Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/enSOgVeEfJXNUAqBwhhGZ63UgNg.roa
File: enSOgVeEfJXNUAqBwhhGZ63UgNg.roa (raw, json)
Hash identifier: XJKhxPhaZ107wSvqTvhx3H3H+/OWLx+locGF/vJmMvU=
Subject key identifier: 7A:74:8E:81:57:84:7C:95:CD:50:0A:81:C2:18:46:67:AD:D4:80:D8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17B7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/enSOgVeEfJXNUAqBwhhGZ63UgNg.roa
Signing time: Mon 10 Feb 2025 14:07:11 +0000
ROA not before: Mon 10 Feb 2025 14:07:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 136543
IP address blocks: 115.30.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6071 (0x17b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7A748E8157847C95CD500A81C2184667ADD480D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9e:9a:42:c7:24:60:0d:f3:36:3b:e8:aa:d1:
8f:c7:9a:a8:79:cb:ae:7d:8e:c3:31:42:58:c1:2c:
35:dd:b1:90:02:ab:76:ed:84:7e:f2:6c:3e:68:30:
68:46:c8:7f:9f:f2:25:a6:57:0c:bc:38:dd:bd:cc:
c5:9a:05:cb:2c:fd:26:37:81:20:d0:34:fc:82:e7:
d4:98:d1:13:aa:94:42:59:c5:e4:07:20:0c:f4:b0:
9c:91:2f:75:17:f5:a1:80:98:f0:d2:c1:ca:8a:9a:
dc:eb:85:3b:77:59:c0:c7:d4:9b:77:50:36:32:14:
e7:7c:50:eb:a9:53:da:8c:86:c4:f0:40:46:da:78:
c7:97:79:99:51:d4:3a:46:4a:f9:f8:69:da:eb:b2:
5b:55:4c:62:72:36:9d:e2:e8:8a:8a:50:fd:a5:02:
88:ca:ac:3d:24:d8:cd:07:2d:2b:4d:48:2d:0c:fd:
75:d8:0b:31:67:22:24:e2:4b:eb:5f:52:7b:06:1a:
30:17:e4:fd:25:de:6b:4f:4e:fd:95:c6:2b:69:db:
73:0f:15:26:04:67:5b:80:0b:9b:1f:be:ea:6e:98:
f5:63:26:6f:3e:e1:7d:34:d8:6b:7b:b0:9f:bf:78:
aa:f1:64:65:41:24:1f:9c:d4:40:50:43:68:ea:ed:
d0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:74:8E:81:57:84:7C:95:CD:50:0A:81:C2:18:46:67:AD:D4:80:D8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/enSOgVeEfJXNUAqBwhhGZ63UgNg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.30.65.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:11:75:fe:ce:b1:7b:85:83:fa:d0:7a:4b:2f:94:8e:bc:2e:
b0:a5:11:fe:06:e6:77:d6:21:f7:68:12:ea:bf:ed:0e:52:06:
8d:94:05:2d:04:84:eb:ec:a8:76:92:1f:9e:61:cf:7b:bb:40:
37:19:22:0e:41:4d:57:e5:a9:8f:6c:1f:b6:8a:90:78:2d:91:
28:cd:fd:e6:96:ad:39:6f:44:2b:bb:14:10:cf:83:a0:1c:20:
70:0c:47:bc:5f:ef:31:bc:0a:8e:b5:ae:4a:a3:27:1a:22:3a:
e7:c0:c3:e3:fb:e0:3d:4f:2b:a7:cd:ed:5f:d6:de:35:6a:a8:
05:fc:01:29:64:0a:ed:8c:a5:96:02:16:6a:96:f4:90:f7:4b:
1a:96:32:88:77:a5:f6:43:79:d3:76:3d:ba:51:09:e3:fd:4a:
59:67:ed:50:19:c9:fc:6c:73:45:8a:ee:1b:53:a0:84:a9:80:
95:b8:68:5f:10:4a:aa:0f:f0:b6:4b:a0:00:19:79:13:30:85:
98:93:a5:f2:45:c7:13:8e:bb:56:8b:ae:d8:1a:a0:22:6b:07:
d9:27:03:04:28:b8:c5:a9:a5:e6:ca:59:7c:69:9c:a6:ce:09:
30:c7:07:36:d6:a0:c9:1a:9e:dd:c0:18:40:82:25:97:e8:02:
9c:99:3f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:35 2025 by rpki-client