Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fxK9OGS80MmD2RxXsvnGwJ8DhiA.roa
File: fxK9OGS80MmD2RxXsvnGwJ8DhiA.roa (raw, json)
Hash identifier: tYfWQQHPVr5v/cgRqbHI/L+2Fe3El8X3JACMbKiF/TU=
Subject key identifier: 7F:12:BD:38:64:BC:D0:C9:83:D9:1C:57:B2:F9:C6:C0:9F:03:86:20
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 185F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fxK9OGS80MmD2RxXsvnGwJ8DhiA.roa
Signing time: Mon 10 Feb 2025 14:07:52 +0000
ROA not before: Mon 10 Feb 2025 14:07:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 210.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6239 (0x185f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7F12BD3864BCD0C983D91C57B2F9C6C09F038620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c9:5f:78:5d:3c:41:83:ae:9f:d3:e1:7c:b0:
ed:1d:50:48:88:2a:d6:0d:3a:80:f9:a2:94:0b:ea:
21:29:2f:a7:0b:a6:c3:5e:3a:d9:60:cc:66:36:c0:
8d:6c:69:92:7a:0d:48:b5:25:cc:be:04:e6:2e:b1:
14:26:91:d5:c3:38:94:45:4f:ca:b8:29:a4:9f:ef:
65:7d:2f:2b:1b:06:3f:65:13:5c:b7:be:f0:ec:6a:
ff:a5:40:52:20:5e:14:02:3f:89:3d:c8:be:1d:93:
99:c2:0e:c6:07:cf:11:f4:28:60:94:4a:07:30:74:
c4:cf:49:62:34:31:da:24:8b:b6:f7:ed:b3:33:7e:
fe:cc:85:9a:33:1c:84:90:76:f5:c1:d4:d8:cb:23:
a4:7f:f8:8b:c9:6b:13:52:4b:f1:17:b3:25:6d:69:
61:3c:8a:5b:05:16:23:29:e5:61:1d:f6:11:f1:80:
a1:4c:8b:88:63:ba:7e:09:8c:a4:2d:4f:da:42:58:
73:83:10:b3:46:52:e6:a0:a3:c8:d4:14:30:fa:85:
28:86:f5:f0:72:8d:cf:ee:cb:05:21:75:72:a6:3a:
5f:92:6f:82:5c:93:62:58:ca:e8:98:4b:11:d6:70:
73:bf:4a:66:f8:2c:5d:18:8a:e0:83:6a:6b:11:e9:
09:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:12:BD:38:64:BC:D0:C9:83:D9:1C:57:B2:F9:C6:C0:9F:03:86:20
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fxK9OGS80MmD2RxXsvnGwJ8DhiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
34:fd:9c:6e:50:a6:71:c8:9d:a4:15:b7:1b:c8:f6:2c:c9:da:
f5:29:dc:cd:be:f9:17:c2:f8:7d:1a:8c:46:05:f2:7a:09:e0:
16:0e:36:2b:15:ec:03:ee:fd:69:53:ec:8f:c3:3f:57:2a:ee:
d3:5b:91:d6:2f:a7:de:08:e3:c3:bd:fe:f1:a3:a0:50:f7:3f:
46:ee:d8:23:3b:c5:d3:54:53:f5:95:28:3b:3f:8f:47:47:4f:
16:29:20:5c:55:80:15:aa:57:4c:a3:fe:be:b9:18:92:cc:ca:
e5:79:f1:21:c4:3a:c5:fb:7a:ac:96:43:54:63:b0:6c:86:59:
64:3e:eb:29:5c:bd:9d:07:b3:70:0f:f3:2e:70:62:3d:17:e3:
26:2a:f5:ac:85:fa:71:1a:6b:74:ca:2b:0a:c0:1e:38:8c:10:
db:77:96:ae:94:a7:31:8a:0e:23:a4:42:23:97:f2:8a:df:0e:
d9:02:54:84:42:e0:04:e1:21:39:ab:4e:fc:c0:2c:4e:3e:ec:
85:37:8a:44:f9:a8:6d:c2:13:d2:5b:87:67:59:8b:2f:0f:70:
72:8d:0e:05:21:22:40:c5:66:86:0f:37:99:9a:ed:75:e5:fd:
3c:7a:20:a4:35:87:bb:d6:be:a0:ba:8c:0b:d3:27:45:90:95:
d3:bb:cd:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:18:58 2025 by rpki-client