Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xzEiOQZKLEOYP8FOwBzjwoVT00g.roa
File: xzEiOQZKLEOYP8FOwBzjwoVT00g.roa (raw, json)
Hash identifier: Oz2j1xJCt8tz0QBZt6BuUQhvCGxtvo3/KQwcTFoErmA=
Subject key identifier: C7:31:22:39:06:4A:2C:43:98:3F:C1:4E:C0:1C:E3:C2:85:53:D3:48
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 179A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xzEiOQZKLEOYP8FOwBzjwoVT00g.roa
Signing time: Mon 10 Feb 2025 14:07:05 +0000
ROA not before: Mon 10 Feb 2025 14:07:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.205.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6042 (0x179a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C7312239064A2C43983FC14EC01CE3C28553D348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bd:cd:31:e7:5a:f8:f6:ee:52:d5:6d:09:41:
63:05:ca:97:dd:e1:da:14:ef:0b:21:13:44:1c:5b:
4d:94:76:1c:b9:29:5d:f0:ac:bc:ac:6d:fc:0d:ff:
a8:ab:76:64:2a:22:f8:47:d6:e2:8b:d7:47:79:a4:
31:7b:48:d7:a8:1f:6c:0f:10:f1:51:35:2e:8b:7c:
c7:98:39:19:b2:5d:19:9a:34:b3:60:a0:06:38:39:
93:1b:fc:d3:b9:85:3a:b3:2f:e6:a6:bc:bb:07:a0:
63:3f:bd:b7:87:d1:a2:7a:a0:0f:07:57:e9:1d:3d:
62:84:d7:5f:37:67:73:db:a8:ea:d4:1b:02:8d:64:
92:a5:fb:7f:d9:91:fe:f8:84:8c:32:a2:77:aa:e8:
b9:74:30:e7:84:55:a4:0d:d1:09:3f:a5:5c:0c:2c:
1e:81:6d:53:55:e5:37:6d:77:3d:89:90:ff:20:96:
11:9c:54:80:52:c3:bf:eb:86:5a:aa:e8:21:b9:ac:
8b:3e:8e:3a:8a:85:c4:0e:df:45:eb:13:c5:67:ab:
3a:0f:a0:ce:c6:16:6c:69:40:99:86:f3:55:70:25:
f0:51:26:11:57:a4:65:a7:74:89:0f:dc:3c:df:4f:
46:48:fe:20:ec:14:ec:70:f4:a1:e5:8c:4d:97:1e:
82:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:31:22:39:06:4A:2C:43:98:3F:C1:4E:C0:1C:E3:C2:85:53:D3:48
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xzEiOQZKLEOYP8FOwBzjwoVT00g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.76.0/24
Signature Algorithm: sha256WithRSAEncryption
08:8e:dc:b6:6f:c1:dc:04:db:20:6a:83:19:91:0e:24:38:e0:
bc:4d:35:8a:ad:bb:25:f9:ca:e9:42:9b:83:bd:5b:bf:6c:b9:
18:da:6d:73:e6:92:09:f9:b8:f1:dc:10:ba:9e:16:ee:0f:84:
34:bd:b5:9f:4d:3d:c8:bd:12:9c:38:54:0a:bb:3a:5a:6c:7e:
1f:53:e7:70:c0:82:09:6b:5b:45:bc:b8:76:46:3e:6f:a0:bc:
61:1a:2b:3a:f9:71:ac:be:77:58:44:70:a9:79:ce:42:d8:ee:
c7:60:6a:6c:31:2b:1a:ea:97:b8:ec:b1:c0:e9:6d:37:f7:54:
5d:aa:37:aa:e3:e7:57:47:3a:96:63:12:b4:6c:ed:ab:a8:b5:
1f:16:98:de:60:54:9e:9d:6a:30:0c:be:ee:cf:cc:07:e8:59:
ce:ec:9d:d5:24:f2:d6:7d:4a:c5:1d:2a:9b:a1:fa:ac:47:07:
3b:e1:9b:e1:c1:62:7f:ef:1f:df:ab:ba:62:02:c3:39:c8:42:
6b:59:f0:b5:8f:c8:46:66:70:9b:65:b5:a7:a7:ce:c4:a5:e6:
8c:4e:52:51:fe:41:a3:c2:de:69:15:cf:20:df:3a:a8:ff:46:
2f:c9:38:f5:67:a9:4f:f7:a8:91:2d:ed:ce:82:6e:45:72:8a:
9b:16:76:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:09:00 2025 by rpki-client