Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jvTn0Jv9BULrD8hkrDEv6nu-pI8.roa
File: jvTn0Jv9BULrD8hkrDEv6nu-pI8.roa (raw, json)
Hash identifier: kWqV2KXpt5Q9kdEEYDHuj+dUV954fBO5EAoArhg7StI=
Subject key identifier: 8E:F4:E7:D0:9B:FD:05:42:EB:0F:C8:64:AC:31:2F:EA:7B:BE:A4:8F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17A3
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jvTn0Jv9BULrD8hkrDEv6nu-pI8.roa
Signing time: Mon 10 Feb 2025 14:07:07 +0000
ROA not before: Mon 10 Feb 2025 14:07:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 218.210.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6051 (0x17a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8EF4E7D09BFD0542EB0FC864AC312FEA7BBEA48F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:02:c7:6f:dd:1a:a8:80:7d:7a:1a:63:e1:9e:
1f:f8:45:83:23:8a:40:6f:90:79:6d:f5:5a:65:dd:
cc:81:93:e7:21:fa:a8:3b:a9:69:f0:b5:5f:c6:82:
4c:49:4f:aa:a6:02:f8:4a:60:df:fd:b9:9b:3e:2c:
5e:b5:4c:6f:4c:49:d1:8d:16:08:9a:ff:3c:f3:71:
f1:39:70:d8:b3:e3:aa:69:02:b4:67:ef:27:74:32:
43:2e:da:46:5f:2a:cc:eb:27:0c:16:41:b7:2c:4e:
20:4f:c1:fa:43:17:d2:7b:e7:2a:f0:28:50:3f:61:
b2:3f:72:22:ac:ee:be:dc:ed:9d:7e:e1:31:63:82:
20:ae:3c:35:b0:f9:e2:05:f2:97:f8:53:f7:92:26:
b5:e4:ba:99:fa:00:fa:8f:1f:41:64:0e:f1:63:48:
23:16:6e:7c:69:93:9b:f6:b6:25:85:c6:14:10:4f:
a1:1b:ee:1e:41:b0:9e:f1:31:be:75:76:c9:5a:b5:
ad:60:c8:4b:76:82:1e:e9:71:0e:8b:2c:9a:66:19:
b0:a8:f3:d7:95:98:07:77:cf:93:fd:7a:88:a3:72:
8a:57:fc:94:d2:2c:56:b3:3f:b6:11:f5:6e:8e:4e:
43:84:1b:66:37:a8:20:bd:b1:f9:ca:4e:67:55:b7:
94:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F4:E7:D0:9B:FD:05:42:EB:0F:C8:64:AC:31:2F:EA:7B:BE:A4:8F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jvTn0Jv9BULrD8hkrDEv6nu-pI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a8:93:b6:0b:75:17:70:0d:49:2d:8a:a9:db:17:36:17:ae:91:
9c:70:2f:0e:1c:4c:18:29:a4:49:fb:ee:de:84:d3:44:df:fb:
5d:d7:ea:cf:53:7c:ee:bc:b8:43:63:9a:23:f2:0b:4e:3c:90:
3b:c0:b1:7f:fd:64:2d:a4:ad:73:d2:c3:97:f5:ee:7d:e0:ac:
bd:47:ce:08:b1:cb:7f:9f:ac:76:bc:11:d4:fd:d2:3e:67:cc:
e4:ce:76:84:9c:e8:7b:6b:56:87:56:26:c8:32:3e:ec:5c:02:
b7:01:d0:e1:d8:e5:95:a4:68:43:d3:fe:40:2e:43:dd:af:27:
1b:6e:9d:03:74:d8:65:d0:60:74:da:d6:62:da:44:60:53:fa:
43:6a:22:e2:4e:33:5e:41:45:a6:1d:82:86:19:66:fc:bc:08:
5c:61:03:a6:5c:5e:df:29:d3:f2:99:c2:99:f4:9a:67:da:28:
a0:3e:93:90:76:91:c7:e7:eb:da:d9:31:d1:ab:e9:97:fb:b8:
c6:48:e1:58:14:d0:5a:ff:f7:eb:f5:f9:1d:7c:b8:4c:ec:bd:
52:fa:71:cb:0e:6e:37:24:dd:e9:5d:1b:20:a4:ca:ab:e7:52:
09:58:0a:63:22:f4:84:03:22:ff:67:04:d2:84:72:1a:6c:2e:
29:f1:75:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:24 2025 by rpki-client