier: 96B22QMOk7PN5Elg+P6a6rlckMttOfkyWMj1Sb6uMqI=
Subject key identifier: FF:D6:EA:2B:03:9F:3F:14:40:24:97:F0:5B:A0:6F:9D:9D:D1:3C:50
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1787
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_9bqKwOfPxRAJJfwW6BvnZ3RPFA.roa
Signing time: Mon 10 Feb 2025 14:06:59 +0000
ROA not before: Mon 10 Feb 2025 14:06:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 115.30.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6023 (0x1787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FFD6EA2B039F3F14402497F05BA06F9D9DD13C50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e5:8d:d9:ee:92:e0:6f:c9:74:c6:cc:a3:b0:
4b:3c:c6:ef:ee:01:a9:52:91:0a:15:c4:1f:95:9e:
b3:7f:be:52:09:87:c9:57:f8:6e:27:8a:75:a1:44:
c4:2c:23:b2:7f:06:23:b9:03:a2:d6:14:7d:e3:d5:
14:cb:82:9e:e2:8f:0b:7b:8e:74:78:78:30:15:d4:
20:1b:ae:18:46:94:af:ee:98:06:a0:c4:87:88:73:
35:47:11:55:71:e7:98:f2:46:ec:a2:31:25:e2:89:
9d:64:4b:2f:68:36:53:ce:81:53:df:73:98:73:10:
a2:b7:d5:c3:44:73:8c:ec:e5:22:b5:e6:1a:09:b7:
6a:4a:2b:0e:57:44:53:b8:f6:e9:a9:80:a7:a5:b5:
02:d7:58:3a:57:de:c8:62:42:41:d3:e0:6d:43:13:
d8:82:83:be:00:20:8d:a4:da:d5:67:07:30:a6:a0:
a0:85:0d:6a:16:6b:5b:7d:1b:6d:f7:a7:fc:7a:68:
6b:42:b2:7c:cb:9b:9a:5c:14:6b:22:46:cd:e5:42:
14:a6:64:aa:3a:23:33:0a:9f:fd:05:4f:68:58:23:
ed:8a:4c:2c:f9:bb:1a:21:82:80:04:70:46:35:5d:
dd:37:66:2f:8c:78:a7:8f:c5:7c:39:4e:cb:09:24:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D6:EA:2B:03:9F:3F:14:40:24:97:F0:5B:A0:6F:9D:9D:D1:3C:50
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_9bqKwOfPxRAJJfwW6BvnZ3RPFA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.30.64.0/18
Signature Algorithm: sha256WithRSAEncryption
63:11:94:84:c8:7d:b6:44:50:4f:0f:a2:ef:e4:5f:95:99:03:
14:1e:6d:b2:44:0e:40:36:25:4c:d4:05:37:fd:59:19:36:1b:
70:22:68:be:7a:19:1f:7e:7e:b8:d9:8b:ab:27:65:8d:25:74:
05:ea:8d:f0:5d:7f:b7:0f:e3:e8:ef:1e:da:a8:0b:02:7f:74:
9d:ce:ca:07:96:48:24:71:23:69:6f:52:08:53:f2:6b:30:f5:
14:57:9e:6d:c7:fb:6c:96:f6:3d:8c:82:3f:b8:14:41:64:35:
81:f2:c9:df:6c:2f:7e:8a:21:43:77:36:e2:02:04:23:f8:aa:
ad:10:af:ff:82:35:db:05:a5:57:35:d4:8f:23:e7:87:f9:35:
24:ed:8a:3c:e0:58:31:fc:72:14:fb:f3:86:f9:f2:97:b2:e3:
a0:ca:35:40:38:fc:b5:aa:26:cb:c1:d0:4f:1e:f4:92:4b:cf:
55:67:c0:11:93:c9:90:5a:de:56:b6:b6:6b:84:64:bd:b9:a3:
27:e8:ff:c0:3c:94:f8:81:68:5d:1b:36:2d:9a:2f:47:c4:9e:
a3:00:dd:d2:8b:ca:0d:d0:cd:88:73:89:5e:3e:04:bc:f8:4a:
b2:d4:36:99:ba:66:a4:a7:ed:95:33:8e:56:a4:04:98:49:d1:
9a:bb:55:22
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICF4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA2NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZGRDZFQTJCMDM5RjNG
MTQ0MDI0OTdGMDVCQTA2RjlEOUREMTNDNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDB5Y3Z7pLgb8l0xsyjsEs8xu/uAalSkQoVxB+VnrN/vlIJh8lX
+G4ninWhRMQsI7J/BiO5A6LWFH3j1RTLgp7ijwt7jnR4eDAV1CAbrhhGlK/umAag
xIeIczVHEVVx55jyRuyiMSXiiZ1kSy9oNlPOgVPfc5hzEKK31cNEc4zs5SK15hoJ
t2pKKw5XRFO49umpgKeltQLXWDpX3shiQkHT4G1DE9iCg74AII2k2tVnBzCmoKCF
DWoWa1t9G233p/x6aGtCsnzLm5pcFGsiRs3lQhSmZKo6IzMKn/0FT2hYI+2KTCz5
uxohgoAEcEY1Xd03Zi+MeKePxXw5TssJJBJpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU/9bqKwOfPxRAJJfwW6BvnZ3RPFAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvXzlicUt3T2ZQeFJBSkpmd1c2QnZu
WjNSUEZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnMeQDAN
BgkqhkiG9w0BAQsFAAOCAQEAYxGUhMh9tkRQTw+i7+RflZkDFB5tskQOQDYlTNQF
N/1ZGTYbcCJovnoZH35+uNmLqydljSV0BeqN8F1/tw/j6O8e2qgLAn90nc7KB5ZI
JHEjaW9SCFPyazD1FFeebcf7bJb2PYyCP7gUQWQ1gfLJ32wvfoohQ3c24gIEI/iq
rRCv/4I12wWlVzXUjyPnh/k1JO2KPOBYMfxyFPvzhvnyl7LjoMo1QDj8taomy8HQ
Tx70kkvPVWfAEZPJkFreVra2a4RkvbmjJ+j/wDyU+IFoXRs2LZovR8SeowDd0ovK
DdDNiHOJXj4EvPhKstQ2mbpmpKftlTOOVqQEmEnRmrtVIg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:28 2025 by rpki-client