Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fzI4jP-mXlO-enhTdz75jT9kLbM.roa
File: fzI4jP-mXlO-enhTdz75jT9kLbM.roa (raw, json)
Hash identifier: v4fr1ap15gdSovDj6WvkQ3ZSAzYYJNfH1Eis1mBjHVc=
Subject key identifier: 7F:32:38:8C:FF:A6:5E:53:BE:7A:78:53:77:3E:F9:8D:3F:64:2D:B3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1819
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fzI4jP-mXlO-enhTdz75jT9kLbM.roa
Signing time: Mon 10 Feb 2025 14:07:35 +0000
ROA not before: Mon 10 Feb 2025 14:07:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.205.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6169 (0x1819)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7F32388CFFA65E53BE7A7853773EF98D3F642DB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:10:0c:cb:1e:c9:70:ae:33:97:ef:02:ee:ee:
3e:05:9a:8e:91:27:52:f2:95:65:3b:8a:61:76:c1:
c6:a2:0b:c2:a1:2f:86:d9:7a:05:43:1c:df:76:26:
05:53:48:59:12:7d:02:17:46:be:ad:e1:91:c8:21:
98:43:c7:7a:f1:9c:ac:a5:82:4e:49:94:1f:ce:28:
2f:56:c8:bc:a0:ac:a7:d9:93:8e:37:2b:1f:b2:d4:
84:69:db:bb:12:3c:3e:51:b0:6c:ff:47:6d:fe:26:
87:5e:f0:36:93:93:78:6b:62:1c:5b:bf:ea:14:f4:
aa:22:99:e1:28:c6:ae:52:83:70:f0:9b:18:39:a5:
62:1b:04:34:a7:a0:53:46:68:cb:fb:2a:4d:95:94:
84:e6:3f:c3:d6:49:d2:f1:91:c6:ac:39:93:b0:eb:
52:3b:7d:dc:96:db:85:b1:f8:13:8d:5a:6f:4a:54:
45:39:8f:54:c5:79:d0:cb:d5:4e:b6:81:e0:86:d8:
4f:9a:7f:8e:8c:a3:6b:50:2d:5b:90:f8:c4:41:52:
99:19:dd:b5:18:7b:97:82:2b:2f:63:0d:7a:ce:58:
fa:c0:71:45:1e:ff:65:fb:a2:c1:78:28:20:48:d8:
b5:0e:41:40:9d:11:50:06:34:a2:c5:8d:83:56:1b:
14:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:32:38:8C:FF:A6:5E:53:BE:7A:78:53:77:3E:F9:8D:3F:64:2D:B3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fzI4jP-mXlO-enhTdz75jT9kLbM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.0.0/16
Signature Algorithm: sha256WithRSAEncryption
47:a7:00:61:2a:89:b1:4e:79:18:28:22:aa:ce:09:18:a1:9e:
6c:ab:41:22:c2:7e:e6:70:8e:24:1b:b6:c8:fb:a8:e2:88:4a:
10:e2:38:1e:03:f5:56:a6:db:f3:db:11:94:df:bb:85:0b:b8:
9e:c7:03:b3:ac:61:52:b3:ce:4d:44:24:ad:5e:23:37:58:e3:
23:3b:9e:34:ac:07:aa:00:66:aa:42:ea:d0:0d:d6:83:a7:61:
f2:a3:0a:b2:ad:24:a8:dc:05:a0:ec:03:8e:49:ad:e9:84:f3:
49:c8:23:4e:f3:a0:ef:0f:46:33:9d:c9:fb:6b:56:a3:56:e7:
df:a7:5c:49:9c:66:89:f1:a5:9f:9f:a5:fd:4b:75:56:e4:e0:
8e:d8:1f:bb:22:0c:e6:e8:fb:21:53:20:d8:f1:ea:11:ff:8b:
ff:25:2b:74:97:e0:33:3e:c7:5b:d7:fe:a2:f0:5a:01:64:dc:
99:29:6f:20:57:f7:e9:a0:cc:28:f6:25:21:27:c2:3e:1f:5d:
5c:a0:f5:1f:4d:1a:8d:41:ee:86:44:02:4e:76:94:e0:7e:b5:
7f:31:d5:4d:45:c8:e2:8b:5a:cf:ba:9d:4e:5e:fc:98:f1:10:
64:a7:0d:ea:04:28:65:2d:0f:72:41:9a:0a:a2:d0:ae:8a:fc:
b4:99:58:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:32 2025 by rpki-client