Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PAoYCCmoLg4bk38Uavxly-wY8zw.roa
File: PAoYCCmoLg4bk38Uavxly-wY8zw.roa (raw, json)
Hash identifier: DsowiogKUgMWz9Upl+r2GuSu3QkqCxqNJLJdyoDxjxg=
Subject key identifier: 3C:0A:18:08:29:A8:2E:0E:1B:93:7F:14:6A:FC:65:CB:EC:18:F3:3C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1815
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PAoYCCmoLg4bk38Uavxly-wY8zw.roa
Signing time: Mon 10 Feb 2025 14:07:34 +0000
ROA not before: Mon 10 Feb 2025 14:07:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.105.0.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6165 (0x1815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3C0A180829A82E0E1B937F146AFC65CBEC18F33C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8a:e4:61:b9:69:d3:76:63:5f:bb:24:49:54:
13:39:ad:53:e6:84:71:a1:85:03:9d:c8:87:fe:31:
6b:06:94:0a:21:14:34:e0:88:87:a7:22:60:ce:59:
7f:e0:75:8d:a4:cb:e3:ca:3f:51:8d:b3:02:0f:87:
d1:c4:c4:41:4d:23:d4:c6:d3:79:79:fe:b6:f2:7c:
cc:a5:d6:7f:e1:88:73:b7:ce:e5:60:90:45:7e:c0:
61:7d:ae:70:22:3b:d4:68:e7:07:ed:85:15:ed:20:
c1:2c:97:f6:cb:e1:70:21:9b:67:41:20:fe:29:ac:
c5:33:30:2c:4c:64:0f:ad:7e:ac:1e:12:94:dc:c8:
3c:bf:0b:54:e6:92:02:71:76:2a:96:b9:86:46:9d:
55:ea:97:5f:9d:a7:df:3d:c4:38:ac:4f:e4:72:9d:
8e:29:9c:2c:ef:6b:37:b5:3a:0a:b9:ef:9e:b8:31:
08:b0:87:db:09:01:36:1e:60:41:28:c2:14:58:28:
d6:b7:2e:d9:c0:a3:18:48:35:4d:6b:97:b3:24:fe:
12:9a:5d:3f:7f:08:03:e3:07:83:a1:3c:0e:e2:f0:
aa:38:ab:ca:e4:61:23:3c:25:81:1c:f0:4c:3f:62:
1d:c4:90:01:98:c2:77:fa:fe:69:88:12:56:c3:b2:
dd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:0A:18:08:29:A8:2E:0E:1B:93:7F:14:6A:FC:65:CB:EC:18:F3:3C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PAoYCCmoLg4bk38Uavxly-wY8zw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.0.0/21
Signature Algorithm: sha256WithRSAEncryption
71:94:45:c1:d5:a8:19:23:10:d6:4a:90:aa:c3:f0:5c:bd:d2:
15:eb:5a:cf:0a:d0:f9:43:32:9f:6e:25:ff:cd:f4:0a:4b:70:
90:65:83:e1:72:dd:8c:c4:d7:4f:d7:b4:fa:60:53:5f:4d:55:
70:26:77:e2:1c:ae:52:3f:99:97:cd:a2:08:62:b0:47:6c:83:
2c:81:a0:48:08:30:b8:22:33:de:b7:6c:2d:3e:9e:95:df:55:
c1:82:5e:cd:3f:04:5e:bd:93:c8:4a:4c:d2:aa:bb:e1:2d:0c:
7d:fd:15:f8:78:04:d8:2b:3c:1d:fc:74:1b:7f:0d:9f:af:a2:
53:e4:f7:38:a8:3f:41:8a:75:fd:90:01:95:ca:c4:ff:39:9f:
87:f9:c3:a5:99:be:76:aa:88:ba:ad:0f:fd:a3:8a:d9:82:20:
8a:e6:d9:93:0c:45:41:2e:82:03:54:8d:73:a9:bf:5c:79:93:
05:33:dd:5a:27:14:41:45:09:f3:ee:a1:24:97:9b:91:9e:ac:
ae:86:d0:8b:ad:d7:ab:74:f5:a8:92:6d:8e:dc:d6:cd:7e:2b:
bd:b9:c6:e2:ba:a2:d7:64:45:af:27:74:c9:dd:5e:c7:1c:47:
9d:2a:cb:9a:84:02:29:57:5a:77:72:1d:c8:b4:07:01:47:d9:
1b:e2:21:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:11:20 2025 by rpki-client