Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lSEpyc5NlgFVMZRh5qVSL_Tp3m8.roa
File: lSEpyc5NlgFVMZRh5qVSL_Tp3m8.roa (raw, json)
Hash identifier: 0zu9lU6NxfJOq+TxckE0J2u9yDid3aIrKTsFUt+ZJHQ=
Subject key identifier: 95:21:29:C9:CE:4D:96:01:55:31:94:61:E6:A5:52:2F:F4:E9:DE:6F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1774
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lSEpyc5NlgFVMZRh5qVSL_Tp3m8.roa
Signing time: Mon 10 Feb 2025 14:06:55 +0000
ROA not before: Mon 10 Feb 2025 14:06:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 113.196.144.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6004 (0x1774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=952129C9CE4D960155319461E6A5522FF4E9DE6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:67:1f:aa:20:fe:b5:c1:3a:95:85:69:b6:91:
e3:e8:b2:e2:e7:33:0e:10:2d:b0:6e:1b:46:41:95:
11:4f:d6:d1:9f:03:5c:d4:1f:e7:b3:7d:ba:cc:26:
19:c9:74:15:69:fe:65:bf:0d:2e:be:c1:68:f4:db:
77:12:2d:84:c6:e8:96:2a:40:7e:a9:6c:ef:02:88:
6a:bf:c9:90:64:28:0a:41:90:6e:92:1a:de:da:86:
a8:91:2d:2e:ad:b1:7b:d0:39:08:ae:cf:a2:ca:60:
0d:b7:c6:75:f3:bb:f7:b4:22:88:93:6b:cc:c5:24:
75:9e:c5:01:f1:cd:1c:53:8e:9c:8f:fe:d8:b0:d7:
c3:dd:68:cf:4a:f5:6e:7b:a3:37:28:49:be:64:38:
79:13:77:47:69:fa:41:1f:58:e7:f0:cf:90:c2:e0:
55:33:45:f2:79:88:c0:47:07:fa:c7:08:33:22:12:
95:e8:cd:28:fd:6e:83:5f:1b:d7:aa:07:df:14:8e:
7b:59:13:92:81:3e:48:fb:35:88:02:83:3b:b1:f3:
11:45:44:20:4c:bf:29:fa:55:6c:fe:5b:86:54:a4:
0e:41:99:d5:14:b8:15:78:11:b6:ba:88:0e:6a:e2:
ed:a2:2b:04:a9:3f:1f:14:f6:ca:46:f6:66:42:82:
21:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:21:29:C9:CE:4D:96:01:55:31:94:61:E6:A5:52:2F:F4:E9:DE:6F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lSEpyc5NlgFVMZRh5qVSL_Tp3m8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.144.0/21
Signature Algorithm: sha256WithRSAEncryption
04:03:d9:8e:07:bb:d5:70:6e:51:8b:04:bd:b0:6d:a2:0c:7e:
31:41:88:ee:b3:91:10:6c:fe:8b:5f:c9:27:ed:be:8a:76:c4:
bc:1f:b8:51:11:93:0a:60:58:de:e3:eb:87:1a:52:09:5f:b1:
c1:ea:80:96:1d:45:0e:ce:65:69:2a:8f:94:84:5e:79:f6:95:
37:5d:72:e7:6d:f5:8c:d2:20:72:ee:da:bd:3f:f9:88:3e:d4:
b4:ce:fe:54:76:19:68:ba:a4:e8:5c:b0:07:24:d6:49:e4:2e:
68:38:eb:af:6a:0d:36:bf:58:1a:61:5f:fd:b7:c7:65:a3:9d:
ed:a1:ae:d9:63:36:6d:5a:db:e3:97:43:5b:37:d1:1a:46:07:
1d:9f:a9:be:e0:bf:9b:64:d4:f2:73:cd:64:8e:5f:cc:79:96:
64:f8:90:48:1a:ab:30:fc:e2:84:7b:ae:57:d0:5a:3e:9e:44:
1a:8c:9c:96:5c:a2:b4:c8:17:ff:19:5b:86:ed:5a:7d:60:3a:
bf:cb:18:04:b0:12:3f:7c:da:57:5e:71:54:ee:99:26:13:7e:
dd:bb:a3:ad:86:7d:0c:3f:03:57:78:6d:d6:47:40:db:f5:ae:
a4:0b:22:82:f0:a9:af:48:b2:48:b3:f2:15:5a:3b:6f:ab:fb:
48:67:3c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:33 2025 by rpki-client