Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JGy_bqurh4lFOpzUt65DEIL9d60.roa
File: JGy_bqurh4lFOpzUt65DEIL9d60.roa (raw, json)
Hash identifier: fROdHHIC9JHtTpkix04cEc0sRALVK076mIBKV9RDuMg=
Subject key identifier: 24:6C:BF:6E:AB:AB:87:89:45:3A:9C:D4:B7:AE:43:10:82:FD:77:AD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17B9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JGy_bqurh4lFOpzUt65DEIL9d60.roa
Signing time: Mon 10 Feb 2025 14:07:12 +0000
ROA not before: Mon 10 Feb 2025 14:07:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 220.229.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6073 (0x17b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=246CBF6EABAB8789453A9CD4B7AE431082FD77AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7e:14:25:d5:2a:ee:7d:21:7c:90:ba:b2:6b:
12:81:e1:4b:af:03:dc:8d:c1:08:b4:b8:e9:d9:a5:
ab:5e:f4:90:53:83:d0:9a:29:bc:88:3f:7c:d0:76:
fd:35:42:95:ce:b1:75:75:37:c7:89:35:38:b3:1f:
2b:ee:57:f4:96:96:00:9d:c4:b1:f7:3a:1d:02:44:
ed:62:a9:44:06:23:27:6e:e8:a2:d8:7e:9c:1c:08:
6d:bc:17:69:8f:f3:45:40:c4:81:d6:b9:b4:65:00:
44:0e:4c:6b:54:95:36:59:ca:42:72:3b:11:0c:39:
c2:37:9e:ff:69:71:24:10:ea:e7:c8:88:c5:ee:73:
ad:f2:f2:9f:f2:94:7e:75:6d:c8:97:1b:d8:69:e7:
95:77:b9:b5:79:5b:81:f9:99:d8:28:3d:28:33:39:
08:66:ed:dc:14:9f:86:76:f9:42:27:91:99:92:f2:
3f:97:04:d8:65:3d:f3:b0:eb:59:d7:65:d5:84:b1:
74:75:d5:35:da:6a:99:1b:17:e8:46:c2:a2:c3:69:
d3:43:ee:d0:f1:01:ca:6e:0d:77:a7:d6:a8:6b:e7:
58:02:74:fc:54:48:64:cf:24:aa:74:3a:21:2b:e0:
45:07:7a:07:67:63:14:06:0b:f9:42:04:af:70:eb:
f1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6C:BF:6E:AB:AB:87:89:45:3A:9C:D4:B7:AE:43:10:82:FD:77:AD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JGy_bqurh4lFOpzUt65DEIL9d60.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.65.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:1c:79:55:2d:f7:a9:0a:9f:9a:11:35:fc:35:1c:92:c0:e6:
34:08:ef:b5:27:ac:79:3f:68:da:70:95:5f:21:93:19:10:12:
17:04:31:d4:1b:d2:1b:6a:65:f9:99:9d:15:e8:1f:55:d9:47:
d6:9e:65:cb:48:33:1c:4d:71:01:b0:12:20:f5:9d:6f:e9:66:
a4:9b:89:b5:31:d3:c3:c1:ba:d6:a0:1f:0d:8d:34:f1:0f:4f:
bc:d9:3e:43:b9:54:5f:04:a0:e8:d2:4c:7a:f8:3f:34:8e:32:
5f:3b:66:f4:f8:0e:de:d7:a8:b9:d5:1a:8d:df:2a:d9:d9:65:
51:3b:5d:d6:93:57:10:ba:45:bd:4d:74:55:2d:34:09:8a:90:
01:62:a8:b5:42:9b:23:44:15:df:f6:80:b1:b5:75:e5:74:00:
9c:a5:98:ed:5e:06:82:4b:fe:49:f3:8a:7f:e1:68:a4:10:26:
42:6a:75:51:59:6e:5a:0d:92:30:2a:ac:7c:7f:bf:63:d4:21:
79:c9:9d:b7:26:0d:9c:6e:10:ec:9d:56:ea:20:ea:aa:56:81:
06:78:61:1c:b7:4e:75:01:21:a2:6f:3a:9b:f0:08:0c:d1:04:
9f:d3:ab:91:fd:e4:af:cc:0e:db:57:81:3a:dd:8d:ec:d4:17:
64:7d:be:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:56:59 2025 by rpki-client