Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9NP0bt_tPMwqJ57rUJ4bwb6ZriQ.roa
File: 9NP0bt_tPMwqJ57rUJ4bwb6ZriQ.roa (raw, json)
Hash identifier: kDzErE0gITAmpU8/R9DHxPWtomotXOLYJesw7hhNAFg=
Subject key identifier: F4:D3:F4:6E:DF:ED:3C:CC:2A:27:9E:EB:50:9E:1B:C1:BE:99:AE:24
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17EB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9NP0bt_tPMwqJ57rUJ4bwb6ZriQ.roa
Signing time: Mon 10 Feb 2025 14:07:24 +0000
ROA not before: Mon 10 Feb 2025 14:07:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 218.210.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6123 (0x17eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F4D3F46EDFED3CCC2A279EEB509E1BC1BE99AE24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:0d:c5:55:8f:e3:97:a9:f9:69:ae:e0:56:
e5:a5:0f:47:01:bd:30:70:7a:b1:2c:96:b3:6f:db:
6f:13:70:97:e1:f3:38:bb:00:9e:7f:c7:46:96:4e:
e8:cc:62:26:67:19:2c:df:69:e8:ea:21:b5:66:cb:
1f:01:cb:03:1c:b9:49:ea:d3:77:ed:63:a2:e7:95:
9b:6f:d0:3c:47:47:62:c2:fc:8f:96:87:49:4c:8f:
be:ac:9d:00:01:5d:43:7e:e8:2f:bf:c2:ac:d3:78:
e4:1e:fb:e3:c3:d0:71:e9:ae:e1:2a:6e:ee:46:d0:
0a:22:59:3a:ef:04:03:c6:d0:98:16:45:88:f7:61:
28:f8:b7:6a:14:4c:4f:cf:b4:69:97:f3:d8:6a:07:
5c:7d:4f:71:35:6b:1b:d2:e3:4e:91:52:32:f9:e2:
7a:a3:56:bb:d5:4b:1a:10:da:7b:c0:6c:39:ef:61:
b1:dd:7b:48:a7:46:16:bb:30:61:59:a6:7c:c8:db:
0a:54:c9:c8:1a:fc:f0:c5:2a:25:32:b5:40:3e:3c:
d0:7f:b8:90:64:17:f3:c2:6d:52:5e:f0:2c:13:bd:
87:3c:0c:58:bd:bf:f0:39:14:b7:6a:66:87:a3:fe:
b2:c8:3d:8b:41:65:4a:6d:07:56:55:0d:22:fc:93:
00:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D3:F4:6E:DF:ED:3C:CC:2A:27:9E:EB:50:9E:1B:C1:BE:99:AE:24
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9NP0bt_tPMwqJ57rUJ4bwb6ZriQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.128.0/17
Signature Algorithm: sha256WithRSAEncryption
14:77:9e:0b:23:09:16:56:4b:86:92:2f:9f:42:71:74:4f:c2:
79:a4:0e:8c:98:2f:fa:bd:42:ce:d8:8d:29:ca:bd:d7:90:32:
d6:01:56:35:ac:eb:81:1a:c7:a0:54:64:54:d5:76:36:05:e6:
27:bf:6c:0b:5d:c7:a4:3e:d5:a3:15:55:c6:e9:6a:24:69:a1:
56:54:26:14:27:76:09:e4:df:44:5c:c2:07:cc:a9:d4:85:18:
28:e3:f9:82:0b:ca:c9:5f:e1:ce:5b:10:85:b0:cf:56:6c:56:
4a:8e:8a:4e:bb:fa:5f:62:9f:1b:37:02:26:df:5e:12:37:18:
f3:57:43:d0:77:5e:1e:4a:fa:02:53:a1:2d:7d:18:e0:1a:a1:
5c:2f:f7:d9:25:39:63:b1:f5:72:d2:ac:4b:64:c0:40:94:36:
fc:67:79:00:26:ed:11:e5:ca:50:ed:5c:be:66:ca:89:bd:ac:
27:44:17:b4:e8:52:63:75:88:11:46:67:c5:35:dc:e9:4f:2d:
93:4d:ce:c5:f1:af:18:74:40:b2:ed:af:ee:96:76:fd:bb:36:
bf:3f:00:ec:06:63:55:5f:1a:ae:e7:bd:e4:9d:f8:8c:85:0f:
65:fe:bd:fb:c2:25:92:c0:4e:d7:cf:06:a5:ad:e6:df:9e:8c:
ac:13:37:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:24 2025 by rpki-client