Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/EkuLTpXbesm0E6CkmTwNugIZeS0.roa
File: EkuLTpXbesm0E6CkmTwNugIZeS0.roa (raw, json)
Hash identifier: YQIQYLYE8znFt94HDaZgtrwLFdhvUf4DcwfQDDLyAsA=
Subject key identifier: 12:4B:8B:4E:95:DB:7A:C9:B4:13:A0:A4:99:3C:0D:BA:02:19:79:2D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1379
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EkuLTpXbesm0E6CkmTwNugIZeS0.roa
Signing time: Fri 01 Sep 2023 09:24:59 +0000
ROA not before: Fri 01 Sep 2023 09:24:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 113.196.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4985 (0x1379)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=124B8B4E95DB7AC9B413A0A4993C0DBA0219792D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ff:a2:95:49:29:7e:64:ff:0f:9c:05:7e:3b:
16:81:27:30:36:8b:44:b8:69:29:02:fb:b6:31:fc:
47:88:ad:8e:68:6c:07:89:1a:7a:79:f9:06:c5:f6:
97:c1:c0:e6:84:7d:8d:4e:0f:08:32:53:0e:9d:37:
1e:06:9f:d3:f6:11:0f:1a:68:9e:47:9a:31:1a:2e:
4f:e5:70:79:88:69:a6:4a:3e:7d:96:2e:1c:b7:6e:
9f:0f:63:a6:aa:06:ec:4b:e9:0f:9d:ea:72:d2:03:
55:50:6e:fa:d6:9d:56:1d:85:c0:d6:fb:33:28:be:
92:9e:09:f2:46:8e:50:86:b3:61:43:f3:a7:64:be:
bc:9f:92:d8:a7:85:87:a4:7e:07:11:2f:6d:f5:5f:
e1:49:64:f5:f0:6b:51:13:ec:ff:40:97:89:86:01:
b6:82:d6:ea:2b:90:92:8b:57:f8:de:81:0b:25:ff:
5e:82:e9:22:38:f3:41:37:2a:4c:e7:74:05:87:fa:
9a:e2:b7:16:ef:fe:ed:11:cb:06:1b:18:e1:1d:14:
1f:43:2a:ee:60:00:f7:cc:b8:26:c5:b7:41:a4:a2:
e7:7e:bf:ee:e9:dc:bc:6d:63:1b:16:b5:dd:6d:e6:
f9:fe:2c:75:f7:1c:f6:2f:c6:b2:03:2d:b3:98:f0:
67:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4B:8B:4E:95:DB:7A:C9:B4:13:A0:A4:99:3C:0D:BA:02:19:79:2D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EkuLTpXbesm0E6CkmTwNugIZeS0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
78:99:cf:21:79:a5:6c:d5:73:7d:9c:5f:31:ab:94:52:51:f1:
d5:d4:62:4b:ef:30:a6:1e:a4:3c:e0:95:c9:88:39:3f:34:af:
27:f8:11:51:c6:85:89:da:85:0e:93:72:78:d1:7e:20:c1:6f:
6e:2f:07:53:a2:19:a9:43:80:e5:b0:20:30:ae:32:e8:eb:40:
4f:0c:b4:3f:47:5e:f2:eb:d3:4b:33:59:53:45:dc:0e:7c:df:
cc:9d:9d:dd:76:24:10:66:fc:d1:5e:3e:2e:f1:82:86:b0:03:
10:53:90:83:e9:bf:2b:a3:69:ce:32:a9:08:ea:e4:9e:42:aa:
1e:06:60:35:35:43:2c:38:c6:ea:7d:03:c9:e6:61:43:25:0e:
20:d6:60:d9:89:c7:73:db:f1:e6:9e:af:e6:ac:7f:c1:f5:2c:
dc:dc:94:ba:48:f6:39:6d:e5:ff:05:b8:8b:3a:ff:c6:47:de:
14:02:57:6d:3d:33:6e:1c:c2:c6:0d:10:9f:ce:15:8f:05:83:
53:b2:ca:71:30:b8:2d:be:83:01:f6:23:29:1a:a8:94:70:f2:
15:7b:a9:c6:15:a7:16:f6:fb:02:ba:e7:50:84:34:0b:7e:25:
cb:b1:62:a1:08:c5:8e:82:bb:4a:f3:35:d9:5a:b3:3c:e9:76:
c6:69:5b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:21:25 2025 by rpki-client