Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jv85-YAl1hImp4ZXog5RnJFhIfM.roa
File: jv85-YAl1hImp4ZXog5RnJFhIfM.roa (raw, json)
Hash identifier: l1OfyRS1xJ344KGRX62UgcMtQOQA0nj934wr8noQW9M=
Subject key identifier: 8E:FF:39:F9:80:25:D6:12:26:A7:86:57:A2:0E:51:9C:91:61:21:F3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17E6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jv85-YAl1hImp4ZXog5RnJFhIfM.roa
Signing time: Mon 10 Feb 2025 14:07:23 +0000
ROA not before: Mon 10 Feb 2025 14:07:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 122.146.108.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6118 (0x17e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8EFF39F98025D61226A78657A20E519C916121F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f4:70:c6:37:95:f2:f7:e6:ec:69:26:a8:7f:
25:9a:25:ea:5c:7b:6e:b0:37:d1:e0:c1:a3:a1:eb:
a3:f9:9b:f3:dc:da:5e:26:cb:ac:37:e7:53:9f:69:
bc:7d:42:e0:47:21:ae:d3:ce:5b:50:5d:c2:98:5a:
ea:29:d7:1f:f0:10:54:f6:69:3d:67:8f:17:0b:6d:
4b:f6:b8:6f:60:79:4e:b4:dd:a3:04:0d:48:3e:2a:
bb:e7:90:ed:96:0e:31:a0:5a:e0:b0:e5:6a:eb:82:
7d:75:f1:34:7e:7f:5b:d2:dd:0a:6a:55:4b:ed:b7:
f9:9a:eb:70:df:67:87:20:c0:9e:94:66:5f:cb:f9:
cd:c3:61:aa:e0:64:67:6e:9b:4d:c2:34:d4:b3:cd:
b0:89:c3:1f:1e:40:55:d0:58:ff:57:75:50:a8:bc:
15:f6:b7:12:43:87:4b:14:03:71:1e:03:5a:88:18:
5a:17:ca:dc:b3:78:d9:83:12:b0:85:04:2a:c1:b3:
00:eb:5b:ee:50:5d:9e:61:81:d8:8f:d3:36:98:b7:
88:b0:a5:7e:78:f7:29:79:e7:f5:76:98:5e:23:e9:
84:ff:b3:a6:b6:f0:8b:e7:33:35:7d:a4:58:14:4f:
a1:1f:20:58:a8:30:ee:b6:0f:aa:4e:8c:b7:4c:a3:
f4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FF:39:F9:80:25:D6:12:26:A7:86:57:A2:0E:51:9C:91:61:21:F3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jv85-YAl1hImp4ZXog5RnJFhIfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.108.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:ab:d9:a3:42:d1:5a:a2:40:1f:39:6a:4b:91:f7:19:68:8f:
1e:20:1f:b4:28:b4:35:ed:b7:9a:00:11:2d:90:75:66:de:97:
e6:4c:44:e7:55:1d:35:a6:4a:61:b5:2c:d2:a9:e3:b1:6a:a7:
60:ad:fa:64:e8:d0:84:d6:27:8d:58:11:75:f8:23:b8:19:01:
d0:9a:cb:6b:0e:bc:1c:64:47:06:08:d2:ec:78:5f:05:89:10:
00:64:09:20:c4:d4:13:e7:d0:37:49:12:ca:45:61:56:59:7d:
77:33:58:8e:e1:7c:48:42:c7:c7:62:a6:02:4a:6d:01:d6:a3:
11:ce:a1:70:ea:74:0b:91:dd:fb:e8:5c:e4:c6:89:70:20:f9:
cc:34:a9:b2:ab:85:c0:fd:4b:0b:fe:30:e7:c3:a2:57:60:d5:
da:c4:3a:07:7d:9f:45:10:37:14:85:23:56:8d:6d:31:5e:fd:
ad:d8:ba:ba:38:3f:1d:a4:c5:81:43:9c:89:c6:c4:87:ab:86:
2e:58:91:34:9a:5c:78:93:51:5f:25:ab:ec:47:65:ad:28:fa:
b6:03:a0:44:8c:f5:d0:da:0c:cf:6a:e7:bd:d0:59:ff:90:42:
35:25:12:3c:2e:20:ab:fb:83:98:de:73:8f:61:cf:d9:d2:02:
ed:60:f7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:41 2025 by rpki-client