Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/adTPFJZXTGiI77fJ93wT6KkVHxM.roa
File: adTPFJZXTGiI77fJ93wT6KkVHxM.roa (raw, json)
Hash identifier: PUg6pG64+AJL61uYxWq+GUA9/lxQaC1xjbTpHQ8fb24=
Subject key identifier: 69:D4:CF:14:96:57:4C:68:88:EF:B7:C9:F7:7C:13:E8:A9:15:1F:13
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17C4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/adTPFJZXTGiI77fJ93wT6KkVHxM.roa
Signing time: Mon 10 Feb 2025 14:07:15 +0000
ROA not before: Mon 10 Feb 2025 14:07:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131586
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6084 (0x17c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=69D4CF1496574C6888EFB7C9F77C13E8A9151F13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:34:fc:8e:47:a1:aa:10:16:5d:58:1a:fe:e4:
18:76:9d:98:dc:e3:fc:38:bf:c2:90:8f:9f:f9:74:
80:02:19:45:6a:45:d6:bb:fb:fa:e6:c1:dd:95:4f:
7e:59:ad:45:bf:d5:ca:f4:63:51:89:8d:7e:e5:c9:
be:a4:a3:27:43:c2:76:c9:4c:59:d3:7b:7e:3e:a4:
04:cd:e5:08:a7:49:36:07:b1:05:0d:40:fd:49:49:
56:82:58:d4:1c:bb:af:3b:13:72:98:37:a9:d9:95:
d1:f2:e3:75:e4:44:6e:00:74:0a:be:b9:42:2d:f6:
2e:68:da:2d:21:85:e8:39:1e:ea:4d:cd:71:5b:f4:
e0:90:38:16:32:41:d6:c8:49:bb:47:63:ad:5e:05:
80:d2:e0:e9:ff:83:7d:63:15:e1:97:c5:45:18:a5:
05:8a:ba:07:0b:83:a5:34:bd:f9:76:2d:6e:ab:37:
25:e6:f5:11:29:1d:2b:71:ad:ce:03:eb:06:51:9d:
b2:0e:3e:47:8d:6e:b8:4d:45:1f:37:d0:a3:42:ba:
5a:88:01:d4:35:81:d0:75:2f:87:b7:d9:61:35:c2:
fd:35:5d:bd:53:f5:7f:6b:ed:55:d9:35:15:41:3d:
f6:2c:c7:81:e7:2a:25:00:10:ed:37:5f:dc:dc:bd:
9b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D4:CF:14:96:57:4C:68:88:EF:B7:C9:F7:7C:13:E8:A9:15:1F:13
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/adTPFJZXTGiI77fJ93wT6KkVHxM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
86:aa:d4:64:e4:7d:35:0f:56:f7:3d:83:2f:c2:d1:23:73:e0:
8f:30:44:8d:ff:f0:30:90:38:28:77:6c:6f:e6:c1:1e:18:81:
4a:9e:0d:d3:2e:65:d4:b0:e2:67:bd:a5:d9:17:95:28:f1:1d:
1d:d5:29:cf:03:81:b6:8e:41:af:78:e6:b6:e6:4f:f6:3f:64:
e0:91:31:58:0e:8c:4b:d5:db:b7:a9:74:a3:5a:fe:b2:ca:53:
96:f4:d4:3a:8e:5a:e3:25:04:c2:f3:f5:36:f9:86:ff:99:06:
db:bf:91:f0:3e:ce:4a:0d:65:ca:f8:58:b0:ae:2b:b4:65:05:
e5:73:27:58:89:e8:8f:f1:98:01:cf:b3:6d:74:25:c7:41:6e:
46:56:b2:e7:46:87:ba:0e:af:fa:ba:a9:82:2e:c7:fb:ac:7d:
10:0f:fb:7a:c7:30:79:57:2e:8f:7f:20:44:cf:54:e8:f3:3f:
c2:e4:69:f3:49:56:70:2a:93:1c:88:f9:8a:a0:37:f4:43:e1:
c7:a3:53:42:10:63:ca:25:22:22:f0:f1:b3:cd:e2:09:47:23:
70:ac:f4:a8:ac:c5:30:17:4f:95:54:d0:5c:ff:e8:07:ae:f8:
a2:01:25:5c:28:e4:3a:10:68:34:e8:0c:e2:c9:82:84:c7:3f:
fa:f4:bb:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:04:55 2025 by rpki-client