Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7_ggW71ZfMvTeOD89_ZqLSzg_7Y.roa
File: 7_ggW71ZfMvTeOD89_ZqLSzg_7Y.roa (raw, json)
Hash identifier: 7ynAJJATX0YMMoXwqmOv8e/U0Dm7Z/7LcIVm2v5mkjw=
Subject key identifier: EF:F8:20:5B:BD:59:7C:CB:D3:78:E0:FC:F7:F6:6A:2D:2C:E0:FF:B6
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17E4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7_ggW71ZfMvTeOD89_ZqLSzg_7Y.roa
Signing time: Mon 10 Feb 2025 14:07:22 +0000
ROA not before: Mon 10 Feb 2025 14:07:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.107.192.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6116 (0x17e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EFF8205BBD597CCBD378E0FCF7F66A2D2CE0FFB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:5c:a4:3d:34:82:a7:c4:a0:a1:05:80:97:dd:
f1:3f:e2:29:cb:41:26:56:46:de:bb:c0:cc:61:28:
7f:55:43:6b:41:ed:df:a0:19:8c:ce:19:e2:0c:03:
d8:b6:d5:60:d5:54:16:57:8e:d6:14:a1:cc:c7:fd:
4d:98:0a:59:ef:f4:49:19:40:58:45:81:11:15:5c:
ed:e2:13:62:2f:ab:f0:e4:cd:8b:6c:b8:63:f5:7c:
c1:f0:d8:63:cb:a1:96:7f:d1:70:87:1e:c9:d9:c7:
8a:01:63:d1:3f:ff:89:bd:69:f0:f7:54:86:91:c6:
95:54:fc:eb:89:17:97:a1:8a:cd:d6:72:83:12:04:
e5:39:30:e2:0b:24:50:78:ce:4e:f2:3e:d5:f7:bb:
39:fc:2e:2f:fe:8e:29:13:c6:df:68:c1:e5:f0:b5:
8b:09:69:fa:fa:3c:9b:37:7e:ab:f7:00:45:9f:13:
8f:2d:64:22:2c:9b:e4:46:dd:e5:c0:56:40:0d:78:
ee:4d:f3:c1:f8:c6:b4:7a:60:75:9d:83:bf:e9:d2:
84:d5:ff:66:d4:fd:88:89:4d:07:bc:c5:94:62:97:
36:d2:f1:93:d8:99:79:5e:c8:bf:16:f6:2b:ab:22:
00:9c:b7:27:09:8a:92:df:df:ab:52:08:38:a6:3f:
98:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F8:20:5B:BD:59:7C:CB:D3:78:E0:FC:F7:F6:6A:2D:2C:E0:FF:B6
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7_ggW71ZfMvTeOD89_ZqLSzg_7Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.192.0/20
Signature Algorithm: sha256WithRSAEncryption
43:5c:dc:85:ed:3b:3a:7e:5d:59:85:d4:4f:4c:81:ce:18:dd:
85:bc:fc:5e:7d:3b:2b:bf:cb:f0:19:c6:57:17:ff:bf:05:19:
5c:fe:7e:a9:79:43:0c:f0:9b:0e:f3:43:6d:27:c1:be:91:96:
03:d8:47:0d:08:47:e7:c6:21:cf:72:00:0e:2b:ac:48:61:f1:
a6:8f:0d:07:54:04:4e:41:00:3d:5a:38:d3:c7:af:e1:cf:19:
f8:b2:aa:ec:21:d5:b7:53:83:25:c7:a0:27:2b:c4:a6:f9:2c:
77:ea:a5:4e:d4:b6:10:79:70:67:76:38:88:22:f6:06:3c:5e:
87:d9:bf:46:1c:56:3d:ed:7e:29:4a:1e:ec:4c:98:e0:9f:54:
fc:ee:85:a7:30:fe:3e:5e:85:94:33:ce:5e:17:a8:f3:90:61:
79:ed:be:98:a0:28:d9:3e:6c:1f:95:01:ca:57:e5:56:e4:e7:
c7:39:cb:83:4f:a5:c7:82:a5:cc:0a:2a:eb:b7:42:3d:95:e0:
cd:f8:c7:73:21:f6:5f:87:42:5a:ca:d6:f2:d9:55:c6:76:b7:
92:b1:a0:e8:34:e7:20:18:6b:43:d7:b4:4b:0f:6a:df:9f:a3:
8a:09:93:f7:8e:9b:db:67:de:fa:ae:3f:97:3e:87:01:a4:82:
47:67:dc:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:35 2025 by rpki-client