Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-HZHWHPFSZGd3XuF7TYZHMdW0D8.roa
File: -HZHWHPFSZGd3XuF7TYZHMdW0D8.roa (raw, json)
Hash identifier: CPsYxtZIPCvt077EkwyUzZ0gDEtfq5X4it+YMJ+Ba0k=
Subject key identifier: F8:76:47:58:73:C5:49:91:9D:DD:7B:85:ED:36:19:1C:C7:56:D0:3F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17B3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-HZHWHPFSZGd3XuF7TYZHMdW0D8.roa
Signing time: Mon 10 Feb 2025 14:07:10 +0000
ROA not before: Mon 10 Feb 2025 14:07:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 175.180.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6067 (0x17b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F876475873C549919DDD7B85ED36191CC756D03F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:41:fd:f4:a6:c6:c0:41:b7:bd:96:3a:61:a8:
d5:5f:9e:62:21:39:b8:ca:02:2b:1f:0e:7c:14:7a:
0f:d5:38:d9:32:b9:3a:2d:82:75:fe:87:ad:99:09:
9d:c8:dd:ae:0f:aa:34:af:66:a6:af:b5:4e:3d:db:
ea:6a:70:29:89:da:18:84:09:33:af:9e:2b:ab:51:
f0:48:cc:d6:de:f1:4b:03:c9:79:32:67:a7:88:f4:
ab:f2:64:81:de:03:5f:31:11:51:8a:e3:de:d3:67:
5f:ca:bf:76:69:79:05:37:2c:f5:fa:45:06:df:f5:
ae:bd:ea:ba:a8:9f:68:26:a0:31:7c:55:95:ed:85:
46:08:4c:e1:30:a2:23:98:ee:da:48:6c:ee:be:3c:
02:f4:fb:66:c2:5b:af:d8:fb:4f:87:e7:6a:5d:3f:
ef:cf:e5:29:0c:31:4f:d8:3a:37:79:5c:c6:43:5f:
c0:b5:ce:67:0a:8f:cf:ff:2c:84:17:1d:8d:70:ca:
11:39:5b:12:5e:50:25:6d:96:c1:80:20:52:3b:16:
cd:b5:c5:1f:57:fb:c0:11:3f:32:a0:4a:66:f7:c2:
17:0b:7b:b5:ff:ff:77:63:bc:fc:c3:38:6d:7d:69:
d3:a9:01:ed:0b:68:45:a6:cf:c6:20:3a:78:57:97:
a0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:76:47:58:73:C5:49:91:9D:DD:7B:85:ED:36:19:1C:C7:56:D0:3F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-HZHWHPFSZGd3XuF7TYZHMdW0D8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.180.0.0/14
Signature Algorithm: sha256WithRSAEncryption
17:f0:b0:36:90:a4:a5:a4:53:3e:d4:b1:39:67:90:48:79:46:
13:c2:b0:50:4f:c9:84:71:c7:92:e5:16:7d:29:08:b3:eb:28:
7e:fb:8c:bf:12:d5:a3:43:93:85:e4:6a:bb:5d:86:90:2c:89:
9f:f9:83:95:e4:0d:54:8f:06:14:ff:de:35:25:d4:5f:65:90:
90:2f:47:df:01:6f:37:33:32:31:ae:3c:e8:75:3a:fa:7b:13:
33:f8:ed:8b:27:97:16:20:e8:ff:42:41:73:05:a7:66:90:13:
24:06:12:48:3f:7b:f7:fa:56:89:25:ed:fb:f7:e7:1f:28:91:
26:ab:ae:b1:ad:15:d2:57:01:9d:e6:64:11:7a:70:55:4a:44:
60:e1:18:84:25:64:27:89:0b:1a:7f:0a:96:35:55:3c:c1:c0:
8a:9a:9e:04:37:8b:69:e1:ff:07:d2:6c:da:ea:33:58:a3:3c:
46:99:2e:66:2d:b1:b5:5a:3b:c9:26:9a:38:0f:10:b6:3d:3f:
e0:f9:dd:cd:fb:4a:ee:8f:54:6f:b4:1d:d8:e3:15:3a:cf:26:
00:99:58:de:a0:25:b1:4e:49:c1:53:5a:da:81:15:a9:18:75:
56:1b:ee:4a:0e:d0:82:e4:68:ef:b9:4f:46:3c:14:37:0b:49:
16:b1:f0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:33 2025 by rpki-client