Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zKD4YyefIqPkQPQESTbwkQLmQTs.roa
File: zKD4YyefIqPkQPQESTbwkQLmQTs.roa (raw, json)
Hash identifier: Tr3/g0RvaugYj6RiRT2lNWVoGZ3oGEKZPkneMhKLEhw=
Subject key identifier: CC:A0:F8:63:27:9F:22:A3:E4:40:F4:04:49:36:F0:91:02:E6:41:3B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1848
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zKD4YyefIqPkQPQESTbwkQLmQTs.roa
Signing time: Mon 10 Feb 2025 14:07:46 +0000
ROA not before: Mon 10 Feb 2025 14:07:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 221.169.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6216 (0x1848)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CCA0F863279F22A3E440F4044936F09102E6413B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c3:14:a3:57:0a:96:ec:d0:e3:db:12:4f:82:
65:56:df:6b:6b:5f:3c:da:93:5d:cc:0c:81:e5:76:
b7:06:a1:d3:88:83:99:d0:68:ca:93:b2:d6:65:61:
65:1a:6d:9b:51:80:f2:45:f8:8a:25:53:04:f9:82:
15:fc:bc:60:6f:c3:e8:11:e3:c9:6a:fb:f3:ce:6f:
eb:f4:91:cc:7c:12:05:c9:c4:f1:1a:a2:67:4f:3b:
92:84:f1:f2:5e:eb:db:e3:20:af:19:18:5f:32:0e:
37:59:99:8f:d5:ff:d5:aa:a2:60:c7:6f:b6:06:c8:
35:79:dc:1b:2a:62:a2:fe:04:b3:d0:91:5c:b3:bc:
0a:c7:00:29:9d:b6:57:b2:20:a2:a8:30:a4:69:7d:
55:6d:cc:4a:01:6a:bb:02:af:91:a2:6d:8f:f6:8d:
74:d6:11:f6:6b:01:be:dc:ce:99:df:1b:4b:4c:e3:
63:1c:0f:df:cf:ae:90:6c:ab:29:f1:04:9e:e5:eb:
b8:b2:d5:4c:70:32:a1:06:5f:3b:2d:93:8e:7b:03:
73:98:04:5e:6e:de:ed:d3:32:bf:f7:49:62:de:29:
c3:b2:05:2e:64:68:c7:b9:8e:81:31:1a:1f:a5:dd:
b8:39:6a:43:7a:26:5b:77:cd:fa:38:83:e4:87:53:
ea:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A0:F8:63:27:9F:22:A3:E4:40:F4:04:49:36:F0:91:02:E6:41:3B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zKD4YyefIqPkQPQESTbwkQLmQTs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:41:04:79:77:c0:a7:fa:7e:0b:57:25:2d:2e:91:f4:00:6a:
10:76:14:12:59:c7:85:2f:8d:9c:ff:08:2e:6a:fd:26:b5:8f:
c9:cb:c4:54:4b:8c:73:19:4b:2f:8d:d6:79:ec:dc:99:f1:38:
11:ea:8f:4d:37:0d:1e:53:33:df:08:d2:f7:3f:64:71:75:b0:
65:c5:e7:30:7d:66:a5:85:b7:5e:98:28:ea:5e:01:30:71:69:
fe:5e:e0:9a:3c:bd:22:44:d8:99:91:70:93:bd:aa:67:9c:ef:
c3:9b:94:19:7d:77:2e:5a:10:03:68:39:90:cc:9e:16:eb:14:
48:9d:1d:b0:3c:f0:c1:6b:2e:a6:94:8a:d0:5d:07:73:ae:90:
7e:27:1d:05:f9:12:4e:2e:96:36:36:55:e4:04:e2:7c:3c:cc:
ea:18:5c:ae:57:19:c6:68:dd:a4:d5:8b:79:4b:ab:49:be:4a:
4d:4d:6d:fd:e4:f1:a2:e2:bc:10:27:83:a4:b9:de:b4:02:d7:
bf:1b:5d:be:f2:27:d4:a1:aa:9d:1f:5a:b1:95:64:3a:dd:b6:
a2:83:74:b4:bd:40:1f:2f:0a:fd:e5:86:2d:83:90:46:b7:66:
4e:8c:b0:5b:47:a4:23:12:ee:b4:5b:70:dd:eb:c7:3b:39:01:
9c:f7:70:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:57:17 2025 by rpki-client