Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/q1miQbEiaBdLK7yj_r9KWVGsYK8.roa
File: q1miQbEiaBdLK7yj_r9KWVGsYK8.roa (raw, json)
Hash identifier: PBeTTkcJOE0lM181bX2OX91L12hDc0dtSlAOOFWyI5Q=
Subject key identifier: AB:59:A2:41:B1:22:68:17:4B:2B:BC:A3:FE:BF:4A:59:51:AC:60:AF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 182C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q1miQbEiaBdLK7yj_r9KWVGsYK8.roa
Signing time: Mon 10 Feb 2025 14:07:39 +0000
ROA not before: Mon 10 Feb 2025 14:07:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 175.183.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6188 (0x182c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AB59A241B12268174B2BBCA3FEBF4A5951AC60AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:06:86:8f:5a:7b:8c:19:45:29:8e:f7:8c:15:
cb:a2:a6:ba:9b:1c:c6:eb:51:b1:11:ad:fe:27:ae:
6a:69:55:72:e5:42:ed:b2:bf:89:f8:4d:b3:48:e3:
c5:a8:e5:5d:15:05:75:d6:c1:d9:a3:d1:75:cd:59:
fb:b2:d2:7b:27:02:13:61:fe:90:78:5f:09:8d:8e:
0d:4b:b1:96:42:13:f9:8a:f0:8f:ea:95:49:6c:95:
6e:98:f4:f6:4f:99:19:02:25:57:7d:8d:95:c8:0c:
ee:62:1f:9a:3a:73:14:df:f6:5c:a8:b9:65:f1:e3:
09:e5:ee:f1:d2:91:ed:8e:8a:78:e0:5f:bc:67:1a:
49:77:ee:7b:e2:a4:40:ee:a8:69:b4:9d:4c:33:ad:
95:2b:c3:2a:6e:49:f3:65:c9:4c:82:29:ac:a4:04:
aa:11:37:57:db:49:45:1e:99:c8:05:4c:bf:aa:fb:
0a:b1:74:29:f1:4d:ed:19:f9:8f:07:29:db:ec:09:
de:f6:c1:0e:d4:61:b3:39:44:a1:e5:02:80:d9:bd:
ee:c3:fe:65:41:b4:5d:04:d6:99:c6:c2:c8:af:34:
30:9c:d6:17:6c:fc:68:65:6f:95:c0:3d:62:dd:b7:
53:a5:a9:bd:72:d8:2d:a4:bd:87:cf:c9:e5:3a:d5:
26:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:59:A2:41:B1:22:68:17:4B:2B:BC:A3:FE:BF:4A:59:51:AC:60:AF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q1miQbEiaBdLK7yj_r9KWVGsYK8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.137.0/24
Signature Algorithm: sha256WithRSAEncryption
63:eb:d2:00:52:4f:b8:00:19:81:b2:ae:71:76:01:32:71:dc:
64:e0:23:66:36:01:af:61:af:37:5f:21:31:dc:66:ad:e3:ad:
91:3c:8c:3f:db:9e:7b:71:b3:b5:02:b5:17:1a:8f:af:5c:77:
8d:6e:53:fa:d1:70:3e:d6:96:50:fc:6e:a1:b4:d1:46:be:e2:
d0:5f:85:ad:c9:27:31:a6:84:19:60:bb:c0:83:42:35:80:34:
e3:61:fc:6c:b1:f0:4a:18:33:fc:79:f8:22:2e:8d:69:e6:a1:
ea:56:7d:9d:05:ff:ad:a4:22:63:4f:e4:89:a2:16:b1:23:34:
ab:90:d4:26:82:cf:49:c8:4a:89:16:60:be:9f:03:18:7a:3f:
50:2c:6b:a8:72:f8:6a:aa:b5:86:ca:6f:18:01:0b:f4:20:77:
18:d7:2f:a1:4e:fa:bd:fc:8b:9e:e9:a0:c3:0a:8e:a4:11:a6:
67:12:fe:ce:71:05:d0:a6:30:57:3a:43:86:f4:b4:4e:16:b3:
5e:fa:4f:7f:14:94:13:40:93:0a:3b:b2:a0:53:a6:21:b2:d5:
dc:c5:c8:18:3d:7e:7f:a2:b6:85:04:5a:a6:21:67:62:cf:e9:
03:a5:d6:64:81:79:39:34:15:47:89:4e:41:9d:2e:bb:d4:fa:
dc:e8:87:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:30 2025 by rpki-client