Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mP23YgM8XVo7K0dpMUwS_Ovdb0A.roa
File: mP23YgM8XVo7K0dpMUwS_Ovdb0A.roa (raw, json)
Hash identifier: 5v4sT3douyJoPYPbdyHF4ZWy10u3igfMG3VSg+f66S8=
Subject key identifier: 98:FD:B7:62:03:3C:5D:5A:3B:2B:47:69:31:4C:12:FC:EB:DD:6F:40
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17C9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mP23YgM8XVo7K0dpMUwS_Ovdb0A.roa
Signing time: Mon 10 Feb 2025 14:07:15 +0000
ROA not before: Mon 10 Feb 2025 14:07:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 175.183.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6089 (0x17c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=98FDB762033C5D5A3B2B4769314C12FCEBDD6F40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:12:f6:71:c4:c7:32:c9:ad:30:f5:7e:a8:22:
e2:54:33:38:a3:de:c4:f0:a6:dc:22:ba:29:5f:2e:
e9:69:72:6f:b2:fb:f2:a6:c8:48:e5:d1:57:58:8f:
0b:52:61:ef:86:38:37:c5:4f:6c:4e:7b:c8:76:73:
7d:99:f4:46:b4:91:17:85:42:d9:b1:d1:21:2e:c9:
3a:e3:bb:bf:8b:f2:12:20:6c:ca:58:7e:99:17:22:
28:dc:17:ca:50:9c:b7:cb:2e:b0:af:ab:31:01:75:
93:88:77:1a:be:b0:ef:ce:78:15:42:48:1c:35:ea:
50:da:72:e5:65:d0:a5:33:2a:95:ba:9e:10:76:9e:
ad:a3:ca:f6:cb:a8:28:aa:bb:69:d5:1e:18:d3:f3:
3c:e5:49:da:15:0b:e1:43:a6:ee:59:84:1e:9d:15:
c8:58:55:64:a1:47:89:85:0c:6b:92:fa:5b:41:72:
b7:12:f5:69:e1:ac:cb:8e:77:96:71:e6:7e:1a:6e:
b3:be:42:00:8f:b0:1b:9b:8c:bf:6f:01:a7:3f:07:
de:fc:c5:83:8f:68:e3:ea:eb:66:a8:c4:8b:6a:64:
28:28:7e:b2:99:5f:ca:d5:02:5c:e2:cb:da:fe:1f:
28:60:84:75:2c:d2:ce:f0:b8:3c:85:51:1d:4c:3e:
3b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FD:B7:62:03:3C:5D:5A:3B:2B:47:69:31:4C:12:FC:EB:DD:6F:40
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mP23YgM8XVo7K0dpMUwS_Ovdb0A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.64.0/20
Signature Algorithm: sha256WithRSAEncryption
8c:5f:93:93:b5:fe:b4:c5:71:5a:3d:a3:70:12:65:56:b1:7f:
c8:7f:85:e6:8d:7e:83:9f:66:7d:20:99:1c:83:87:63:08:e6:
f0:dc:a5:0e:e8:a1:3e:b8:f0:a5:34:f2:23:4b:8d:b3:8f:f0:
0b:fa:68:5d:86:82:03:4a:82:a6:70:ae:13:2a:d7:2f:1e:99:
77:e0:ca:62:52:93:95:e2:9e:a4:85:4f:31:90:49:55:fd:87:
52:ac:e9:f5:43:dd:db:09:fb:6d:20:e9:b3:e6:b1:d2:e4:e8:
0b:f7:0c:f4:a7:3a:58:0b:8f:aa:28:82:29:4f:72:78:34:4c:
19:e6:21:eb:69:77:73:37:ca:d4:79:be:11:97:ff:1e:00:80:
3e:43:51:9e:9c:14:b8:e7:43:7b:84:49:49:e0:fe:43:46:a6:
1e:c1:72:c8:38:4b:54:ec:4a:f6:71:dc:ce:5d:6f:2c:6c:07:
58:60:c4:af:95:e5:81:69:12:ad:3c:1f:ed:6d:44:3d:48:b0:
e9:42:12:a0:f7:9f:79:91:81:7c:a8:e6:e8:32:c1:ac:85:45:
56:6b:41:8f:d9:b9:8c:35:68:b0:f2:8e:70:0c:de:4c:91:ce:
ca:54:f6:90:db:eb:49:c1:02:2c:47:7f:c6:ab:88:9e:c5:4b:
78:73:d2:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:12:05 2025 by rpki-client