Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jXfCnsa6Axp1-ix3xf1a4VAd2-c.roa
File: jXfCnsa6Axp1-ix3xf1a4VAd2-c.roa (raw, json)
Hash identifier: Dgn5I2uYudLxcxOY+h99sMKfQV6axwZ/u8nFnlXn1wU=
Subject key identifier: 8D:77:C2:9E:C6:BA:03:1A:75:FA:2C:77:C5:FD:5A:E1:50:1D:DB:E7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1800
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jXfCnsa6Axp1-ix3xf1a4VAd2-c.roa
Signing time: Mon 10 Feb 2025 14:07:29 +0000
ROA not before: Mon 10 Feb 2025 14:07:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 122.147.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6144 (0x1800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8D77C29EC6BA031A75FA2C77C5FD5AE1501DDBE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ef:3f:0b:86:59:40:db:86:6e:4e:0e:d3:a4:
57:f0:80:40:4c:19:77:44:f4:57:ec:70:13:a2:d0:
b9:f3:95:36:76:2e:6f:e7:cc:dd:85:77:a2:2d:c3:
a0:91:d3:6d:30:eb:85:39:d2:57:2e:c2:c5:94:fc:
5e:f7:6f:ac:71:aa:75:83:1a:c2:98:58:44:4e:e8:
68:b2:92:21:c2:a3:7e:6c:9c:25:a0:46:06:a1:c2:
2a:39:48:18:6c:13:c5:1d:d1:c8:7b:7f:7b:80:4a:
bc:b6:f0:48:5e:93:22:5a:cf:b9:1b:0b:f6:a7:51:
3d:8e:d8:6e:5e:5f:89:10:d9:25:5d:e6:66:bc:5c:
c6:89:57:f4:8f:96:61:00:96:c6:03:f1:32:b4:73:
bf:07:2b:89:32:cd:68:e3:40:ad:be:df:59:79:8c:
db:9a:8e:8f:98:d6:f1:26:7e:73:b1:e9:ad:79:d5:
47:f8:0d:1f:4b:9e:c3:81:fc:b0:a6:31:fd:20:44:
73:fb:61:dc:65:b4:2c:76:4f:86:99:2a:a7:af:05:
9d:24:f0:59:e2:35:cc:f7:eb:2f:cb:11:2c:55:0f:
3a:70:1f:7c:7b:55:50:20:9e:5b:f5:d4:7c:c3:03:
7b:14:02:d8:12:9e:08:e9:e4:e2:e9:29:27:88:fb:
08:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:77:C2:9E:C6:BA:03:1A:75:FA:2C:77:C5:FD:5A:E1:50:1D:DB:E7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jXfCnsa6Axp1-ix3xf1a4VAd2-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.192.0/18
Signature Algorithm: sha256WithRSAEncryption
63:03:39:86:20:a1:b6:3b:a4:a3:8b:05:fd:c8:c8:8c:76:09:
4c:97:a4:59:f4:3b:df:d9:cc:e9:90:8b:da:30:f1:e3:d5:a3:
59:ce:98:95:cd:1f:4c:17:9d:b6:23:ff:61:2b:26:df:4a:11:
97:47:b0:29:54:49:88:fe:c4:92:7c:ba:e0:4c:7c:6a:31:9a:
85:be:98:c2:d5:42:de:f9:55:68:f5:fb:3d:f9:68:49:42:e1:
cf:18:0e:8a:d8:e3:ca:41:56:d2:ea:63:e4:91:a7:33:21:31:
8a:6a:a5:c2:62:6e:3a:0f:75:cd:da:80:e6:c2:e4:97:2e:85:
4b:c9:64:d3:29:b4:47:7f:31:02:a7:1d:63:f0:68:9a:f8:8d:
d7:09:00:da:43:79:e2:bc:15:e0:fd:78:44:ec:e9:7a:4a:0b:
74:f4:c0:ec:4c:4f:db:54:6c:eb:db:bb:00:0d:5c:dc:45:77:
47:c9:21:85:a8:ba:fa:8b:c0:a1:83:1c:7f:b8:3c:91:bb:b2:
76:4a:c8:de:ac:03:6c:7b:86:97:73:0f:a7:41:e8:ee:6e:8d:
ba:0f:3d:50:74:b7:8d:e1:24:e4:04:83:1e:ec:ca:48:6d:00:
6f:10:f6:8e:e3:8e:2c:99:37:c9:81:8e:83:37:96:99:d5:0b:
a2:6b:6a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:27:37 2025 by rpki-client