Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GB5KXjtw2j5o5rU7n1tKgsU7meI.roa
File: GB5KXjtw2j5o5rU7n1tKgsU7meI.roa (raw, json)
Hash identifier: N50dXdaK+/nq7fhwGnkHNmT2d5Y7smtyMIVliKL9j4o=
Subject key identifier: 18:1E:4A:5E:3B:70:DA:3E:68:E6:B5:3B:9F:5B:4A:82:C5:3B:99:E2
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1799
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GB5KXjtw2j5o5rU7n1tKgsU7meI.roa
Signing time: Mon 10 Feb 2025 14:07:05 +0000
ROA not before: Mon 10 Feb 2025 14:07:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131586
IP address blocks: 175.183.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6041 (0x1799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=181E4A5E3B70DA3E68E6B53B9F5B4A82C53B99E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ba:d5:ad:32:0e:89:95:b0:90:0f:fa:41:89:
60:43:9c:ec:6a:9d:b7:87:a4:b2:a4:fb:ca:e9:14:
d0:a3:2e:cd:36:b0:cf:86:36:2b:45:f5:67:4c:e4:
39:42:52:26:af:f3:d6:f3:42:da:6f:3e:0e:25:8b:
ea:65:2a:e3:f1:e1:d4:3e:27:80:76:23:44:4e:64:
3e:84:0a:61:a6:cd:7d:4c:c0:11:64:c9:ad:87:8e:
ee:67:1e:f7:ad:c2:a3:cd:d7:61:5f:47:d7:7b:b3:
3b:db:14:77:27:e2:a8:b9:6b:4a:04:9c:14:b7:30:
b8:c5:e7:6b:f5:3c:57:57:71:0b:f0:a6:66:e0:48:
19:f2:6a:52:52:c8:86:13:41:e5:44:9e:af:13:c8:
f6:60:1b:d3:c3:1d:82:38:21:fb:f9:42:a9:eb:2f:
31:41:75:de:7a:18:de:1b:8f:f5:17:d9:89:e6:a8:
94:19:02:eb:54:cd:33:61:2c:90:c8:6d:55:84:a7:
36:33:86:72:cd:3e:e5:90:82:71:ea:12:90:0d:40:
0c:28:3d:65:dc:f1:06:fa:c4:41:4f:1c:09:28:1d:
7b:cb:7b:ee:dd:cb:47:b6:ee:92:16:2c:57:54:a6:
d6:b1:ec:ad:8d:0c:73:6e:60:76:f0:0c:2a:5b:84:
c5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1E:4A:5E:3B:70:DA:3E:68:E6:B5:3B:9F:5B:4A:82:C5:3B:99:E2
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GB5KXjtw2j5o5rU7n1tKgsU7meI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.137.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ff:17:62:d1:ab:40:da:ac:10:81:c7:e3:6e:24:41:31:4d:
66:45:ab:55:f5:d3:1d:d5:ac:eb:cc:1b:a8:cb:4d:87:88:b1:
92:f1:85:5d:73:7a:fb:24:19:41:06:61:c8:a0:1f:23:43:7b:
c3:66:50:00:d5:9c:b6:7f:cd:6b:14:5e:93:98:80:11:17:c7:
61:15:3b:ec:0b:db:59:b6:21:e5:12:41:bb:90:92:d8:99:24:
b8:44:55:e7:1b:e2:c1:5d:10:d6:b2:08:36:f0:ff:bd:98:4f:
1d:63:ba:06:76:d2:1c:23:2c:37:8d:e9:ff:96:e8:c9:fa:11:
85:70:b6:ae:ba:b7:2d:5c:fc:9c:ab:8c:50:03:1d:ba:d1:96:
4e:c6:53:a1:49:3c:e8:dd:b6:63:3d:9e:78:8f:80:31:fb:36:
c1:2f:2e:b3:3a:bc:19:dc:2a:bc:72:c1:cb:50:01:b5:93:0b:
ea:1f:ef:97:68:3d:fc:c8:b5:86:18:b4:f3:ab:f7:f5:0e:27:
2f:a9:3e:93:75:f9:b5:32:1f:45:e9:91:0c:6c:14:c2:8a:96:
cc:09:e5:97:1e:4c:47:e1:4b:a5:55:5e:91:24:31:77:44:fb:
78:ed:00:a3:1e:3f:9f:00:ad:1b:8e:1e:0e:74:23:0e:12:c6:
8b:3c:47:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:36 2025 by rpki-client