Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jdkx4jOEjyia1CDn-SeaYsigpbQ.roa
File: jdkx4jOEjyia1CDn-SeaYsigpbQ.roa (raw, json)
Hash identifier: FtbtkF4Qz3smKuzVyj1M31kO0CiVyFhNr/qi1OrjBPw=
Subject key identifier: 8D:D9:31:E2:33:84:8F:28:9A:D4:20:E7:F9:27:9A:62:C8:A0:A5:B4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1772
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jdkx4jOEjyia1CDn-SeaYsigpbQ.roa
Signing time: Mon 10 Feb 2025 14:06:54 +0000
ROA not before: Mon 10 Feb 2025 14:06:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 112.105.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6002 (0x1772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8DD931E233848F289AD420E7F9279A62C8A0A5B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9d:6d:e4:b3:c2:92:62:bc:c2:ba:e3:97:e0:
f5:15:d5:bb:61:99:7b:c5:f8:6d:65:43:75:13:14:
d6:45:c3:3f:f3:4f:be:73:93:0c:43:db:da:2b:d6:
d1:6e:b4:b0:12:9e:2b:9a:bb:2e:c4:05:89:ce:54:
b1:b8:aa:28:8c:d3:d4:3f:72:5a:d4:d5:35:46:41:
5a:2b:b7:ef:3b:20:1a:c6:54:bd:19:71:c0:44:32:
f2:fa:87:9d:a6:32:e5:81:1b:97:7e:27:8a:95:61:
c6:21:5a:32:3f:76:a8:37:67:3b:d8:60:be:98:0f:
19:d9:e7:12:85:e5:b5:30:6d:82:93:9d:6d:70:bc:
be:54:47:78:b4:ef:15:2b:a4:1d:b2:02:95:de:ff:
ab:1e:70:2d:a6:c1:51:0e:c0:6f:76:6d:01:fa:c8:
63:2d:8b:68:32:66:6f:89:58:de:28:bd:a3:23:97:
58:97:92:05:8b:0d:d8:b9:d1:20:1f:49:a4:99:85:
d4:62:44:68:7a:ca:35:90:2b:9b:57:4b:79:8a:9a:
96:46:d4:ca:8f:0c:5c:a5:68:9e:9e:0f:ab:8c:e8:
3c:5e:4d:d8:cd:cd:26:39:98:1e:70:0d:9c:da:84:
49:eb:18:93:27:dc:97:8e:80:91:e2:c7:73:8a:66:
7f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D9:31:E2:33:84:8F:28:9A:D4:20:E7:F9:27:9A:62:C8:A0:A5:B4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jdkx4jOEjyia1CDn-SeaYsigpbQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.56.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:98:57:40:8e:17:f0:d3:4c:bb:cb:e3:cd:ed:e2:f1:6c:1d:
35:01:1d:5a:87:76:a9:e9:3c:71:5c:35:80:1c:74:46:59:27:
de:7c:5c:32:09:f0:04:61:fa:b1:51:5b:99:27:b7:0b:5f:fa:
86:90:7f:bf:4d:d1:6c:ff:cc:04:86:4b:7e:1d:4e:58:d9:a9:
89:d2:6e:65:b9:ad:e0:55:4e:06:6a:36:46:2a:89:8c:94:00:
1a:5c:23:c4:c6:8f:2c:7d:d9:c8:a0:cb:75:24:5b:b0:53:16:
af:c1:d5:87:8b:b5:be:bb:9e:da:32:7f:62:23:79:b3:c2:5d:
38:d2:58:a5:89:32:08:25:35:58:17:ac:37:10:83:58:5b:d3:
2c:c7:88:55:03:ae:9b:1c:63:09:84:c8:74:8c:53:d3:a7:d5:
f8:77:f9:1a:1c:f1:46:fc:02:ef:ac:7a:27:81:5d:6b:56:8b:
85:68:bc:6f:f3:1e:8c:33:bb:b7:f3:92:21:1c:1d:26:45:e8:
88:85:4e:b0:c2:e1:52:a8:a8:d1:d2:db:70:a8:f5:b6:ff:74:
71:bb:45:bb:ea:e4:ed:4a:a7:c4:99:47:21:a6:36:84:64:22:
9f:05:6d:b1:33:1d:81:c7:02:2f:45:a6:b6:d2:68:4c:ad:21:
55:94:6b:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:07:53 2025 by rpki-client