Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gyzYRC0ntmIbgc5tk0cRfxkXjf8.roa
File: gyzYRC0ntmIbgc5tk0cRfxkXjf8.roa (raw, json)
Hash identifier: 6lBEDH0Wy8RW5OLHkM/BmQHvHtltP4LfeE1avZSSndA=
Subject key identifier: 83:2C:D8:44:2D:27:B6:62:1B:81:CE:6D:93:47:11:7F:19:17:8D:FF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1777
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gyzYRC0ntmIbgc5tk0cRfxkXjf8.roa
Signing time: Mon 10 Feb 2025 14:06:56 +0000
ROA not before: Mon 10 Feb 2025 14:06:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 218.211.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6007 (0x1777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:06:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=832CD8442D27B6621B81CE6D9347117F19178DFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8f:ba:25:69:4d:de:d9:0c:a2:15:dd:e6:b9:
a1:62:1d:77:0a:37:a0:b7:cf:d1:24:c6:fa:8a:f3:
0b:0d:60:af:9d:d0:ef:32:03:f3:5e:76:2c:44:be:
1d:c2:fc:c8:14:1a:7f:e7:8a:a9:73:57:14:51:3b:
e2:80:20:1c:66:bb:ae:24:fd:24:98:76:02:19:2e:
c1:62:3d:e7:a2:94:c2:1d:22:eb:a1:b1:20:a3:03:
bf:50:b0:56:95:cd:56:e6:3e:47:77:ff:97:ae:ca:
aa:22:97:75:26:1d:b6:d6:ab:0c:f3:d2:be:c0:2f:
2b:59:51:28:81:5a:0f:2a:ef:6b:7d:54:28:3f:e4:
01:86:3d:ac:2e:8c:9c:f8:b8:2c:db:cc:58:f1:ef:
cf:e3:c3:05:30:80:8c:13:bf:f9:0e:ff:ba:e2:76:
b7:1f:fc:c5:4c:86:0c:d8:47:f1:d1:c4:d6:66:41:
82:e4:89:b0:11:fc:ae:fe:5c:ff:80:69:18:a9:53:
53:0a:aa:b3:53:d7:bc:b6:db:ba:67:f5:c9:19:5a:
5f:65:1c:13:ff:fc:cf:9e:5d:a1:79:51:fa:0b:eb:
50:94:14:3e:85:d0:b2:23:fb:a7:e2:88:6e:fd:c1:
5d:56:0a:e5:29:34:fe:41:36:53:5e:96:ae:ff:dc:
7f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2C:D8:44:2D:27:B6:62:1B:81:CE:6D:93:47:11:7F:19:17:8D:FF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gyzYRC0ntmIbgc5tk0cRfxkXjf8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
03:4b:53:cb:bd:7a:60:63:8a:22:d6:26:13:46:5c:5c:0c:8d:
f5:56:39:6f:ad:f1:23:f1:3d:f0:8a:94:de:5c:26:9f:67:4e:
a1:58:63:3c:7e:51:ee:8b:32:59:52:e0:c0:0e:6c:bd:76:27:
5b:42:84:bd:7e:df:c2:f6:53:1a:ef:ed:94:41:0c:eb:69:92:
00:c5:dc:25:a2:28:19:6e:6e:5e:1a:52:53:c7:4e:31:7a:ac:
e3:d1:d7:97:bc:20:9c:dc:19:cf:b0:33:92:5c:dd:ea:44:da:
f1:07:f0:3f:dc:15:b7:d3:a2:de:dc:d6:53:f8:d9:3d:b9:7e:
b0:7b:d0:40:3a:c6:e2:80:f5:f4:3c:08:dc:e0:2d:ca:36:6b:
86:79:5e:e4:54:50:0a:4a:cb:af:3b:69:61:4d:a7:50:d8:45:
a0:2e:f6:ca:64:92:56:cd:b8:40:74:1e:2a:75:62:1b:08:c7:
00:4e:d4:5a:bb:d9:02:e2:79:b9:d0:ee:be:a3:49:1a:9a:a5:
c8:73:85:18:62:b7:47:33:42:78:02:d8:62:ac:d7:b6:07:57:
a0:03:d3:6f:e3:3b:38:79:34:11:d7:22:5c:e8:7a:7d:5b:5a:
8c:17:58:40:ce:c8:0a:d4:3b:5c:63:db:74:c1:93:4e:b0:1a:
49:ac:29:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:03:00 2025 by rpki-client