Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/f1zfG_3R1yerMblhxuW3883m150.roa
File: f1zfG_3R1yerMblhxuW3883m150.roa (raw, json)
Hash identifier: lUgu0Qh+NFAW1zCJuOgG2a7ADWCKm9ZoQtDyspeksHw=
Subject key identifier: 7F:5C:DF:1B:FD:D1:D7:27:AB:31:B9:61:C6:E5:B7:F3:CD:E6:D7:9D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1879
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/f1zfG_3R1yerMblhxuW3883m150.roa
Signing time: Mon 10 Feb 2025 14:07:59 +0000
ROA not before: Mon 10 Feb 2025 14:07:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6265 (0x1879)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7F5CDF1BFDD1D727AB31B961C6E5B7F3CDE6D79D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5f:6a:f7:3f:9d:3b:1b:17:ad:17:b6:13:f2:
d8:da:3c:e8:ef:32:71:85:41:80:45:61:04:ca:92:
87:cf:35:7c:6c:32:5a:20:f9:31:11:01:0a:e4:a9:
3c:fc:0d:f1:52:de:b5:97:92:37:82:c3:f5:72:e1:
8e:d8:40:2a:ee:d8:be:6a:e1:3f:32:4d:91:1a:ac:
a0:f7:a7:92:09:49:7f:9d:b9:55:9f:e3:59:3b:5e:
8f:b9:43:6c:60:d6:c7:dd:ff:14:65:d4:22:0a:8a:
ee:d2:3f:e9:a6:e0:48:76:00:85:e7:0a:94:13:44:
d8:d3:14:7a:f5:0b:03:27:69:8c:79:a2:79:c1:e7:
e3:0a:0a:fe:1a:41:97:f6:74:f8:95:06:b7:33:4d:
76:45:35:f0:5e:a2:46:f8:c0:0e:e8:87:a6:f3:a8:
5a:72:64:0e:01:90:82:13:0d:ae:6c:0e:45:6e:e7:
4a:06:4f:1f:4f:21:36:04:e5:e4:17:d2:62:59:21:
21:27:3a:92:9f:e9:6b:e9:ac:12:33:46:81:f1:c6:
24:bc:e9:74:a0:9b:9f:58:33:9b:b8:02:21:7c:bb:
b9:d1:8c:9d:f6:3b:75:f8:2f:d4:c6:9d:d9:9c:86:
29:5f:f6:b9:66:23:0c:58:08:3b:bb:0e:49:93:12:
5d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5C:DF:1B:FD:D1:D7:27:AB:31:B9:61:C6:E5:B7:F3:CD:E6:D7:9D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/f1zfG_3R1yerMblhxuW3883m150.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
7a:e8:db:94:ac:45:a9:3b:d0:4d:62:b9:1e:9d:79:d5:7c:18:
e7:e7:c5:17:45:a1:4b:a0:99:a3:df:2b:a0:5e:67:a7:1e:5f:
10:fc:49:64:80:68:20:e0:8d:cc:0c:9f:8f:05:49:b3:7c:58:
f1:ad:a4:b5:69:d1:98:98:2f:28:23:a0:dd:ca:ab:41:df:69:
ec:5a:69:09:d4:02:99:26:c3:65:ce:f1:fa:f6:71:3a:07:75:
e7:4d:2d:93:c0:10:b3:1d:3a:de:f7:f2:10:ca:e2:0c:ec:65:
18:dc:eb:4a:f0:e7:82:3d:56:fd:41:14:50:73:bf:8b:88:00:
a5:c2:11:1b:1d:b3:d1:ab:e1:d4:94:a7:3b:49:11:7a:b9:39:
21:58:1b:c3:05:db:9f:52:69:66:5e:44:53:e4:9c:89:d7:9f:
19:df:e4:ec:03:9c:ee:9a:76:5b:96:da:5f:2a:6e:d3:b4:61:
55:1f:fa:f5:81:68:ae:61:2d:71:82:2f:49:0e:9d:67:df:3e:
9c:cf:1e:ed:b9:50:9e:0f:2b:4f:dc:57:d2:69:dd:72:6e:cc:
36:ce:ab:42:d4:64:d1:a6:58:21:f1:f2:89:39:10:99:30:d3:
67:d7:d5:7f:57:0b:42:63:ac:1f:6a:d8:f1:b7:ed:c2:3e:6c:
2e:db:47:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:27 2025 by rpki-client