Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ax9tA9kHxcqzMc1upTXavdTk6Tk.roa
File: ax9tA9kHxcqzMc1upTXavdTk6Tk.roa (raw, json)
Hash identifier: N0TtL1I8SB7todFEzmp4SwXtCCbaPOfipoIwpPyWMgs=
Subject key identifier: 6B:1F:6D:03:D9:07:C5:CA:B3:31:CD:6E:A5:35:DA:BD:D4:E4:E9:39
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 108F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ax9tA9kHxcqzMc1upTXavdTk6Tk.roa
Signing time: Wed 01 Feb 2023 10:28:43 +0000
ROA not before: Wed 01 Feb 2023 10:28:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 106.105.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4239 (0x108f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6B1F6D03D907C5CAB331CD6EA535DABDD4E4E939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ec:f3:d3:d0:25:d7:af:5b:74:e4:82:f3:83:
d9:e5:4f:ef:6f:98:e8:55:30:dc:54:f4:30:fe:9f:
0f:59:a4:e9:e8:63:b8:40:5f:e4:5c:4b:e3:9b:83:
0f:af:a1:44:9b:94:3f:05:1e:ac:12:d1:44:35:7f:
c1:d0:d4:28:2d:15:64:77:41:1e:47:23:3f:af:d6:
95:15:3e:aa:f5:a1:20:8e:41:c5:7d:ed:03:5c:04:
f7:79:7a:88:04:33:b0:1b:7c:8e:f4:f3:0e:98:b8:
55:df:1d:0c:11:52:67:27:c7:81:76:9f:84:3a:bc:
f3:80:f7:23:2e:c5:89:37:f6:fb:b2:04:7e:3e:8f:
55:1c:1c:f9:5a:c6:ad:a9:72:b4:a3:c9:b0:83:42:
9a:a9:0f:52:ae:04:db:74:7f:0c:54:f4:12:18:7d:
d4:e3:d6:31:92:d6:32:b7:8f:19:86:fa:87:97:47:
02:ab:b9:53:9a:51:b9:4e:59:f5:56:2c:ca:f4:c2:
23:e8:6f:0d:14:fb:82:9e:91:ff:0f:51:95:f7:30:
ff:51:c1:76:ef:d3:dd:fd:33:e4:d0:89:7d:53:b6:
fb:04:9a:51:87:01:6b:45:27:bb:b4:0c:ed:cb:01:
0a:a6:26:e5:17:65:ec:8a:27:3b:e0:0e:0c:dc:6c:
2b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1F:6D:03:D9:07:C5:CA:B3:31:CD:6E:A5:35:DA:BD:D4:E4:E9:39
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ax9tA9kHxcqzMc1upTXavdTk6Tk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.178.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:9c:a9:8e:ac:6f:8c:af:9a:6b:15:f2:6d:58:22:d7:da:01:
4e:b2:60:c5:77:1a:3a:fb:11:ee:e0:f7:1c:0e:b0:a2:8f:3a:
02:dc:d1:a0:c5:75:6b:c4:2a:75:63:9c:e3:0d:cf:9b:38:2e:
28:88:d4:e7:40:da:07:15:53:d4:92:33:7b:8a:5a:74:83:77:
c0:90:b0:57:9d:c7:dd:00:83:9f:38:b5:80:3d:fe:32:a1:8e:
10:e4:52:ab:3f:15:f9:5b:44:30:7a:74:c1:c8:34:5e:b4:76:
8f:dd:ad:84:48:9d:94:09:f4:6e:1e:b4:77:89:c1:07:82:55:
88:47:e2:46:90:74:90:8c:2d:f6:82:13:d5:98:d8:bf:f6:0b:
44:23:ec:56:36:bf:67:68:d3:37:4c:ec:af:27:7a:dd:6a:6c:
8e:4f:8b:24:52:25:1e:58:f6:57:b6:bd:e3:06:30:b4:a3:f7:
e7:3f:64:79:35:bf:c7:50:67:b2:71:02:2f:74:dd:5d:98:0b:
64:76:74:ac:3e:23:5c:38:82:60:bb:74:ce:de:2f:ab:d8:ef:
c8:d6:77:e5:c9:d2:79:9d:0a:16:29:db:17:53:4e:47:e1:77:
f5:be:2d:61:66:10:93:e5:e6:96:93:12:8e:77:e9:17:a5:3a:
11:6f:57:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:39:09 2025 by rpki-client