Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/talwYYXzLVEFFDwi5ism4uF0zsk.roa
File: talwYYXzLVEFFDwi5ism4uF0zsk.roa (raw, json)
Hash identifier: BmVn2qv1HwKSr3u1v+FDtZImljCnnF7UlQU/P8pKZV4=
Subject key identifier: B5:A9:70:61:85:F3:2D:51:05:14:3C:22:E6:2B:26:E2:E1:74:CE:C9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1858
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/talwYYXzLVEFFDwi5ism4uF0zsk.roa
Signing time: Mon 10 Feb 2025 14:07:50 +0000
ROA not before: Mon 10 Feb 2025 14:07:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 123.205.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6232 (0x1858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B5A9706185F32D5105143C22E62B26E2E174CEC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4c:d3:eb:be:3e:1a:b9:a5:10:9a:76:6e:7b:
98:9f:ed:66:b6:4e:c9:3a:6c:6d:76:89:4e:11:d7:
8c:ac:11:49:8e:a9:6b:65:55:d0:7c:63:68:e3:e8:
fc:ac:ac:4f:19:ce:a1:3d:77:d8:e4:d1:71:da:35:
bc:5f:eb:e7:e4:d1:92:76:53:b6:df:ba:86:79:47:
d2:a4:70:2b:02:c6:12:68:d7:f1:09:db:16:fd:25:
1c:49:97:c7:bc:8d:3e:cd:af:7d:1b:04:40:3e:47:
22:f7:c5:2b:ef:95:a6:1c:bb:09:f6:0d:b2:bd:6b:
c0:b1:c0:36:5b:a4:cb:a7:6d:b8:f8:d6:56:9a:c7:
b2:8a:05:5b:00:59:20:35:80:31:55:1d:78:05:27:
b1:ff:3e:89:02:4e:4d:db:cf:a1:b2:8a:5d:fc:99:
48:cb:b4:99:13:4d:cd:ec:a7:c1:ca:b6:c0:c9:b9:
23:55:b5:d6:3d:64:8a:df:67:c0:41:86:ca:b1:33:
7c:4b:88:bc:db:a2:1f:d4:40:3b:94:d0:db:5f:7c:
da:43:c7:ce:af:bc:a3:f5:86:b2:46:b7:9b:23:58:
d3:9f:5b:23:72:d0:20:e8:7a:32:79:8e:9b:70:b9:
df:ed:38:b5:17:c8:2c:a3:c9:f7:d3:f7:11:ec:4d:
14:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A9:70:61:85:F3:2D:51:05:14:3C:22:E6:2B:26:E2:E1:74:CE:C9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/talwYYXzLVEFFDwi5ism4uF0zsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/18
Signature Algorithm: sha256WithRSAEncryption
3b:5c:5c:33:c5:22:7f:57:91:d3:8a:50:ea:d8:94:56:e1:6a:
9f:4d:36:78:5b:ba:1f:1d:c1:e9:9b:3c:5d:80:33:c1:c2:77:
15:82:12:80:e3:a1:92:2a:a1:27:de:79:b3:74:74:1c:d1:ee:
97:a5:36:cb:8e:94:1e:03:9a:21:7d:ca:68:57:aa:1b:5a:b1:
0c:6c:eb:f7:6a:6a:39:e4:d2:f1:8b:1a:23:f0:71:89:21:75:
8e:ff:3e:17:5a:ee:17:e5:89:05:4c:64:4f:ba:62:36:22:b9:
66:ec:76:6e:25:34:d9:5c:14:19:2c:bd:f6:27:0b:80:a9:c2:
29:f5:9b:5b:af:f2:4e:ee:4a:a6:5c:ab:b1:c0:f2:65:c5:c0:
af:e3:29:0d:ae:66:3f:77:a8:8e:75:8b:ef:80:b7:bd:dc:89:
5c:d2:47:20:83:c8:ab:16:9a:2a:1e:a8:18:73:19:d4:c7:94:
1b:32:6a:f7:6c:33:30:ca:2f:a6:25:37:c4:5f:40:04:93:90:
ca:15:66:ca:8f:f6:ea:40:45:6d:55:9a:06:bf:2a:ea:1d:0d:
a2:20:0d:ec:8d:3c:33:11:1b:82:3e:d9:47:9a:85:f6:0a:0f:
5f:ef:4b:b7:a8:99:d4:b5:ae:8e:d8:1f:7d:cd:49:31:c1:1c:
d6:1a:c3:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:05:17 2025 by rpki-client