Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kMj6c6nU46_A4bq-CjuGPDhhYvE.roa
File: kMj6c6nU46_A4bq-CjuGPDhhYvE.roa (raw, json)
Hash identifier: X0rEFNCZAi17HJslVWOMMX0twW//Fl0aEw/j0rjav4s=
Subject key identifier: 90:C8:FA:73:A9:D4:E3:AF:C0:E1:BA:BE:0A:3B:86:3C:38:61:62:F1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 182A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kMj6c6nU46_A4bq-CjuGPDhhYvE.roa
Signing time: Mon 10 Feb 2025 14:07:38 +0000
ROA not before: Mon 10 Feb 2025 14:07:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 106.105.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6186 (0x182a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=90C8FA73A9D4E3AFC0E1BABE0A3B863C386162F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d2:06:03:66:5c:a3:65:e5:e4:ff:3a:c9:ad:
a7:3b:e4:a2:7f:93:96:73:2b:03:47:ae:cf:d1:7f:
09:5f:24:2d:f6:92:aa:67:61:bc:26:15:74:a5:62:
99:d4:fb:ad:a9:ee:03:cf:1c:86:5c:5b:ef:f5:32:
e7:1a:4b:f9:a5:f3:8b:2e:54:98:52:5f:b7:63:50:
5b:1d:41:87:74:64:b6:1d:e3:72:3d:85:3e:06:38:
d8:d6:e2:6b:15:1d:69:7c:cb:a5:d3:b8:54:97:f4:
2f:d5:f1:92:9f:26:22:f9:b5:b9:c1:cd:fe:cf:47:
2f:17:8c:b7:66:9c:f8:8c:5b:12:0a:2b:9d:32:86:
a6:1e:b2:7c:b5:04:a9:a0:73:b7:76:14:cd:12:52:
6f:46:44:04:18:02:21:1d:8b:cf:99:97:77:d3:da:
1c:86:2e:0d:ab:71:bb:fa:1c:fc:a5:28:4a:12:91:
d4:c9:50:73:49:40:2e:45:fd:8e:ca:12:65:1b:62:
c9:2a:dc:ce:98:65:e0:6d:98:2e:6d:d5:11:cf:a0:
12:05:7c:1d:8a:53:8d:8e:27:ec:30:e3:8b:8d:49:
e2:5d:56:b5:c7:86:64:0f:9f:ac:ed:e1:8d:4e:7a:
3a:5d:ca:0b:e1:26:50:a2:5c:c1:05:91:67:29:a2:
99:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C8:FA:73:A9:D4:E3:AF:C0:E1:BA:BE:0A:3B:86:3C:38:61:62:F1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kMj6c6nU46_A4bq-CjuGPDhhYvE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.164.0/22
Signature Algorithm: sha256WithRSAEncryption
37:5c:46:28:12:8d:a6:e6:eb:1f:9f:c4:d8:ed:bb:f0:4a:eb:
c5:7d:49:cb:69:1a:81:52:10:1f:d4:f4:37:5f:ff:d3:cf:e5:
05:be:80:dd:2f:8a:d4:5e:6a:c5:67:12:4e:8f:24:d2:f8:6f:
4b:75:45:5a:ff:5e:bb:66:f0:75:ca:33:ac:b2:b3:79:e6:08:
d0:09:f4:19:3c:a2:58:dd:5b:3c:d6:f5:52:fb:50:3d:a6:59:
71:b6:d7:1a:8a:fa:4b:fc:9b:26:6a:81:39:c6:d1:f9:99:6c:
09:2b:3c:af:e4:86:90:e9:10:5c:73:72:78:8c:3d:87:e9:2d:
b6:1f:d4:ca:08:3d:a4:47:58:39:ad:25:9d:97:63:aa:ed:59:
7e:c2:e8:ff:4a:f4:0a:17:fe:4b:09:0a:c5:c5:50:92:72:15:
8e:bf:e4:a8:83:5e:dc:a3:ff:0d:49:a7:83:2a:ad:be:5e:89:
10:39:7b:70:3c:cf:59:a9:78:38:84:07:f4:fd:3d:92:e8:80:
81:4a:14:f5:1c:1d:3a:5d:77:d5:fb:a7:5f:23:00:64:00:90:
cd:4e:b8:e7:c2:71:e2:2d:6b:ba:0d:25:cd:b2:7d:2d:3f:6c:
8b:bb:70:65:79:5f:60:74:92:ba:67:8d:68:24:ae:54:28:5d:
0a:7d:97:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:10:27 2025 by rpki-client