Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_dZlkmqbLMtXqLmrKsJmyN_B1j4.roa
File: _dZlkmqbLMtXqLmrKsJmyN_B1j4.roa (raw, json)
Hash identifier: W5WnJqHFHiyrNMbdA7al95FQ1j/usQMQMJkVadhOCiE=
Subject key identifier: FD:D6:65:92:6A:9B:2C:CB:57:A8:B9:AB:2A:C2:66:C8:DF:C1:D6:3E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1780
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_dZlkmqbLMtXqLmrKsJmyN_B1j4.roa
Signing time: Mon 10 Feb 2025 14:06:58 +0000
ROA not before: Mon 10 Feb 2025 14:06:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.205.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6016 (0x1780)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FDD665926A9B2CCB57A8B9AB2AC266C8DFC1D63E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:61:62:b1:f1:29:d4:43:c8:3d:33:65:74:9e:
97:7c:6c:22:d4:06:69:63:89:7a:83:65:fd:7b:98:
21:3f:ad:f9:40:31:b2:ca:96:51:94:97:12:9c:fe:
37:e9:2a:6d:14:29:f4:36:09:ec:f1:b7:c3:2f:cd:
89:b4:79:c2:fc:34:5e:f4:8e:a0:41:27:46:a2:44:
0d:e5:4b:73:f6:f0:6d:e2:de:e0:dc:37:31:6c:79:
6c:2f:0d:72:32:e1:06:01:c6:8b:af:27:65:9f:bc:
15:2e:98:f2:20:d2:a7:5a:62:a0:8a:5b:59:47:95:
b7:05:50:23:7e:60:3e:73:24:8a:26:c7:17:1a:16:
d8:41:65:ea:c4:69:3a:e0:5b:3e:db:23:20:33:60:
3a:92:4f:a8:39:cf:68:f6:35:0a:c4:0f:29:c0:51:
99:12:c8:01:6b:ba:36:7d:a1:34:f4:2e:f4:24:28:
5e:65:ba:44:f2:c0:79:16:a6:bd:d6:b5:67:fb:ff:
85:77:dd:8c:b0:6c:f6:14:a1:63:60:30:b2:4f:2e:
8d:02:42:b6:f8:ef:49:90:b7:a7:78:74:b6:22:5e:
a7:64:b7:37:a1:d7:83:87:fa:53:4c:69:54:1e:95:
28:f5:fd:0f:15:48:0c:b6:f8:14:9f:ec:c2:cd:c9:
b8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D6:65:92:6A:9B:2C:CB:57:A8:B9:AB:2A:C2:66:C8:DF:C1:D6:3E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_dZlkmqbLMtXqLmrKsJmyN_B1j4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.39.0/24
Signature Algorithm: sha256WithRSAEncryption
01:46:64:d4:1f:4e:f3:58:e0:9c:a6:81:f7:78:00:e3:dd:ed:
92:3c:99:dd:35:13:0c:e3:78:74:c8:eb:8c:db:21:c6:52:bc:
47:c7:27:8b:3f:73:3e:04:ee:3a:22:a3:d6:31:8e:43:7a:ec:
f1:6b:f6:cc:02:4b:5c:fc:39:f9:90:84:2f:9b:f4:15:c9:16:
93:69:d6:39:40:cd:bc:4f:09:81:4e:a7:1d:e4:db:31:c2:ce:
cb:80:bf:91:43:6c:36:0a:60:c0:3f:38:96:40:cd:9a:df:b6:
e6:14:7c:0a:7e:82:a6:50:58:f7:5a:4e:32:00:68:08:99:cb:
a9:ff:e6:45:5a:4c:fe:53:5d:cd:20:ff:30:e5:c8:90:ae:d1:
be:2d:f3:b9:a4:55:a6:e5:5e:75:b2:0c:0d:c5:06:44:25:84:
d6:96:02:f7:7e:7b:b2:e3:06:e6:f3:10:06:40:67:b1:56:c5:
c1:66:92:78:58:f9:a9:a5:01:cb:c0:ef:df:31:92:25:ff:d5:
8f:82:9f:b6:7e:b6:d7:29:8f:1e:cb:d6:0a:94:fe:62:a0:f9:
57:83:6f:72:d6:f3:e7:6e:a7:cb:4c:92:31:02:1b:c1:32:77:
19:e5:64:16:fe:9c:a4:a6:89:d2:f8:ca:e8:42:01:c0:80:ed:
55:33:3a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:09:35 2025 by rpki-client