Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/38ZFch07dW1fYLRDpzQq8sV0x-o.roa
File: 38ZFch07dW1fYLRDpzQq8sV0x-o.roa (raw, json)
Hash identifier: PwSqsXV65gGpg6LJ+ar8KDk3SfGtkwife8mDTN8mlps=
Subject key identifier: DF:C6:45:72:1D:3B:75:6D:5F:60:B4:43:A7:34:2A:F2:C5:74:C7:EA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17D2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/38ZFch07dW1fYLRDpzQq8sV0x-o.roa
Signing time: Mon 10 Feb 2025 14:07:17 +0000
ROA not before: Mon 10 Feb 2025 14:07:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 122.147.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6098 (0x17d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DFC645721D3B756D5F60B443A7342AF2C574C7EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c4:a5:8d:75:22:9e:ab:5e:37:3a:ae:47:58:
3c:42:4c:e8:7e:31:5b:28:84:0d:e2:ba:ae:8b:e9:
60:e0:c0:7e:fd:ea:06:c6:e9:40:32:b7:e2:68:1f:
1b:b6:f5:c1:f0:e4:63:29:27:3e:c1:7c:48:0b:81:
2e:8b:e2:a4:92:3d:cc:e4:49:58:6c:80:27:11:02:
35:fe:91:60:6e:46:2c:b5:52:34:9d:8d:9a:fd:a2:
4a:46:8a:6a:33:86:18:cb:89:b7:ad:d4:05:05:37:
a4:1f:07:be:ff:c0:c8:7a:34:cc:c2:5e:9e:9a:49:
a9:36:f5:93:4c:2a:e0:5e:76:ad:42:7c:5d:6a:ea:
26:c3:e2:f9:16:14:8c:2f:2f:9e:14:0c:48:5b:95:
8d:4b:f5:6f:05:3c:83:4e:be:45:9d:9f:66:ed:23:
28:d2:67:44:17:41:af:95:0f:3e:a9:8d:cf:64:63:
19:26:bb:e8:7d:f5:5e:85:ea:ea:76:7b:87:22:55:
86:1b:11:5f:f4:df:b0:a0:a1:86:3e:2e:8e:62:6d:
af:ea:04:57:f5:bc:d2:e3:cb:57:95:ae:92:7b:27:
9c:f2:a6:53:a5:f6:29:96:fa:f6:ab:e1:77:87:16:
a9:46:59:1e:92:9c:6b:a3:be:7d:f9:5d:d2:a2:3b:
28:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C6:45:72:1D:3B:75:6D:5F:60:B4:43:A7:34:2A:F2:C5:74:C7:EA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/38ZFch07dW1fYLRDpzQq8sV0x-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:31:2f:b3:89:89:a1:85:c6:36:bf:65:8b:b6:07:33:32:03:
86:be:c3:51:48:bb:96:bb:00:11:e1:9d:53:76:6a:6d:22:e8:
4a:8b:b9:8b:b3:b3:b2:75:d2:1d:98:d2:3a:97:90:7e:05:02:
5c:c5:18:44:28:c9:91:77:df:a2:06:39:20:3e:7a:3c:dd:e2:
86:ee:26:e2:89:c6:78:4e:5b:ee:8a:f1:a5:2e:06:26:93:9c:
4a:5f:c6:98:23:b2:93:8a:fd:50:35:55:c3:b3:a3:41:54:db:
b0:85:a7:ea:ef:1d:10:53:ec:48:80:08:21:07:ad:97:13:99:
87:a6:77:11:4f:74:5f:19:d5:5b:5f:57:e2:98:f9:fe:ef:84:
16:60:c8:8a:e6:ab:dc:88:e8:aa:42:3d:5e:2a:19:10:dc:30:
64:ec:1f:6a:46:1c:04:64:22:a6:73:07:b7:10:cb:ce:b8:a9:
7b:b5:50:c3:2e:dd:39:9c:e5:e7:cf:d2:45:65:e8:b5:63:88:
57:91:41:4b:3d:f2:b8:e5:29:f2:e4:33:5a:2c:a8:67:e4:f8:
01:92:a7:5c:3f:be:a9:7f:65:93:32:5d:f5:6c:d3:08:0f:19:
a7:c1:e5:10:76:b9:62:52:97:ea:8a:5e:85:1e:fc:fd:19:4c:
1e:1c:66:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:07:50 2025 by rpki-client