Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XTp-3SL9oOAw4se_9lLZfIWPlX4.roa
File: XTp-3SL9oOAw4se_9lLZfIWPlX4.roa (raw, json)
Hash identifier: vUX+vItmXkTmAObknLE5M8gKqRQR92VUCuj80BQDWv0=
Subject key identifier: 5D:3A:7E:DD:22:FD:A0:E0:30:E2:C7:BF:F6:52:D9:7C:85:8F:95:7E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1778
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XTp-3SL9oOAw4se_9lLZfIWPlX4.roa
Signing time: Mon 10 Feb 2025 14:06:56 +0000
ROA not before: Mon 10 Feb 2025 14:06:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 106.105.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6008 (0x1778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5D3A7EDD22FDA0E030E2C7BFF652D97C858F957E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:05:45:11:50:9e:f1:dc:a7:7d:a7:e6:5e:94:
4f:7a:63:22:51:84:c9:a1:19:ae:d1:85:05:39:16:
32:dc:4c:c1:a5:9b:c8:9d:6f:00:d3:e8:76:94:69:
f3:1e:1a:11:01:c9:7f:d7:a9:04:e8:30:7b:a2:f7:
97:ba:4c:3c:ac:91:50:1c:20:9f:10:c9:84:01:21:
18:71:93:47:99:27:0d:9c:62:35:00:55:8a:cf:fe:
4e:01:07:4e:5f:83:e7:b9:ed:33:07:f3:67:40:0c:
78:ff:ac:b8:40:a9:88:c8:ed:61:7f:5c:ed:52:c7:
63:28:11:f1:d4:e2:39:a0:8c:bf:08:0d:5d:c0:38:
0d:fb:d8:50:dc:cc:b2:b9:5e:53:e7:1e:75:90:9b:
bf:e2:07:db:e2:da:7e:2c:d4:15:8d:82:d2:31:45:
7b:65:dd:d2:29:d4:a5:b2:d2:a7:a0:57:99:10:65:
eb:13:32:91:4c:4d:83:64:41:e6:00:a0:44:91:3b:
1b:4a:14:56:c4:ad:4b:7c:dc:98:87:25:38:c8:2f:
63:c9:42:a1:73:0b:64:cf:62:50:0d:1a:12:79:25:
9c:6d:88:40:e8:6d:d6:c9:46:3a:1b:9d:9a:17:b0:
45:ac:74:39:96:82:07:f9:b8:18:62:5b:25:7d:fc:
18:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3A:7E:DD:22:FD:A0:E0:30:E2:C7:BF:F6:52:D9:7C:85:8F:95:7E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XTp-3SL9oOAw4se_9lLZfIWPlX4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.128.0/19
Signature Algorithm: sha256WithRSAEncryption
59:b1:6e:0e:23:b2:a2:f8:29:ac:d0:7d:27:f1:e7:e1:0e:b8:
11:9d:fd:6a:1a:2a:78:14:2a:d8:9c:f2:19:14:a0:8b:47:f5:
f7:a0:35:6b:33:de:9a:85:5e:f3:59:81:de:d6:6b:07:ef:66:
1b:81:ec:b0:19:20:df:4f:05:d5:49:58:10:4d:0f:58:69:ab:
38:04:ef:bb:76:df:3f:21:ef:28:b9:f4:82:a7:c0:f9:d3:db:
0b:23:69:bd:24:9a:5a:b4:b9:1b:1c:b1:43:d6:07:2b:32:7f:
b5:32:83:bd:fd:3c:80:d9:82:6a:cd:4c:a6:42:37:4c:19:4f:
4d:72:a2:c2:7b:d0:38:b5:1e:ba:d0:e2:40:9b:96:8f:32:27:
3c:29:2a:72:3f:1f:9c:b7:cf:a4:92:91:cb:0c:ad:2c:f5:f5:
79:cc:76:63:8b:55:d4:da:48:90:c2:13:97:9d:d5:0a:a3:28:
c8:d5:16:b1:e9:d4:ae:84:e9:c5:eb:65:6f:b8:3f:a2:97:47:
7b:af:52:94:03:0e:cd:19:d2:d9:0b:30:90:c9:93:28:08:ad:
7b:4d:df:c1:19:d5:b8:dc:b4:07:d2:2c:04:94:cc:bc:4e:10:
d2:6c:2e:7f:81:4e:ab:c0:ae:76:41:28:92:1f:5e:59:16:02:
92:73:a8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:04:18 2025 by rpki-client