Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/s1srv5sG4Ky9vYTd0rWRW4V7cfc.roa
File: s1srv5sG4Ky9vYTd0rWRW4V7cfc.roa (raw, json)
Hash identifier: 17CUOcWz/soWRE+ofOjdsT/jMh9Gp4fn8uHhXt9+uYI=
Subject key identifier: B3:5B:2B:BF:9B:06:E0:AC:BD:BD:84:DD:D2:B5:91:5B:85:7B:71:F7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1860
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/s1srv5sG4Ky9vYTd0rWRW4V7cfc.roa
Signing time: Mon 10 Feb 2025 14:07:53 +0000
ROA not before: Mon 10 Feb 2025 14:07:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 113.196.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6240 (0x1860)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B35B2BBF9B06E0ACBDBD84DDD2B5915B857B71F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:56:de:a8:7d:c3:37:ec:9d:23:ff:96:08:45:
99:8b:c7:4d:63:f6:73:d6:f6:94:b7:60:4c:87:96:
be:3b:7b:9e:f3:70:52:06:30:ed:fa:46:d1:0a:1d:
1a:85:df:7b:3d:ef:62:99:90:4d:dc:5b:9c:bf:89:
f6:ed:d0:b6:d8:da:31:9e:e5:ce:3f:ea:ce:71:a4:
a2:be:8e:73:5c:1b:90:0f:50:7e:58:ea:13:e6:39:
0a:2e:c4:a8:05:50:a0:d7:74:e9:fc:27:96:2d:03:
2e:ec:89:c4:03:35:2e:7c:af:cc:0c:10:10:67:15:
05:9d:43:81:02:cb:b6:3c:03:db:a5:3e:b6:43:9f:
f2:06:b9:20:0f:b8:3f:0b:10:ba:39:ee:8d:f4:88:
d4:19:5a:60:eb:39:7b:a6:a1:e8:40:3a:9e:96:40:
4d:3e:7a:4a:b7:12:e7:6b:5b:09:60:9f:b8:e4:24:
a4:2a:9a:e6:81:69:37:a6:d4:7a:37:1d:03:ea:e3:
50:b9:a4:31:d5:ed:fc:51:fc:e3:8a:f7:82:a4:1b:
9f:5f:6f:aa:7a:e2:52:26:8b:25:b8:bf:8e:0c:58:
f0:52:4b:5d:96:a5:ce:ce:bd:a7:f8:93:1a:49:05:
54:fc:a7:b4:8a:9f:92:82:0f:e5:12:4c:03:fc:78:
69:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5B:2B:BF:9B:06:E0:AC:BD:BD:84:DD:D2:B5:91:5B:85:7B:71:F7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/s1srv5sG4Ky9vYTd0rWRW4V7cfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:df:84:40:37:d7:48:f0:73:8f:25:3f:03:2d:ed:4f:03:40:
c2:60:fc:91:35:e2:4f:4f:be:27:92:20:bd:a8:72:77:52:92:
d0:92:87:44:62:3e:7d:6b:e6:d7:2d:6d:87:41:cd:ed:41:5b:
9e:c5:06:3e:ef:8b:b8:d7:9d:91:60:cd:d1:46:ee:5f:bb:db:
59:64:8b:ce:a6:fa:f7:62:08:4a:69:91:07:df:17:e9:48:4d:
07:b3:b2:ce:1e:e4:11:b2:1b:86:25:76:f6:95:ac:14:fb:71:
53:b7:67:e7:7d:38:37:bc:77:ad:be:ef:a2:ac:ac:12:8f:d3:
c6:0e:57:04:f0:72:d9:93:99:ea:05:f3:22:f9:ee:e1:cd:fb:
e1:98:a7:a7:c5:23:05:df:e4:1a:3e:0b:21:91:8d:0b:54:3f:
62:78:12:93:84:70:66:6e:7e:37:c8:60:6f:7b:2a:f1:6c:34:
8a:03:3b:3d:35:6d:5e:76:a9:50:17:c9:7a:85:53:8d:31:53:
ec:9f:8c:57:a6:65:fa:a6:11:03:42:c7:87:9a:37:a2:89:1f:
1c:e5:1e:ba:a9:4f:d9:aa:e1:13:d1:38:10:33:4f:6e:17:18:
e6:88:57:7f:d4:cd:95:07:7a:8a:d4:03:50:9a:ac:0d:73:75:
65:77:de:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:12:29 2025 by rpki-client