Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/12GJS6gpEYlb7Atdyva8PWTKaiI.roa
File: 12GJS6gpEYlb7Atdyva8PWTKaiI.roa (raw, json)
Hash identifier: oWKuqvHxFbnEYBDMZWfKVd8ByeLXI6Pvpj2tPv5eSqg=
Subject key identifier: D7:61:89:4B:A8:29:11:89:5B:EC:0B:5D:CA:F6:BC:3D:64:CA:6A:22
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1322
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/12GJS6gpEYlb7Atdyva8PWTKaiI.roa
Signing time: Fri 01 Sep 2023 09:24:31 +0000
ROA not before: Fri 01 Sep 2023 09:24:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 220.228.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4898 (0x1322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D761894BA82911895BEC0B5DCAF6BC3D64CA6A22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:74:9e:87:1d:37:2f:40:ac:8e:d8:6a:8a:80:
67:f9:f7:ce:2a:9c:1d:4d:25:d8:d0:bd:80:89:f3:
14:9d:98:e4:6e:de:03:69:74:19:28:be:9f:7e:bf:
8f:a4:f5:e7:80:7d:bf:fc:7f:80:d2:11:e3:f6:0c:
65:4f:78:f2:64:b4:a2:46:10:05:de:6e:a5:16:04:
d0:4a:53:3f:7a:63:f9:0e:c4:9e:96:50:b5:d0:3c:
28:b0:03:32:81:aa:e1:7b:78:e5:0d:cd:6f:93:c9:
3f:9b:b4:4c:27:bd:88:46:29:b0:52:98:f6:bb:31:
7a:2d:f1:25:78:b8:b9:ed:ed:be:65:e5:dd:ce:46:
3e:53:f0:e8:03:9f:c8:8c:01:c9:41:30:4b:96:03:
fa:c9:7d:63:8c:e7:ee:ac:70:14:e8:24:a7:fc:ea:
cd:0b:2c:2f:ec:ce:0b:ce:f4:b5:85:07:bd:cc:7a:
84:bc:f1:28:5b:4d:a6:fa:56:15:43:c9:51:20:3b:
51:cd:6a:d2:54:d3:3c:bf:e3:cd:2c:8c:64:ee:a5:
26:a7:4d:74:94:c4:54:1f:99:c8:21:89:31:73:d2:
b8:1d:ff:af:63:aa:73:61:9c:9a:df:ee:ca:73:16:
7a:ba:3c:cd:58:70:e0:87:5c:93:95:f7:46:50:78:
00:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:61:89:4B:A8:29:11:89:5B:EC:0B:5D:CA:F6:BC:3D:64:CA:6A:22
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/12GJS6gpEYlb7Atdyva8PWTKaiI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.228.0.0/15
Signature Algorithm: sha256WithRSAEncryption
37:5e:2e:d7:d6:b1:f8:ec:ad:88:de:28:07:02:02:4d:f9:4f:
7c:47:96:1d:8a:aa:6e:67:fa:29:30:f9:ce:fb:8a:af:c9:b2:
45:7c:53:c8:f4:30:6e:d3:74:4c:ab:1d:b8:85:77:26:89:ae:
e7:67:9a:00:10:3b:c1:aa:10:2e:8b:55:e8:45:81:34:7f:47:
ac:27:5b:bb:c0:68:69:d8:a8:32:36:70:aa:9b:55:a0:70:47:
5c:cb:74:f1:90:57:a0:1f:9c:db:69:36:d5:da:55:ff:73:2c:
c6:97:ea:3d:8c:41:76:01:54:22:a9:b0:0a:8c:e5:2f:6a:57:
8a:43:25:ca:1f:5b:c4:c9:9a:40:cf:ac:aa:bc:df:76:b6:d1:
f5:00:5c:9e:90:f1:2f:66:47:2d:e0:82:46:6c:52:f9:03:a1:
fa:a6:57:ee:64:5e:57:7c:cc:ec:a4:50:5c:28:d3:52:cd:df:
86:3f:7b:65:3e:43:6e:ea:14:9f:4e:85:d6:9e:10:0e:0f:47:
27:4b:54:36:d1:02:2c:dd:0d:77:d8:49:10:33:d2:de:12:9c:
e4:32:09:bb:1a:04:79:a0:2f:e0:53:a7:53:19:23:3e:a5:e3:
7c:bc:db:07:6f:9c:08:ec:94:c6:f0:8b:dc:b4:bb:f4:ed:9c:
5e:38:89:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:17:04 2025 by rpki-client