Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_HoyXpyhJ3BXFtTnUYituHQ_rik.roa
File: _HoyXpyhJ3BXFtTnUYituHQ_rik.roa (raw, json)
Hash identifier: JoRk745Jdvr5ifVae+bskPEYnUyufMIfbYYWNl+Ar0s=
Subject key identifier: FC:7A:32:5E:9C:A1:27:70:57:16:D4:E7:51:88:AD:B8:74:3F:AE:29
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17FD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_HoyXpyhJ3BXFtTnUYituHQ_rik.roa
Signing time: Mon 10 Feb 2025 14:07:29 +0000
ROA not before: Mon 10 Feb 2025 14:07:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 218.32.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6141 (0x17fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FC7A325E9CA127705716D4E75188ADB8743FAE29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:9b:53:93:98:92:ff:ad:72:81:b0:8c:ce:
5b:78:53:77:b3:61:d4:59:72:ed:38:64:fe:e8:75:
64:69:48:ff:69:4f:41:d7:00:9d:f4:3f:42:1c:83:
42:3d:2d:43:31:96:49:80:1f:7e:4e:cd:88:e6:ba:
6e:cf:2d:8c:c2:aa:a9:12:7e:76:a9:fb:54:52:49:
6d:6d:5d:18:94:46:23:d2:0a:d9:a0:9c:2b:8e:73:
b1:b9:e5:ea:06:46:8a:f2:12:34:6a:b9:a8:2e:19:
9f:0c:46:39:1d:4f:73:27:b4:6d:dd:d9:15:24:00:
da:42:73:47:b6:f8:8a:37:c4:d2:46:cc:a9:99:45:
01:18:bc:aa:61:a4:4e:81:13:56:f2:14:5d:26:a9:
19:69:d4:ec:e4:fd:01:d4:6d:eb:f3:e2:d5:3e:b9:
bf:a8:25:d3:6e:64:fd:3d:3a:50:6c:01:d0:f7:2e:
12:6d:69:e0:af:9e:db:3f:7f:f9:24:d6:5b:2e:a5:
3c:29:ef:80:ec:6b:9d:b8:09:63:51:dc:81:e0:bf:
1b:94:31:f9:cf:16:5c:e8:c2:5d:77:48:63:f0:c2:
ce:15:05:98:27:33:b5:01:62:2e:04:a5:33:85:a4:
6f:2c:9d:10:56:2a:26:3a:09:c7:c7:7e:d1:e0:90:
d6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:7A:32:5E:9C:A1:27:70:57:16:D4:E7:51:88:AD:B8:74:3F:AE:29
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_HoyXpyhJ3BXFtTnUYituHQ_rik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:cc:7e:23:2f:93:84:ed:9f:89:e2:99:a1:0e:ac:24:63:ec:
e3:4f:1b:a8:c3:4e:bd:96:f5:62:fd:74:2d:d8:2d:36:af:8a:
4f:fe:ce:30:23:38:de:74:2c:33:3c:70:ba:57:0b:44:b6:f3:
3e:d6:34:25:cc:fd:b2:ba:b7:fe:1c:74:2c:6a:fe:a5:e0:55:
67:bf:c8:f3:cd:a2:9d:91:e7:dd:18:31:6b:6a:9d:ec:ff:e0:
1b:a9:ee:dc:3f:a1:2b:36:52:66:7f:e0:47:c6:7a:88:a9:eb:
93:bd:f2:25:3c:bf:5b:b8:e2:59:ff:9b:74:cf:9f:5e:2d:f1:
36:a9:ad:3d:2a:39:26:57:1e:4f:0b:a7:f2:23:a2:44:98:cc:
92:7c:5d:d5:1e:00:82:0f:79:e2:a4:b0:5c:52:09:90:1a:50:
42:c0:b0:8b:ef:64:23:5c:87:7e:7f:9c:10:e3:0d:1e:71:ed:
64:c3:3b:08:fc:7e:44:cf:83:3b:f4:9f:82:66:55:88:fe:aa:
7d:e7:61:91:1a:98:4b:36:47:45:17:ae:01:2f:dd:dd:98:37:
77:53:72:91:a1:24:ba:39:b4:31:3b:30:ec:52:a1:b6:a1:8a:
3f:a6:59:e5:c7:e1:93:1c:53:46:85:66:c4:22:6c:94:58:f9:
6c:04:ec:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:18:51 2025 by rpki-client