Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cu_0ISh-qGt2vpj25rIAus2vvug.roa
File: cu_0ISh-qGt2vpj25rIAus2vvug.roa (raw, json)
Hash identifier: pzIx2snZ/HWOB+x/TXirA2AbRSBKcOoic9z9v/uVIs4=
Subject key identifier: 72:EF:F4:21:28:7E:A8:6B:76:BE:98:F6:E6:B2:00:BA:CD:AF:BE:E8
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17F2
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cu_0ISh-qGt2vpj25rIAus2vvug.roa
Signing time: Mon 10 Feb 2025 14:07:26 +0000
ROA not before: Mon 10 Feb 2025 14:07:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.51.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6130 (0x17f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=72EFF421287EA86B76BE98F6E6B200BACDAFBEE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:52:5c:65:ad:6e:db:93:5d:1a:a6:1f:f6:d3:
ee:e8:4a:19:51:0d:ee:58:ce:b1:59:2b:e1:cb:3d:
d0:4b:dd:c3:82:c5:02:1f:af:68:17:f5:ac:5a:50:
a2:ad:0b:e2:0c:6f:42:bd:69:8d:83:10:70:eb:ab:
9b:f6:48:1a:d4:f1:61:28:1c:c5:10:8f:1b:1e:66:
cb:0e:8e:37:05:76:d4:f1:b4:22:a3:8e:57:66:92:
de:38:0d:c8:7d:7d:24:5b:0b:fc:3d:c7:17:50:30:
2b:6d:16:57:92:7c:12:a8:06:ca:ce:cb:12:8a:7e:
1e:ce:ea:37:ae:0e:8e:62:63:15:43:eb:25:f8:17:
98:2b:0f:33:cd:74:8e:a9:4e:e8:68:c8:c4:1c:65:
49:4a:12:32:5b:70:75:f7:1a:6d:a1:f8:f9:af:10:
bd:14:bb:15:d8:0f:88:11:f0:8c:25:63:60:c3:7d:
3a:bb:6f:8f:2d:71:fb:60:2a:38:67:7a:bb:ed:b1:
3c:e3:2c:0c:11:61:54:14:81:26:f4:83:65:5b:b2:
e6:5a:e3:4d:a0:9c:cc:a0:02:41:3c:fa:7a:60:4e:
b2:c8:c7:ff:02:51:ed:41:2c:31:10:2f:97:10:d5:
57:6e:84:c9:bb:8e:f4:d4:bb:6b:8c:d6:b7:82:26:
d7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EF:F4:21:28:7E:A8:6B:76:BE:98:F6:E6:B2:00:BA:CD:AF:BE:E8
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cu_0ISh-qGt2vpj25rIAus2vvug.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.180.0/24
Signature Algorithm: sha256WithRSAEncryption
99:e9:b8:0c:02:26:66:3f:39:29:b3:c5:fd:78:18:3e:a1:ba:
2c:e6:5f:a5:37:10:71:89:16:97:65:09:4e:f2:cc:f1:a1:b0:
06:12:96:b8:8a:4a:57:61:81:b6:fd:4f:2e:91:3b:c6:31:06:
22:9b:74:79:e4:67:17:4e:9a:fb:1b:0a:5a:33:d0:29:c0:5a:
42:43:2f:ea:db:71:fa:2c:31:cf:12:96:36:67:9f:eb:9a:b4:
25:fa:b9:91:03:76:7a:5d:59:90:c7:85:09:a9:60:8e:38:b0:
59:94:a8:ba:45:91:f7:a5:14:5a:02:f2:2b:eb:68:9f:78:13:
74:50:46:f0:12:41:fe:1c:25:f3:27:3a:44:5b:60:45:8b:ef:
fc:fe:07:e2:71:6e:b3:7b:f5:f5:12:c1:bc:a0:ba:f3:20:42:
80:e6:7c:2c:af:a9:c7:28:6b:95:13:b1:95:59:2e:39:60:ba:
5b:c6:e5:14:d8:90:fa:ae:59:44:cd:32:31:5b:5c:5a:8a:84:
08:e4:94:89:5f:32:95:5e:80:d6:00:3a:15:7b:ce:e6:77:00:
00:61:86:7e:ea:ef:3b:c2:e3:69:eb:c0:22:bd:23:26:1e:7f:
35:8d:f9:26:81:f2:78:92:58:31:a4:86:85:a5:85:1d:6c:e1:
58:bf:75:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:33 2025 by rpki-client