Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NTRmIWWgHSCktQ8NJnO2Y-iQ9ek.roa
File: NTRmIWWgHSCktQ8NJnO2Y-iQ9ek.roa (raw, json)
Hash identifier: h9Srw+Tn7V4adl+4tAeC7i3SUOTU7UQFklsBAUD0O2I=
Subject key identifier: 35:34:66:21:65:A0:1D:20:A4:B5:0F:0D:26:73:B6:63:E8:90:F5:E9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 109F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NTRmIWWgHSCktQ8NJnO2Y-iQ9ek.roa
Signing time: Wed 01 Feb 2023 10:28:48 +0000
ROA not before: Wed 01 Feb 2023 10:28:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18049
IP address blocks: 112.105.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4255 (0x109f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:48 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3534662165A01D20A4B50F0D2673B663E890F5E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cf:6a:b4:e9:61:d1:e4:4a:06:19:79:77:b9:
a3:cb:dc:6a:1b:93:c7:ea:78:7f:93:23:70:0c:ae:
f9:69:4c:c8:c0:f9:10:c9:4a:95:64:20:c5:e3:46:
65:9a:b0:8a:6b:cc:83:35:55:aa:37:79:58:22:3d:
fa:8a:fa:69:fd:84:4c:f0:cf:b7:90:18:cb:82:5e:
e2:01:4c:49:cf:7b:17:50:46:3d:6a:25:b8:4b:ea:
1c:08:99:fb:c5:69:3a:04:d8:b8:49:e8:64:f5:9e:
14:53:42:55:54:07:a4:6b:7b:a1:c2:ec:b1:84:16:
6b:e4:da:65:45:00:19:ba:fc:ee:3a:7f:05:49:98:
14:29:3c:8d:56:e3:62:51:04:e7:51:1f:d6:a3:c3:
0f:8c:5e:13:64:26:03:ed:ba:1a:b6:c3:7f:ca:00:
e1:a0:e1:79:e9:9e:d6:12:4f:81:41:c0:3e:59:51:
8b:6b:5c:5c:4d:61:83:86:f5:bb:59:f6:b4:9c:27:
bb:60:b0:85:34:8c:bc:74:ef:9d:b5:f8:dc:f6:1e:
07:df:e4:7d:4f:96:9b:64:f0:8d:9c:d4:5a:73:37:
30:1f:f8:62:c9:9c:75:23:27:5a:b0:fb:b8:56:f9:
71:76:20:cf:79:00:a1:44:4f:ce:84:9d:62:00:50:
06:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:34:66:21:65:A0:1D:20:A4:B5:0F:0D:26:73:B6:63:E8:90:F5:E9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NTRmIWWgHSCktQ8NJnO2Y-iQ9ek.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.0.0/19
Signature Algorithm: sha256WithRSAEncryption
54:db:04:2e:a0:71:7d:7b:ee:ab:a0:ff:62:f0:8c:a2:68:89:
e3:df:6b:64:af:1e:f6:9b:2a:30:3d:e7:20:f3:5e:5d:4e:56:
ec:d7:7e:c6:0c:82:cd:45:11:bf:fc:83:6b:4c:02:eb:cd:35:
54:ed:c8:f3:41:9d:d6:d7:75:d5:72:d6:41:a2:95:69:c5:72:
f0:f4:6d:a4:01:2b:5e:63:df:95:08:67:4b:61:a6:73:99:cc:
7e:78:69:89:15:b9:c6:c1:7a:f4:fa:50:f2:6e:64:dd:f2:83:
32:fc:5b:e7:47:bf:79:1c:9e:3a:df:93:4a:fa:e8:6f:61:c9:
40:19:1e:dd:cd:69:2d:f3:1c:8a:98:cb:4a:df:f2:9b:2b:f8:
3f:5b:0c:3c:7a:9e:9e:9c:7f:de:8d:86:31:d7:ac:b6:31:f3:
e6:42:36:55:78:89:da:60:e9:36:a1:6a:9d:c5:93:71:fc:af:
dc:53:58:4b:47:f1:b7:a8:6c:32:1f:a2:10:b1:c7:dc:69:78:
58:72:cf:ee:15:63:37:60:cf:c7:b4:20:05:3a:2f:92:51:8f:
30:17:85:be:7c:ea:1d:a3:00:8c:29:c1:91:95:82:e6:99:a8:
ae:1e:e1:68:fd:87:de:f5:dd:32:2b:92:3e:00:5e:ec:e5:9a:
5f:6a:0c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:22:59 2025 by rpki-client