Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qzvGIe_yS0j49OhIQsukrhrIfng.roa
File: qzvGIe_yS0j49OhIQsukrhrIfng.roa (raw, json)
Hash identifier: HIh9hHxZ46ottFQG2omk+dMBDs9pXC3Fm9GcIlhvkV8=
Subject key identifier: AB:3B:C6:21:EF:F2:4B:48:F8:F4:E8:48:42:CB:A4:AE:1A:C8:7E:78
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 187B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qzvGIe_yS0j49OhIQsukrhrIfng.roa
Signing time: Mon 10 Feb 2025 14:07:59 +0000
ROA not before: Mon 10 Feb 2025 14:07:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131611
IP address blocks: 106.105.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6267 (0x187b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AB3BC621EFF24B48F8F4E84842CBA4AE1AC87E78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c1:9f:1a:5c:bf:c2:1f:5d:e0:82:3d:83:e9:
99:37:47:bf:51:7b:1e:69:99:55:1f:6d:78:15:f6:
08:ab:64:b8:6c:00:75:93:ee:d7:4f:5e:43:20:d5:
df:e7:67:44:a9:0e:42:73:ad:e0:b6:d4:48:e5:23:
46:73:ec:e4:a0:d4:d7:62:b8:56:53:26:3c:a7:ee:
52:7a:6e:df:15:cd:c0:8d:9e:05:3b:87:6c:d7:8e:
0a:d9:1a:2d:36:3b:3c:04:5b:b4:ec:0c:a3:ba:d4:
44:ae:62:ca:9b:66:82:9d:10:e5:f0:3a:d1:58:ea:
7b:7a:b7:9b:67:90:76:ff:d1:93:4e:2e:8d:98:8b:
e7:f3:14:cc:81:25:6d:be:72:3b:e1:38:e7:21:e5:
98:5d:b3:e7:4e:2c:98:08:c4:f5:94:5a:cc:a8:52:
46:73:e1:26:44:fc:07:35:af:8d:57:bf:fa:53:33:
92:ca:95:f3:bd:ad:0a:c8:0b:33:e9:c4:83:c2:dd:
f7:ec:69:8e:5a:97:87:07:ea:70:0d:e4:02:db:56:
49:42:2a:41:44:db:e7:12:81:10:a4:56:22:32:a4:
90:2a:29:fb:ba:a7:9d:99:28:5f:05:e4:6a:6b:cf:
9a:45:19:b6:6a:0c:34:69:03:11:50:ca:0f:b8:68:
c5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:3B:C6:21:EF:F2:4B:48:F8:F4:E8:48:42:CB:A4:AE:1A:C8:7E:78
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qzvGIe_yS0j49OhIQsukrhrIfng.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.32.0/19
Signature Algorithm: sha256WithRSAEncryption
87:c1:69:f2:cb:b1:44:52:2e:05:6d:da:11:24:33:98:e8:62:
9b:b3:b2:33:c1:93:aa:b1:c6:69:4d:c7:94:50:03:85:d1:48:
32:d8:e7:bf:6d:2b:54:9a:19:ad:57:33:62:04:1f:d1:ec:43:
af:02:23:31:05:cc:97:87:ee:f7:9f:69:f9:f9:86:a3:da:51:
ec:f1:90:14:4d:96:5f:0b:9d:ae:60:40:9e:40:a3:7c:eb:09:
b3:2f:c3:6d:44:f4:ed:a4:b4:92:59:87:81:6f:d5:1f:fe:45:
05:f7:25:b7:92:93:18:c5:f7:5c:d5:95:dd:78:7b:df:af:18:
50:6d:6c:ff:c1:36:4d:f9:47:f2:46:a5:77:d6:dc:3f:33:4f:
31:5f:5c:ec:5f:d4:4a:0c:26:6f:d6:42:8d:e4:47:93:bc:f8:
5e:ad:2a:b8:c0:16:54:91:1a:63:3a:31:2c:8f:01:f9:f2:55:
1d:32:56:49:eb:c1:72:c9:7e:d2:55:49:a7:2e:ea:63:e7:66:
7b:19:ed:26:0c:ae:3e:9c:b2:5c:68:fd:d9:65:fa:aa:e4:5c:
48:a7:dc:6f:03:0e:11:da:26:bf:33:27:82:44:c8:88:cf:87:
3f:a7:87:ff:9c:ed:2f:d3:95:c0:50:f5:2a:f8:2a:22:48:d8:
19:1a:9d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:48:05 2025 by rpki-client