Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/x6Dfl296Okzx6kTDdNHLX5oMgZY.roa
File: x6Dfl296Okzx6kTDdNHLX5oMgZY.roa (raw, json)
Hash identifier: O2axI1/n1H5IkrjAEHm66Qemb5JKDFsLI/zJEF6+lmE=
Subject key identifier: C7:A0:DF:97:6F:7A:3A:4C:F1:EA:44:C3:74:D1:CB:5F:9A:0C:81:96
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17A5
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x6Dfl296Okzx6kTDdNHLX5oMgZY.roa
Signing time: Mon 10 Feb 2025 14:07:07 +0000
ROA not before: Mon 10 Feb 2025 14:07:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 106.105.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6053 (0x17a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C7A0DF976F7A3A4CF1EA44C374D1CB5F9A0C8196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5e:69:67:47:d8:5d:59:d4:0e:63:a3:66:9f:
13:51:dd:b6:11:90:e6:d8:59:b0:22:7d:cb:80:22:
80:82:57:b6:be:7e:7b:c7:ca:87:4b:b3:5c:8c:9c:
a4:54:19:93:38:f1:72:61:8e:37:4d:3f:04:04:ff:
69:e4:2e:f3:ef:95:51:9c:a2:07:fa:b9:5e:08:df:
70:c8:ed:f0:b0:dc:00:af:cd:5a:a8:c1:58:cc:48:
9e:89:0b:cf:d2:ae:f0:e5:9e:e8:e9:41:f1:fd:14:
2a:c3:32:af:eb:23:02:c5:64:06:57:6c:91:15:bc:
12:03:14:e0:d3:ce:3a:74:81:19:bb:7a:a3:28:47:
4c:46:e8:02:19:d3:85:e6:d3:f4:18:d1:0e:55:45:
c2:e1:19:fc:22:17:ef:a5:91:a4:18:84:2f:d9:b4:
5f:15:4e:ba:04:24:1e:77:9b:c3:aa:ad:ee:86:ad:
b9:8d:3b:42:c1:d1:35:eb:d8:95:0c:0e:ab:61:a1:
c6:c0:22:a3:6b:21:5c:a8:51:24:07:12:73:a0:10:
59:f1:71:d9:d0:bb:a3:88:39:b3:25:e1:cc:bd:4a:
02:b8:b1:c0:80:98:76:ec:b5:d4:8d:0b:14:3a:7a:
69:49:c8:3b:81:8e:ff:b6:94:c9:04:aa:92:e4:c3:
18:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A0:DF:97:6F:7A:3A:4C:F1:EA:44:C3:74:D1:CB:5F:9A:0C:81:96
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x6Dfl296Okzx6kTDdNHLX5oMgZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.111.0/24
Signature Algorithm: sha256WithRSAEncryption
38:1f:f6:72:63:47:cf:21:35:61:e2:a3:66:76:af:fd:2f:4c:
6a:d2:cd:5c:7a:41:9a:d1:dd:4a:50:dc:e7:7a:91:6b:e6:d7:
c9:99:95:9a:43:26:fe:e6:cb:43:2a:ce:2f:f9:4f:9e:ee:3f:
09:07:29:f0:dc:68:b9:20:5a:0b:48:43:46:73:11:21:40:0b:
01:f6:48:7e:f6:e5:49:b8:c6:cf:5a:c3:ca:b9:b6:78:74:ec:
f2:5e:24:69:e1:2f:15:74:a3:a4:4d:21:d7:57:4f:ff:a7:17:
22:54:51:61:d4:dd:56:8e:e1:45:a3:64:29:55:85:30:c0:37:
96:53:d6:e1:3f:71:02:cf:14:8b:88:af:ed:dc:6a:5f:68:0a:
e4:20:19:80:98:49:44:fe:0a:4a:c0:11:9c:52:15:83:ec:b5:
28:60:0a:32:64:f8:f2:2b:4b:48:8a:66:0a:4d:f1:69:b2:8d:
c3:3d:cb:5d:33:3e:87:a5:a1:0e:c0:36:d2:2a:b8:6d:bd:19:
48:9a:e7:67:a2:95:3f:52:9e:50:14:eb:eb:58:20:71:93:b8:
cf:a4:68:a6:ca:21:7b:ee:97:12:2a:21:65:da:28:ce:37:05:
2d:75:10:63:2d:8d:6a:f2:6d:1f:ac:3e:bd:6d:b2:d5:5e:b2:
e7:d4:bf:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:10:32 2025 by rpki-client