Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/apQeyYNLgExRPGfZosr61gN-rK0.roa
File: apQeyYNLgExRPGfZosr61gN-rK0.roa (raw, json)
Hash identifier: FFLtLqMZnKRCydftE1RUFwInMeWhT+bt65f2wuaoops=
Subject key identifier: 6A:94:1E:C9:83:4B:80:4C:51:3C:67:D9:A2:CA:FA:D6:03:7E:AC:AD
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 187E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/apQeyYNLgExRPGfZosr61gN-rK0.roa
Signing time: Mon 10 Feb 2025 14:07:59 +0000
ROA not before: Mon 10 Feb 2025 14:07:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131611
IP address blocks: 218.32.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6270 (0x187e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6A941EC9834B804C513C67D9A2CAFAD6037EACAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ad:e2:3f:45:ed:8a:07:ec:85:cc:95:6b:f4:
29:4a:5a:27:7c:67:64:0f:9e:09:fd:34:79:88:50:
ce:cc:b6:ce:be:55:9d:78:33:b3:ae:e2:d0:d1:b9:
a4:93:de:c5:60:c1:30:da:e6:b9:0f:a4:fd:83:04:
67:87:ad:be:f9:c9:f7:ca:78:ea:e6:fe:dc:7d:31:
58:a9:91:d4:d8:38:3c:a9:f9:0d:81:7e:4b:f5:b1:
a9:05:69:77:b7:11:c4:14:9a:98:c9:08:c2:95:5c:
5b:70:6c:b7:31:70:00:2e:b2:02:bc:e1:b3:91:25:
4e:2b:a2:79:46:b9:29:b2:4b:bd:80:fb:14:d6:57:
96:fa:0b:84:a5:83:cf:f6:9b:be:06:e8:96:c2:50:
31:9f:dd:17:7e:e3:57:b2:e3:15:38:7f:d1:e1:b7:
95:d3:3d:b4:79:63:57:d3:87:9b:28:61:5e:e4:16:
25:fb:70:df:43:af:dd:94:b4:fc:9b:71:5f:b3:d7:
ae:a3:81:8a:d5:af:52:0e:de:b5:8b:e3:89:d8:42:
54:81:2c:10:f1:0c:87:d7:68:af:fd:80:9e:b5:db:
20:53:69:ba:c3:69:f1:c7:28:ce:bb:f8:41:5a:2a:
da:69:06:a7:dc:8e:54:d9:85:71:42:fe:54:ae:19:
b4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:94:1E:C9:83:4B:80:4C:51:3C:67:D9:A2:CA:FA:D6:03:7E:AC:AD
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/apQeyYNLgExRPGfZosr61gN-rK0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.144.0/20
Signature Algorithm: sha256WithRSAEncryption
78:b6:d7:53:16:bb:31:39:a6:f4:9b:80:73:0b:e8:df:39:14:
29:7d:c1:8a:02:cc:b7:03:1d:de:77:31:e7:b5:48:af:f1:c7:
03:84:71:f6:3f:28:60:21:58:fe:7d:0c:43:ac:6d:24:a8:86:
1b:36:3a:2c:47:f3:93:0b:e6:46:6c:8b:88:24:9b:66:3c:00:
d7:91:a0:50:44:98:a5:6b:93:94:97:16:a4:b8:b9:20:7d:36:
e5:75:68:88:d8:dd:66:8e:65:c2:f1:67:d0:38:e8:81:5d:7a:
21:3c:71:3c:35:e4:d0:7d:6c:49:ef:66:6e:88:70:50:9c:13:
32:70:b0:4b:2a:a7:2d:e7:98:80:d4:5c:d0:a7:a8:e1:d8:e3:
86:3e:0a:0e:7b:21:66:a4:67:de:75:df:be:27:d6:52:87:cb:
91:e5:34:11:a5:7b:16:92:d9:f8:39:b0:04:b9:de:3b:f1:0b:
1f:f6:2f:58:b0:44:6d:1b:96:63:eb:40:51:c4:3d:c4:3e:92:
7a:c1:2d:bb:e9:a6:86:a6:b7:a9:cd:13:27:ef:21:ef:ed:bd:
2f:ee:a3:17:dd:37:a8:3b:74:bd:20:3d:10:f6:16:68:8c:6b:
20:7f:c9:e1:c5:e9:4f:89:11:01:e3:e2:7a:07:20:16:13:b0:
9d:e6:03:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:40:10 2025 by rpki-client