Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zsEHLzNWUkdTSsc0w5D9EyVnpT8.roa
File: zsEHLzNWUkdTSsc0w5D9EyVnpT8.roa (raw, json)
Hash identifier: YxreNnp7DTkvVyS8YKpS+bMvnLMqWvJCYPZXPhJWx8g=
Subject key identifier: CE:C1:07:2F:33:56:52:47:53:4A:C7:34:C3:90:FD:13:25:67:A5:3F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1876
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zsEHLzNWUkdTSsc0w5D9EyVnpT8.roa
Signing time: Mon 10 Feb 2025 14:07:58 +0000
ROA not before: Mon 10 Feb 2025 14:07:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 113.196.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6262 (0x1876)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CEC1072F33565247534AC734C390FD132567A53F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:1e:c7:b3:58:a7:48:4d:c9:fe:ac:d8:74:43:
c1:0c:17:6c:d9:81:f0:dc:a9:ab:67:2d:52:34:cc:
98:49:2b:fa:95:3e:f6:0d:6a:1e:eb:c1:7a:d7:bf:
40:c6:44:54:2a:08:e2:28:6d:28:b6:42:86:ab:44:
4d:6a:11:8e:f7:db:3e:f8:5a:14:a5:9f:4b:bf:d7:
48:89:a8:1b:96:f7:ec:1c:3d:68:5d:ea:a0:d9:8d:
37:6f:19:db:1a:02:1f:86:06:ac:73:8a:bd:17:20:
1a:7f:59:83:5f:fe:6b:b3:86:56:c4:55:fc:16:14:
98:bf:a8:8b:42:da:89:3f:b9:ad:1d:5f:01:ff:03:
1a:e0:b5:73:6f:d4:2e:f9:b4:a7:38:5e:a9:55:dc:
95:04:cf:30:0e:fa:37:92:88:64:e6:ec:4d:c6:88:
c3:24:92:d8:76:39:40:41:ef:d1:78:e4:00:26:c9:
aa:35:ac:d4:41:70:f7:60:ea:a2:d4:ea:19:a5:9d:
ee:28:eb:0d:75:8e:25:da:4b:6c:bf:41:f8:b5:04:
cc:29:ee:bb:3f:3d:20:a5:33:a4:04:3d:c4:01:93:
40:25:93:d4:c1:8c:74:ae:af:06:03:af:22:a1:a8:
38:4a:f7:0b:f8:44:7a:8e:af:34:08:e9:a8:f1:87:
20:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C1:07:2F:33:56:52:47:53:4A:C7:34:C3:90:FD:13:25:67:A5:3F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zsEHLzNWUkdTSsc0w5D9EyVnpT8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.79.0/24
Signature Algorithm: sha256WithRSAEncryption
35:3c:06:bb:00:1b:f7:27:bc:3e:37:d4:d0:44:92:b5:ad:ac:
c9:71:84:f0:c2:32:4e:df:31:5c:3c:fd:3c:62:b4:c9:d9:ce:
c6:33:66:80:b2:18:72:b4:38:2e:a7:71:e1:df:a9:c9:4f:4a:
7b:f3:29:6c:25:db:c7:9f:d5:93:63:b0:1d:dd:cb:d6:eb:0d:
14:d4:4e:24:44:63:2c:30:ea:06:69:b6:7e:5f:29:db:96:77:
40:89:e9:ba:b2:25:7e:86:d2:70:ed:f2:f3:a9:b0:4a:57:24:
8e:99:86:82:1e:76:90:32:11:ea:d2:0a:0d:fd:50:8e:da:37:
1b:97:be:f3:a3:ed:eb:99:25:71:6f:d8:93:cb:99:87:4b:04:
d8:b2:e8:ad:44:9a:2c:74:00:a4:c3:5f:a3:42:dd:95:32:7a:
f4:57:ca:e7:72:3b:b2:5c:c8:36:a2:14:62:33:34:f3:df:df:
c3:d7:73:9a:c9:3e:8c:46:d7:1e:c2:0f:c7:0f:d5:ef:b6:9a:
48:70:ad:d6:08:a7:49:25:4b:68:20:b6:87:7b:d2:da:7d:d8:
15:18:89:08:17:a6:a8:b6:f3:09:49:08:38:f0:ca:77:31:51:
4f:63:c0:d8:d7:f8:d3:d6:e1:26:be:86:03:56:0f:22:7b:56:
55:a6:f0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:11:47 2025 by rpki-client