Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rb7Jti-v44ZsRj0G9EOvQVbULVg.roa
File: rb7Jti-v44ZsRj0G9EOvQVbULVg.roa (raw, json)
Hash identifier: zrju77+iDBgohZ20SYIrBWd0scZsUk+0qy3eCw3keH0=
Subject key identifier: AD:BE:C9:B6:2F:AF:E3:86:6C:46:3D:06:F4:43:AF:41:56:D4:2D:58
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1825
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rb7Jti-v44ZsRj0G9EOvQVbULVg.roa
Signing time: Mon 10 Feb 2025 14:07:37 +0000
ROA not before: Mon 10 Feb 2025 14:07:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 175.183.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6181 (0x1825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ADBEC9B62FAFE3866C463D06F443AF4156D42D58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:38:03:28:50:18:e1:8d:92:0f:09:67:69:74:
d3:9a:0e:63:c3:a4:17:f1:de:0d:88:60:b4:61:b1:
1d:00:ec:50:05:5f:31:ba:16:55:6a:0c:cc:6b:96:
ac:23:6c:d3:b4:8e:db:6c:5e:a0:62:fb:70:0c:f5:
da:6a:84:d7:c5:93:46:7e:dd:b5:a5:36:f8:08:8c:
b7:97:ae:5a:59:5a:6b:90:3c:92:0d:70:8d:de:62:
1c:ba:cc:3f:00:cf:03:d1:b7:33:18:45:4f:26:b9:
6e:45:af:0b:55:3a:91:69:32:10:07:72:2c:0b:64:
9f:b3:87:ff:ad:86:1b:c1:e5:ae:a3:db:4e:47:83:
c1:7d:52:f1:45:b1:cf:93:16:e4:25:72:60:83:09:
61:7e:7c:0f:93:c5:2a:a8:a8:a4:52:78:bf:1f:99:
bd:32:2f:15:2c:b8:84:32:a3:fe:dd:f2:1b:36:a5:
24:af:f5:63:88:68:ea:29:66:2f:78:45:44:b5:8f:
73:b7:8b:07:3e:95:a3:fa:db:2f:7a:87:b3:c7:41:
3e:1e:d7:6a:0b:b1:11:04:d6:42:f3:9e:bc:b8:77:
ab:9d:35:3f:ac:ed:2f:08:8a:b6:58:06:36:0c:11:
b9:6e:62:88:e2:ac:9e:ce:a8:a1:b4:0a:38:0c:af:
cc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BE:C9:B6:2F:AF:E3:86:6C:46:3D:06:F4:43:AF:41:56:D4:2D:58
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rb7Jti-v44ZsRj0G9EOvQVbULVg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.0.0/17
Signature Algorithm: sha256WithRSAEncryption
aa:b2:18:06:6c:0e:5e:c8:4c:d8:9d:e7:83:a9:27:a1:f3:9d:
7b:aa:88:30:dc:16:fd:cf:df:1b:19:ec:cf:35:5b:bc:5b:ca:
2a:40:cf:b8:50:e6:16:a4:76:84:81:b1:6b:93:2e:fd:ad:4f:
98:84:73:21:1c:e6:95:ff:66:21:79:e9:9d:3a:4d:25:4d:5c:
98:5c:e6:70:8d:13:51:75:72:15:63:6b:81:c9:d8:6a:ea:d0:
ac:31:58:0c:52:9f:a3:30:ea:f6:53:0a:d1:d2:2d:7a:7a:ef:
c6:41:0e:5d:bd:c4:09:22:ba:0d:23:fa:72:c5:04:ee:ed:60:
6b:88:b9:d7:e7:a1:51:3d:f5:a3:23:81:e7:c4:b9:44:1d:ac:
c5:66:9d:3f:cd:5a:68:1a:d4:05:5d:23:59:f0:0e:20:76:c5:
3b:13:6c:d5:d1:c9:a2:bb:27:8e:27:8c:54:75:b3:55:df:28:
68:c4:c5:5e:96:f1:5c:b7:a6:18:33:72:e3:5f:68:d3:e1:c3:
37:85:a9:b9:63:c5:3e:0c:ee:48:b4:44:ad:d9:3b:b1:f8:f5:
7e:d3:29:e5:4f:59:5c:6e:95:e3:60:7d:27:f4:9e:50:3f:c5:
8c:53:3e:b8:e7:a7:5f:63:39:59:0a:73:f3:df:51:25:08:fb:
fe:6d:48:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:09:00 2025 by rpki-client