Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3pni87PHA7ASebgy5D1tV0ToCeg.roa
File: 3pni87PHA7ASebgy5D1tV0ToCeg.roa (raw, json)
Hash identifier: XzbKd0wsJxTFo7WFfWJw8Pbgq9oyngy6Si63cqdA3X8=
Subject key identifier: DE:99:E2:F3:B3:C7:03:B0:12:79:B8:32:E4:3D:6D:57:44:E8:09:E8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 187D
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3pni87PHA7ASebgy5D1tV0ToCeg.roa
Signing time: Mon 10 Feb 2025 14:07:59 +0000
ROA not before: Mon 10 Feb 2025 14:07:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131611
IP address blocks: 218.32.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6269 (0x187d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DE99E2F3B3C703B01279B832E43D6D5744E809E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:48:72:2c:81:20:5f:2c:22:30:23:ba:47:e9:
ee:f2:38:12:15:5f:96:f2:7c:31:15:18:a2:8c:ae:
2f:9c:a5:62:20:1d:c8:07:b4:5c:ae:1e:0e:00:d6:
cd:87:75:8d:1a:81:05:3b:6b:fc:e5:f7:b5:88:1b:
98:77:a0:e0:71:fe:41:0f:4d:86:ec:59:52:b3:57:
6e:e7:e7:74:44:48:6b:cf:a1:9e:bb:fa:7d:7a:2a:
11:57:07:eb:79:92:5a:b6:dd:c0:8d:aa:b2:ac:d5:
7c:49:08:9e:58:7d:3a:a1:19:96:86:9d:d9:be:97:
39:32:a6:e1:d8:75:f6:e5:50:90:63:5f:3f:ac:45:
70:cf:35:80:6a:97:94:3e:d9:fa:09:9e:88:91:c8:
81:ab:a0:b0:01:5e:f0:89:90:68:35:29:29:65:29:
c2:b4:7a:eb:48:8a:c5:5c:a3:9c:a8:12:3b:87:67:
91:cd:78:48:8a:8d:dc:ed:0e:4d:b9:c0:7b:e5:1a:
e8:07:c2:fd:34:9a:12:6b:93:2a:23:05:0b:7c:d0:
e2:9c:79:ac:3c:21:70:0a:86:e6:6b:57:b5:43:ad:
54:5e:af:1d:80:ea:76:de:fc:e4:63:3d:1d:50:d7:
d1:85:5c:56:81:32:2e:e6:6a:99:95:4f:c0:05:b1:
83:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:99:E2:F3:B3:C7:03:B0:12:79:B8:32:E4:3D:6D:57:44:E8:09:E8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3pni87PHA7ASebgy5D1tV0ToCeg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.96.0/19
Signature Algorithm: sha256WithRSAEncryption
75:c5:ae:f6:20:0d:04:1b:db:df:38:65:57:d3:21:77:3c:4f:
02:ea:10:9d:e1:8e:9e:b1:ed:f2:82:b2:57:76:ad:d4:e8:8f:
7c:64:a5:26:c4:ac:0f:0c:58:a6:e7:bd:fd:97:e0:b9:60:8a:
b2:8d:9c:42:c0:04:14:7e:1a:10:52:c6:00:86:02:ba:60:71:
85:96:5c:cf:e4:90:01:f7:60:2c:60:36:2f:36:79:24:cb:5a:
58:ef:73:f7:62:45:4f:c7:bc:82:d7:03:8c:cc:8f:74:6c:d8:
b1:a9:36:c8:df:9a:42:c4:a9:6e:dc:6a:24:64:cb:4f:44:41:
b7:67:83:0b:9d:1c:49:42:b2:7d:28:15:c3:88:59:d9:f9:bd:
ac:c3:af:3b:a5:92:d6:8c:a5:c1:7d:db:f2:25:fa:cd:8f:71:
ed:b1:f1:99:c0:c5:df:11:b1:e8:ec:8b:8c:c4:99:a0:64:ae:
89:fe:43:55:f4:74:51:3b:e7:4e:bc:fa:4a:4f:ad:76:37:3c:
fb:60:63:be:87:a6:a6:85:13:72:0e:67:80:0d:46:e5:78:01:
2e:46:86:08:18:33:98:38:34:a4:82:ad:61:95:b2:5d:8e:f7:
d1:4f:85:4f:0e:3f:80:33:76:ed:e2:e2:5c:e6:b3:f1:82:30:
78:5a:56:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:41:50 2025 by rpki-client