Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yWMeA4gNviQvFow1pHFC28MiVes.roa
File: yWMeA4gNviQvFow1pHFC28MiVes.roa (raw, json)
Hash identifier: pMyL0LLwD7WMueoY/X1jSyeYpfj3e3u+U1uyei5+X+Q=
Subject key identifier: C9:63:1E:03:88:0D:BE:24:2F:16:8C:35:A4:71:42:DB:C3:22:55:EB
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17CC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yWMeA4gNviQvFow1pHFC28MiVes.roa
Signing time: Mon 10 Feb 2025 14:07:16 +0000
ROA not before: Mon 10 Feb 2025 14:07:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6092 (0x17cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C9631E03880DBE242F168C35A47142DBC32255EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:35:e5:69:b9:24:bc:69:86:f0:6c:0a:ae:
82:e7:64:4e:5e:54:69:b2:95:44:98:10:4b:9d:1e:
e9:f8:ad:ae:ff:a8:ce:85:94:6e:8b:df:44:db:7f:
d2:dd:c9:98:c9:8e:67:82:bb:54:2a:87:2a:44:7a:
30:fb:f7:78:d7:63:7f:57:18:19:96:a6:13:01:99:
02:14:e9:10:fb:07:f6:d7:66:d5:e2:6c:dc:59:06:
31:52:04:8c:64:4b:0c:18:d8:90:46:af:94:a9:ee:
77:70:f5:a3:3f:ce:cb:7a:84:12:f4:ce:0f:68:cc:
82:5f:b4:f7:ee:7d:80:d0:8f:cd:75:2c:d0:28:60:
91:34:94:93:5c:5b:0d:09:cb:bc:bf:75:2b:5a:34:
bd:aa:17:a5:b3:55:51:1a:a2:5b:1d:f5:62:03:6d:
7f:22:d9:23:46:8a:16:b6:a0:8a:ed:0a:86:c4:1b:
16:65:4b:a5:86:9e:dc:5b:45:18:63:4d:c7:68:5e:
e2:2e:c6:8a:cc:68:cc:7b:d2:18:4e:e6:4f:fe:a3:
4b:1b:a3:07:49:9b:b1:a9:77:68:9b:a7:d5:92:11:
48:16:24:60:36:66:dd:51:08:10:40:1d:5f:49:22:
39:78:fb:99:21:ef:a1:89:b1:3e:b6:a4:75:1b:fa:
ef:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:63:1E:03:88:0D:BE:24:2F:16:8C:35:A4:71:42:DB:C3:22:55:EB
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yWMeA4gNviQvFow1pHFC28MiVes.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
23:8b:47:4a:29:78:bf:31:d1:95:70:7b:82:42:a3:23:7f:46:
56:ea:ad:7f:61:0f:7c:c6:9b:80:52:c3:0e:3c:27:8a:aa:ad:
8d:85:e2:80:8c:bd:93:1f:62:e9:de:5f:a6:1d:d6:a5:1a:c3:
79:9c:3e:b8:3d:d3:7b:71:32:c2:fa:2f:a3:58:6c:3b:4d:f1:
6f:e6:2c:bc:00:e9:68:df:e7:91:49:8b:6c:d8:a8:d9:0b:94:
d2:33:c3:4a:9b:be:13:e8:f8:7a:fd:f7:99:e9:f7:98:4f:a8:
9c:c0:5a:d0:4c:eb:2b:48:70:ad:48:27:2f:45:d8:8d:bb:f6:
21:da:8f:61:53:c9:17:eb:e6:96:84:a9:d6:01:c0:b9:4a:20:
89:02:bd:65:76:b2:0d:b9:2b:7a:6b:e2:a1:c3:b3:e9:f0:9d:
3f:ad:14:0e:e4:59:fb:af:1b:80:46:e9:e6:83:fe:c4:24:54:
cc:e7:b8:1f:ec:74:07:51:31:26:bd:f1:bb:66:f3:23:33:3a:
1d:8b:d2:6e:ed:38:65:5f:8c:65:53:7f:83:b9:b4:ea:19:46:
b2:0c:78:d0:b1:93:5b:57:79:d9:34:78:33:99:55:cb:66:f2:
72:da:0d:b1:ea:ee:5b:25:c6:c0:61:37:d2:ff:4c:69:3c:d6:
d8:19:46:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:24 2025 by rpki-client