Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/03scMvhhJM4T8uYo45vUp1ZCfJ8.roa
File: 03scMvhhJM4T8uYo45vUp1ZCfJ8.roa (raw, json)
Hash identifier: cTdXybw6OOV+Vv/F+5DhIcCzV8bjoPOQWzX6tpBBhUw=
Subject key identifier: D3:7B:1C:32:F8:61:24:CE:13:F2:E6:28:E3:9B:D4:A7:56:42:7C:9F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17D9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/03scMvhhJM4T8uYo45vUp1ZCfJ8.roa
Signing time: Mon 10 Feb 2025 14:07:19 +0000
ROA not before: Mon 10 Feb 2025 14:07:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 106.105.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6105 (0x17d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D37B1C32F86124CE13F2E628E39BD4A756427C9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2b:92:c3:aa:f4:31:ba:16:73:24:78:85:48:
0c:df:5e:52:81:7f:7f:8e:fe:d4:dc:14:72:77:1f:
c8:03:7c:38:0e:8e:f8:22:c8:79:90:b2:9e:2f:88:
2f:75:54:02:bb:3b:fb:ea:a3:a7:0c:f7:30:2c:ec:
a5:2b:9d:fa:7e:36:84:35:ba:67:95:d2:a1:05:7e:
88:dc:8f:b2:de:7a:72:60:37:18:6c:4f:51:a0:23:
f6:0c:0f:1f:44:47:6c:c3:a4:8c:45:70:a1:db:d8:
f3:c8:b8:01:82:63:e1:4d:03:c7:5a:f7:30:a1:4b:
98:3f:24:75:8a:24:0c:1c:ee:a4:06:02:25:39:e9:
35:9c:41:63:c8:25:d7:04:7c:e5:47:89:c1:a1:23:
19:43:51:8c:82:eb:b7:7a:d4:0a:93:5f:08:55:e1:
ef:e9:93:4b:78:f3:ed:4e:25:3f:9b:8b:02:62:a2:
79:9d:a3:a7:5b:6a:55:d2:0e:d9:54:a2:06:b1:3d:
eb:d4:df:6e:18:16:68:94:ba:fa:84:55:59:fa:22:
a1:41:f2:30:41:cd:4f:56:e5:11:48:63:21:fb:40:
21:67:37:30:db:a1:16:cd:e2:ba:6e:dd:91:d9:bd:
2b:a7:10:20:c2:0f:f9:75:d5:bf:57:32:4a:68:d7:
81:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7B:1C:32:F8:61:24:CE:13:F2:E6:28:E3:9B:D4:A7:56:42:7C:9F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/03scMvhhJM4T8uYo45vUp1ZCfJ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.96.0/19
Signature Algorithm: sha256WithRSAEncryption
33:51:ae:db:4b:f3:24:b0:b0:f3:56:05:f8:57:d0:9d:61:01:
3b:d0:2f:c4:5d:11:2b:38:fe:fd:50:ed:46:1e:be:be:c1:bf:
4f:fb:c4:fa:53:a7:72:1a:74:c2:11:04:7f:7e:2f:07:dd:75:
4e:c0:e6:2f:b3:37:1f:4e:31:74:ee:03:34:f6:8d:3f:42:a0:
7c:9b:88:0a:08:80:b7:a9:92:fe:f2:59:e5:ee:65:06:57:79:
0c:5f:f4:77:18:cf:3b:76:c0:78:0a:d8:68:eb:0b:1d:de:49:
b1:26:35:4e:31:3a:e5:cc:97:9e:d9:aa:95:18:44:5a:a0:11:
b4:fd:f6:cb:75:5e:cd:43:b6:06:bd:eb:52:c4:02:d5:c8:d4:
c3:4c:ed:0d:ba:f0:6e:78:be:79:14:9f:b5:e6:44:e1:62:86:
e1:d9:55:e2:6c:24:8f:22:d4:b9:e6:fd:26:1f:d0:c5:f5:2a:
1b:9c:3d:3a:fe:eb:12:40:dd:23:f3:41:17:49:5b:1b:5a:90:
3a:01:70:28:70:64:06:ad:fa:f6:be:5f:e2:68:80:5f:71:97:
df:79:19:97:a9:66:13:73:47:b3:1f:ad:24:e3:fd:07:a4:1f:
95:0b:4d:de:a7:88:63:96:9b:d2:e8:aa:46:45:1e:bf:fc:84:
22:43:cc:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:22 2025 by rpki-client