Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XdgEroL0yfU5lrvDgYQjlN2CXlk.roa
File: XdgEroL0yfU5lrvDgYQjlN2CXlk.roa (raw, json)
Hash identifier: aMyR7PH/pYFcW/CPCDuio8fzXiEg5iaOegnV2Wd4Qbg=
Subject key identifier: 5D:D8:04:AE:82:F4:C9:F5:39:96:BB:C3:81:84:23:94:DD:82:5E:59
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1801
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XdgEroL0yfU5lrvDgYQjlN2CXlk.roa
Signing time: Mon 10 Feb 2025 14:07:29 +0000
ROA not before: Mon 10 Feb 2025 14:07:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.105.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6145 (0x1801)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5DD804AE82F4C9F53996BBC381842394DD825E59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f0:c4:ee:83:9d:34:10:9d:58:a1:ea:91:59:
35:af:3e:ae:f6:df:2a:f6:fe:44:c9:fd:52:cc:7f:
48:2e:fb:c0:ee:ad:14:b6:37:e4:c6:ec:e2:19:c8:
3e:61:e9:ea:30:10:f2:e4:f4:c5:52:06:a8:a8:e2:
ec:10:4e:25:c9:4e:f8:5f:5b:ea:d0:12:43:cc:9e:
87:e0:cb:10:13:49:37:67:7d:63:a0:e9:8a:ea:70:
7c:bb:e2:73:9f:d2:af:9e:52:a7:aa:0b:5e:67:5e:
6a:96:00:79:dd:34:90:1a:2e:12:f7:c3:06:2c:33:
d7:cb:da:7f:c8:da:ab:12:be:a4:be:ea:30:83:52:
3c:15:1f:13:69:12:47:0a:75:8a:ea:c3:a0:00:57:
d2:08:91:3e:c1:a3:c2:f9:be:b0:45:6a:55:d4:1a:
d0:e5:6f:84:eb:f5:6b:db:3a:b1:bc:cd:55:55:f7:
52:14:cf:20:d9:1e:a8:84:5c:f5:4b:75:93:0b:f0:
f3:d7:5d:a4:a9:7c:1b:6f:97:d5:57:f3:7e:15:3f:
2e:07:f8:16:d2:cb:d6:c5:71:dc:cb:83:03:43:37:
0b:b2:19:0b:ba:20:e7:3d:a5:94:8e:2b:fa:e3:4b:
c7:61:50:f2:a4:28:dc:46:83:14:46:ab:a2:cc:33:
2e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D8:04:AE:82:F4:C9:F5:39:96:BB:C3:81:84:23:94:DD:82:5E:59
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XdgEroL0yfU5lrvDgYQjlN2CXlk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.112.0/20
Signature Algorithm: sha256WithRSAEncryption
b1:e9:3e:f1:8b:14:bd:49:54:a8:ca:e1:fd:24:b0:37:ed:f0:
05:07:c4:ea:f5:a1:fd:3c:2a:a1:ca:ff:4a:df:ee:fb:f7:d5:
57:05:55:be:50:ef:ec:63:99:f4:61:67:ea:cd:6d:ca:95:f3:
27:dc:31:91:bc:f3:c6:e3:0d:79:97:99:68:2c:f8:67:87:4b:
ac:3d:fb:2b:cb:3d:98:ee:4a:1f:37:ef:57:ea:dc:fc:2d:97:
63:7f:37:7f:c3:f5:1f:c6:e0:59:5e:bd:2c:8e:d5:d1:64:9a:
4b:1e:7c:70:fe:fd:37:9c:f1:2a:23:d1:7a:92:f0:5b:d2:30:
be:21:bc:5b:8a:dd:27:c4:9a:58:5d:51:99:05:5e:ce:b8:6a:
c4:9a:65:66:1b:47:8d:42:d4:33:c2:29:20:6b:19:14:77:8f:
ec:ab:21:cd:64:70:b9:47:aa:33:a1:d9:c9:d8:cd:d2:e7:c5:
3e:68:bd:21:7f:2f:12:14:cc:d5:75:f4:9b:94:81:a5:a5:77:
8f:f7:f9:a1:bb:a2:48:04:d7:d9:09:a6:63:ed:0d:a4:b7:5a:
ff:66:3a:e1:c4:b0:6d:ca:b9:d6:41:cb:d9:54:b3:ca:87:ce:
9d:65:ac:a3:aa:bd:50:15:d3:d4:d9:84:d6:58:21:87:79:a5:
61:4d:75:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:11:46 2025 by rpki-client