Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jVOUnUpLNadhCK_hWSJyHrKChk4.roa
File: jVOUnUpLNadhCK_hWSJyHrKChk4.roa (raw, json)
Hash identifier: I/YX2di0rpM2xoeus+MBgFLSavvJOscQWrYNW6kXpLc=
Subject key identifier: 8D:53:94:9D:4A:4B:35:A7:61:08:AF:E1:59:22:72:1E:B2:82:86:4E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 13C1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jVOUnUpLNadhCK_hWSJyHrKChk4.roa
Signing time: Fri 01 Sep 2023 09:25:23 +0000
ROA not before: Fri 01 Sep 2023 09:25:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 123.205.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5057 (0x13c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:25:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8D53949D4A4B35A76108AFE15922721EB282864E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d8:c0:79:03:30:8f:04:6c:4a:23:ca:e4:c1:
87:c0:3a:ef:7a:72:11:57:70:09:87:70:04:a3:3e:
25:83:ca:c6:07:48:c7:27:5d:91:24:fd:03:ef:23:
00:26:b8:71:53:b1:ce:42:3d:57:b5:32:79:bc:30:
14:1d:0e:fd:92:73:33:bc:21:c0:45:91:e9:bb:c5:
c0:f9:8a:d9:f2:6e:76:e0:fc:6d:4d:55:77:84:29:
17:48:58:3d:a5:3c:25:f2:cf:52:25:f4:df:8e:c8:
65:4e:66:fc:f7:a1:27:eb:83:56:26:94:b4:a1:75:
6d:2d:b2:dd:93:d9:f5:55:41:5a:bb:b2:eb:65:6a:
11:f7:e7:bd:0a:f1:7e:10:26:27:9c:2e:49:c8:43:
ad:3f:44:94:2e:59:33:5b:d5:68:a6:f1:1b:3e:c3:
29:fe:b8:13:e5:1a:a2:fa:c4:e2:e7:60:a6:5e:f8:
0f:73:26:ed:d4:af:11:12:50:41:5a:9e:0a:51:8d:
dd:8b:48:73:51:9d:3f:4d:bd:96:6f:6d:71:1c:3d:
41:ce:43:a5:93:97:17:59:d5:ac:3c:82:56:a8:6a:
1c:47:c5:fb:f5:92:81:97:2b:ae:8b:44:37:27:ae:
7f:90:0b:2f:70:11:67:9c:ed:2e:2b:d6:05:3d:a8:
be:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:53:94:9D:4A:4B:35:A7:61:08:AF:E1:59:22:72:1E:B2:82:86:4E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jVOUnUpLNadhCK_hWSJyHrKChk4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.15.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:e2:76:cc:a8:9e:31:9f:6c:15:da:cc:9d:39:0a:f3:78:47:
81:e6:05:c9:5f:47:b4:ef:53:2a:81:a1:b6:23:9b:f6:7e:39:
a3:8b:d5:89:91:89:9a:14:d0:14:0c:30:b5:7a:2f:52:37:6e:
11:b3:10:3b:a3:1c:0c:2b:69:63:93:a4:fd:58:c5:7e:d9:33:
32:66:8f:0e:53:29:9a:ea:ae:43:15:b9:f6:82:26:8e:0e:27:
2e:af:7f:13:d8:f3:05:f2:ab:df:df:8e:8b:6c:9c:f8:45:90:
3b:04:7e:73:66:46:47:10:8e:7d:b0:47:1d:15:75:a9:7f:91:
74:63:6f:b6:88:d6:10:4f:48:ba:e1:e1:fe:73:c2:a0:21:97:
04:c9:12:99:c4:cb:f1:5b:5b:45:4b:aa:62:df:dc:9c:7a:0a:
62:22:52:7b:55:22:4a:08:5a:20:68:56:b4:db:45:4c:36:c9:
89:12:bf:b9:f9:a5:b4:09:2f:ac:46:07:25:fc:78:86:a6:07:
ac:cb:6a:08:ae:73:60:34:21:7d:1b:5a:3e:e7:57:a9:14:4e:
83:70:30:1c:a1:4d:e5:10:2d:b6:3e:66:cc:70:05:05:b0:1d:
2d:f9:e5:0d:d9:35:04:df:b1:69:34:f5:c8:1b:29:55:cf:09:
ec:c6:2a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:17:09 2025 by rpki-client