Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zv2uXZ75ZXwpduG0oinXNkCFFy8.roa
File: zv2uXZ75ZXwpduG0oinXNkCFFy8.roa (raw, json)
Hash identifier: CprLRQBNMUQKsc3srORozr5tHkA6xc9UKxlgpa5AE8w=
Subject key identifier: CE:FD:AE:5D:9E:F9:65:7C:29:76:E1:B4:A2:29:D7:36:40:85:17:2F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 17E1
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zv2uXZ75ZXwpduG0oinXNkCFFy8.roa
Signing time: Mon 10 Feb 2025 14:07:22 +0000
ROA not before: Mon 10 Feb 2025 14:07:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6113 (0x17e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CEFDAE5D9EF9657C2976E1B4A229D7364085172F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:2d:8c:7e:56:b2:77:4c:25:a4:43:1d:2f:
5f:26:1d:c3:bb:61:de:84:4f:63:43:df:22:56:8b:
64:2c:af:e1:c6:48:3e:17:d9:25:61:8b:41:31:df:
45:51:b0:9e:54:fb:94:0a:9b:50:3f:63:66:96:31:
8f:61:24:20:48:cf:34:52:c9:aa:e7:fd:4e:50:03:
08:15:53:a0:a8:21:75:30:ab:9a:42:c4:76:a3:84:
62:32:c0:79:6f:3c:d3:46:b8:6f:e1:b4:10:19:db:
17:78:76:05:16:d7:54:68:f7:eb:3c:48:1a:4b:8f:
2e:15:c1:a2:2a:40:d3:17:24:79:ee:c0:ec:52:f6:
36:86:1e:19:31:6b:cc:ae:15:9b:1c:5c:40:6d:e6:
ca:5c:9a:e9:d7:b9:76:5a:f0:31:ea:f3:37:88:dd:
35:20:8f:79:54:55:81:dc:ec:4a:82:07:a6:21:5b:
f7:ea:62:99:1c:ef:99:04:e2:06:36:53:f2:fa:37:
c3:2d:28:c4:bc:91:07:db:65:b4:a5:33:98:eb:e1:
69:9b:1a:12:44:52:82:9b:58:f0:5e:7e:66:38:f8:
87:8e:cf:ed:39:cf:fb:01:93:2b:72:26:10:ea:f9:
3e:b3:3a:ab:1e:25:ea:e8:a0:92:38:c3:05:29:e1:
04:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FD:AE:5D:9E:F9:65:7C:29:76:E1:B4:A2:29:D7:36:40:85:17:2F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zv2uXZ75ZXwpduG0oinXNkCFFy8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b9:8e:05:c2:7e:ae:4d:63:f6:c6:83:64:42:3d:00:04:34:51:
45:5f:84:27:eb:9e:23:7a:e6:fa:0d:4e:74:ab:4c:91:5a:58:
79:bd:71:b0:d5:23:52:73:58:e6:e4:f3:c9:82:07:ed:d0:9a:
41:7d:cd:4a:63:a7:4b:29:dc:4a:32:f6:92:61:19:05:4f:63:
79:85:05:e9:7d:3a:09:86:bf:b7:40:99:c1:ed:54:3d:11:80:
f6:6a:05:3e:b3:00:0f:04:02:7c:79:80:45:34:47:1d:dc:d7:
18:b7:30:b2:c7:6a:de:fb:bd:dd:2a:51:19:44:14:f0:2b:bf:
05:15:dd:2f:95:1b:aa:8a:78:17:0f:96:36:56:35:1b:79:99:
13:4e:32:e4:7a:34:6d:07:d8:a7:86:c1:ab:c2:3f:9d:f6:77:
74:8d:f0:00:7f:04:e1:9a:91:a7:d5:ce:e7:0b:96:fb:d9:1c:
e5:74:29:8d:48:42:76:3e:ef:85:96:c6:ae:ea:6e:27:ea:36:
45:1d:4c:53:0e:33:47:c8:a4:01:58:a0:de:42:b9:78:f5:96:
1d:3f:e6:45:00:f4:53:2e:8a:9f:41:7a:f9:d4:a4:02:9a:4e:
d9:c5:f8:f8:50:93:68:0f:95:5c:1b:55:1b:74:ba:98:0e:22:
a1:09:73:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:14:07 2025 by rpki-client