Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vv4hydo65LsVz-XWAcKENyMBcAQ.roa
File: Vv4hydo65LsVz-XWAcKENyMBcAQ.roa (raw, json)
Hash identifier: QLxLfTVgVFEA+nGG9+gG5bdloK2cP5Lq0jGIuwCS4c0=
Subject key identifier: 56:FE:21:C9:DA:3A:E4:BB:15:CF:E5:D6:01:C2:84:37:23:01:70:04
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17A8
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vv4hydo65LsVz-XWAcKENyMBcAQ.roa
Signing time: Mon 10 Feb 2025 14:07:08 +0000
ROA not before: Mon 10 Feb 2025 14:07:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.107.144.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6056 (0x17a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=56FE21C9DA3AE4BB15CFE5D601C2843723017004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5c:98:25:9f:3e:48:a5:55:c1:64:83:dc:d2:
87:57:84:db:0c:da:68:50:14:33:df:b9:e3:6a:e1:
c1:32:63:9b:b2:e5:f5:a8:44:f1:16:f5:ad:2b:a2:
b2:7f:55:26:8c:af:68:26:65:c8:fc:e0:4f:4d:4d:
e9:7c:d8:5f:cb:47:3b:56:f8:0d:bf:2d:86:d9:27:
3b:15:0b:c4:2c:f9:cd:c3:29:bb:cc:c6:15:29:64:
12:c6:53:db:8b:57:bc:b9:84:2d:80:53:70:10:b3:
1a:7b:43:f3:b1:e6:52:b4:fd:12:d4:5f:63:e3:99:
01:f9:b8:71:ca:6a:22:04:27:e0:a0:b6:20:54:7d:
ba:23:84:18:e6:58:b7:f3:a7:a2:72:eb:6f:18:fe:
ab:4e:87:ee:bc:46:b6:f2:d2:34:44:be:e5:78:32:
3d:00:91:90:34:f4:8f:f7:94:d3:7a:c3:10:27:fb:
b7:ac:5b:7a:08:2e:a0:d9:26:65:4e:97:66:4c:10:
2d:fd:75:1f:90:e0:32:2d:5d:d2:a0:9a:72:52:ca:
c4:1e:ba:08:2f:b5:1b:62:d8:73:a9:de:ab:ae:76:
89:07:f1:09:0d:77:b4:1f:f4:70:7d:2f:a4:c4:8c:
66:4c:ff:7a:a6:96:8a:1d:68:f8:cc:76:98:b0:a0:
c4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:FE:21:C9:DA:3A:E4:BB:15:CF:E5:D6:01:C2:84:37:23:01:70:04
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vv4hydo65LsVz-XWAcKENyMBcAQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.107.144.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:c1:5e:9f:b7:b1:73:b3:72:f8:6b:29:7f:b7:49:5b:5c:45:
25:ae:ea:f2:37:e6:a3:94:c4:a9:48:95:69:82:24:33:4e:ae:
76:ea:4b:10:79:e2:70:56:33:dc:db:71:fe:11:e5:8a:c5:9f:
ba:73:2e:81:62:53:82:65:46:0f:47:56:5d:48:04:85:8b:cd:
b9:2d:cb:bb:df:9a:3b:fc:3b:2b:50:64:7e:17:59:26:b2:8b:
31:6f:16:75:28:ce:9f:ae:3f:4e:e5:31:8d:7d:e3:34:35:89:
e7:39:68:b7:4f:4e:ef:2f:9e:66:2e:87:fe:ca:32:1c:24:99:
92:d4:11:b0:0c:f3:e9:76:9b:f9:e1:d0:20:eb:f8:50:78:2d:
50:40:96:6f:1e:b7:8a:7b:5d:f8:3b:e3:c7:8d:0d:52:41:7b:
35:1a:ad:12:60:44:7a:53:5e:db:f0:8e:57:24:93:f4:99:33:
5a:d1:b1:d0:57:12:ad:d3:0a:c0:cf:fb:27:f9:2f:49:0a:2a:
bf:8a:f4:0f:e9:5d:ca:92:08:01:20:0e:d4:e6:e2:a8:d1:e4:
c2:a8:45:b1:13:33:32:c9:d0:7c:9c:6a:3c:02:48:6c:ab:c0:
f6:50:9c:79:a1:a0:f0:fa:22:71:27:b8:74:2f:dc:84:a1:22:
b9:eb:c5:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:07:47 2025 by rpki-client