Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yI3UKRXBmIKnKmj8y897VFskWxQ.roa
File: yI3UKRXBmIKnKmj8y897VFskWxQ.roa (raw, json)
Hash identifier: xJUysqngtoonmCqxn4tmo9QQ4nP2wDRwjMJ2oakoYvI=
Subject key identifier: C8:8D:D4:29:15:C1:98:82:A7:2A:68:FC:CB:CF:7B:54:5B:24:5B:14
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 183A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yI3UKRXBmIKnKmj8y897VFskWxQ.roa
Signing time: Mon 10 Feb 2025 14:07:42 +0000
ROA not before: Mon 10 Feb 2025 14:07:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 112.105.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6202 (0x183a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C88DD42915C19882A72A68FCCBCF7B545B245B14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:00:02:c6:e3:10:55:8a:2b:28:7e:37:e4:
cb:e3:b4:2d:26:20:e4:06:8d:34:a6:b8:95:c0:82:
c9:43:76:7f:20:07:e5:63:8e:95:67:fc:58:c8:bf:
68:0e:67:d7:8c:6c:df:e8:66:72:f0:99:d7:6a:41:
18:05:b2:18:2c:06:5e:16:6b:44:0d:59:6e:fb:1e:
1f:df:12:f5:8b:bf:37:6e:ff:cd:1b:54:6f:d1:26:
0b:02:a3:22:f4:ef:4b:c9:20:1d:9f:50:04:9b:e9:
ca:89:1a:88:64:2a:f4:61:f0:a9:7d:51:bc:7f:0b:
90:0a:8f:2b:68:d8:de:50:91:02:7d:98:76:38:06:
b1:a2:2c:a0:7f:91:43:66:92:8e:90:1d:b9:49:df:
13:72:5a:0f:a4:14:69:96:e8:9e:5c:98:97:44:aa:
7d:9f:d2:76:cf:00:f0:eb:ed:be:00:f5:53:a5:26:
65:c6:99:d3:49:5a:c9:45:6d:66:40:ec:48:4d:53:
26:b8:12:96:9e:2a:5a:3e:43:6d:b4:f8:d6:11:51:
4b:49:3d:22:9a:ff:8b:de:d2:44:66:39:b2:b6:57:
65:2b:69:35:b6:b0:17:c9:1e:80:e3:c2:1f:ca:74:
5b:03:cb:0a:54:67:b9:02:7c:7a:2a:12:05:75:5c:
c9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8D:D4:29:15:C1:98:82:A7:2A:68:FC:CB:CF:7B:54:5B:24:5B:14
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yI3UKRXBmIKnKmj8y897VFskWxQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.8.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:75:22:af:0d:fd:94:12:0e:5f:a1:97:cf:f5:c0:84:03:8a:
43:b2:2f:c7:b7:12:1b:56:96:33:45:27:17:19:85:75:f7:f1:
2d:7a:c4:bb:58:08:4a:46:4f:3d:fa:44:86:4b:d6:68:d4:e1:
81:97:7b:13:c2:42:3c:dc:1f:3f:92:c5:e3:51:5a:4a:66:89:
6a:ce:e2:4c:b6:ac:4a:d7:6a:5e:2f:af:4c:13:18:2e:f2:99:
c0:ad:8b:de:be:24:0b:72:0e:fe:76:cc:ec:19:0b:c1:9f:6b:
26:48:2f:9a:56:1a:cc:02:4c:65:f2:03:63:5c:1d:0f:73:15:
a0:bc:e8:19:1f:45:9c:00:5b:4c:f4:3e:95:29:76:0a:66:c1:
2b:b7:41:a0:9a:4c:6b:ae:d4:ea:81:9b:bc:b7:ad:75:ab:5c:
8f:32:a8:f3:80:e4:aa:95:97:e9:ac:86:84:b9:5f:86:3e:dd:
94:d3:b8:79:db:fc:d3:30:42:b3:76:66:ed:95:69:b2:f8:99:
09:5a:d6:2d:8a:6b:10:ec:15:cc:0c:73:d7:17:ba:c2:71:e0:
9a:ca:c3:31:8b:bc:88:5a:71:13:42:70:cc:bd:b5:a5:27:f5:
c1:77:d2:91:a5:e9:5a:db:ef:2e:5d:ae:41:f9:88:f9:ab:e8:
1d:0e:59:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:18:50 2025 by rpki-client