Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bcAdn6YEnk9LJgcp3ppNnRpH_RA.roa
File: bcAdn6YEnk9LJgcp3ppNnRpH_RA.roa (raw, json)
Hash identifier: Gbn7UN303b7Chwu1fsMgXf6MrYNFknR7eixrfsJecu8=
Subject key identifier: 6D:C0:1D:9F:A6:04:9E:4F:4B:26:07:29:DE:9A:4D:9D:1A:47:FD:10
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1871
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bcAdn6YEnk9LJgcp3ppNnRpH_RA.roa
Signing time: Mon 10 Feb 2025 14:07:57 +0000
ROA not before: Mon 10 Feb 2025 14:07:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 175.183.254.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6257 (0x1871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6DC01D9FA6049E4F4B260729DE9A4D9D1A47FD10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5f:9c:50:3e:74:1c:d0:01:a2:25:19:25:8d:
87:fb:c8:6e:94:97:9b:2a:ab:ea:ab:00:e2:91:b3:
d4:43:48:2d:5c:9c:a0:07:e8:93:cc:1d:f9:9a:ca:
e0:e3:f8:55:62:01:5d:56:a5:09:2b:5d:58:d9:0b:
22:bb:2d:e3:fd:99:08:30:3a:f6:1b:37:c5:cf:01:
a1:39:ce:6f:2d:dc:f5:09:74:f0:67:26:d8:72:46:
91:10:ad:9a:d8:b9:56:43:af:95:b3:27:c0:a1:12:
71:f3:03:7f:ea:83:90:48:1a:ba:35:e6:24:8f:e4:
12:bb:31:a5:f7:2b:3c:45:91:14:41:40:57:db:d8:
84:ac:f7:c5:15:4b:fd:c9:65:e5:13:a6:2e:4c:59:
69:ed:3f:3b:a2:02:d2:ba:83:38:c2:b4:c0:51:c7:
bd:26:d1:34:6d:b4:da:3e:44:48:26:c1:69:81:14:
98:c2:d9:18:a2:7d:93:6b:c5:21:f5:b4:4b:c1:e8:
48:80:d6:e1:78:26:49:7a:41:8a:97:f6:00:c8:c2:
e4:aa:08:eb:0c:1e:a2:c8:c6:50:a4:d1:94:c4:9b:
0f:29:32:32:22:68:ba:69:40:b9:0d:3c:76:21:29:
9c:23:9a:05:32:75:83:d9:38:6c:be:f4:1c:2e:a7:
5a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C0:1D:9F:A6:04:9E:4F:4B:26:07:29:DE:9A:4D:9D:1A:47:FD:10
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bcAdn6YEnk9LJgcp3ppNnRpH_RA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.254.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:0c:26:44:7a:19:4f:f9:bd:aa:17:a1:be:19:1e:1f:18:ef:
77:a8:8e:f1:6f:01:e8:ba:b0:62:ba:90:7c:1d:f6:8d:f8:91:
c7:d2:63:13:a9:db:11:de:6b:a1:e9:b5:29:01:6b:89:82:df:
ca:b2:ca:18:de:dd:b0:8f:9f:99:26:cd:bc:51:85:18:2b:d3:
c8:2b:b7:cf:06:1f:18:16:7d:60:20:79:3f:38:1d:6f:ec:ea:
90:70:24:9b:92:c5:7c:a2:da:d1:74:28:44:31:2a:4d:a8:de:
e1:cf:ce:93:59:ef:30:ce:26:71:e0:d6:c7:fd:17:03:ea:b4:
51:1d:2c:61:12:70:80:b8:07:24:47:1a:53:d6:d9:f0:d3:3c:
b4:bd:ec:94:eb:39:19:9a:ea:4d:f2:ef:b2:36:cc:c0:52:d5:
7c:91:f2:39:bf:38:89:ea:2b:e1:f0:39:ce:24:5c:cf:0c:d1:
3e:bd:1b:9a:93:fe:67:6d:db:4d:4a:bf:cc:96:58:15:df:9b:
cc:c7:d2:0e:f6:a9:f2:ae:dd:96:c6:cd:88:5a:97:f1:1c:14:
5a:8f:c4:8d:ae:37:f1:47:97:94:8c:8f:73:b0:1f:27:f0:70:
79:1d:9a:b3:a0:7b:a3:fb:8a:36:0c:33:3d:ae:ad:8f:49:78:
90:01:97:d5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICGHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF
NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx
NDA3NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZEQzAxRDlGQTYwNDlF
NEY0QjI2MDcyOURFOUE0RDlEMUE0N0ZEMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAX5xQPnQc0AGiJRkljYf7yG6Ul5sqq+qrAOKRs9RDSC1cnKAH
6JPMHfmayuDj+FViAV1WpQkrXVjZCyK7LeP9mQgwOvYbN8XPAaE5zm8t3PUJdPBn
JthyRpEQrZrYuVZDr5WzJ8ChEnHzA3/qg5BIGro15iSP5BK7MaX3KzxFkRRBQFfb
2ISs98UVS/3JZeUTpi5MWWntPzuiAtK6gzjCtMBRx70m0TRttNo+REgmwWmBFJjC
2RiifZNrxSH1tEvB6EiA1uF4Jkl6QYqX9gDIwuSqCOsMHqLIxlCk0ZTEmw8pMjIi
aLppQLkNPHYhKZwjmgUydYPZOGy+9Bwup1rRAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUbcAdn6YEnk9LJgcp3ppNnRpH/RAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu
MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i
dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYmNBZG42WUVuazlMSmdjcDNwcE5u
UnBIX1JBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAa+3/jAN
BgkqhkiG9w0BAQsFAAOCAQEACwwmRHoZT/m9qhehvhkeHxjvd6iO8W8B6LqwYrqQ
fB32jfiRx9JjE6nbEd5roem1KQFriYLfyrLKGN7dsI+fmSbNvFGFGCvTyCu3zwYf
GBZ9YCB5Pzgdb+zqkHAkm5LFfKLa0XQoRDEqTaje4c/Ok1nvMM4mceDWx/0XA+q0
UR0sYRJwgLgHJEcaU9bZ8NM8tL3slOs5GZrqTfLvsjbMwFLVfJHyOb84ieor4fA5
ziRczwzRPr0bmpP+Z23bTUq/zJZYFd+bzMfSDvap8q7dlsbNiFqX8RwUWo/Eja43
8UeXlIyPc7AfJ/BweR2as6B7o/uKNgwzPa6tj0l4kAGX1Q==
-----END CERTIFICATE-----
Generated at Mon Apr 14 03:10:00 2025 by rpki-client