Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ncYAkuRgs6o1PI2mYg5m5e7kcPI.roa
File: ncYAkuRgs6o1PI2mYg5m5e7kcPI.roa (raw, json)
Hash identifier: 0sMRlHrUXYYpCex3C7siKoyaZcMu9BlEAH1YttO8NlI=
Subject key identifier: 9D:C6:00:92:E4:60:B3:AA:35:3C:8D:A6:62:0E:66:E5:EE:E4:70:F2
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 137B
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ncYAkuRgs6o1PI2mYg5m5e7kcPI.roa
Signing time: Fri 14 Feb 2025 08:32:47 +0000
ROA not before: Fri 14 Feb 2025 08:32:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 119.75.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4987 (0x137b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 14 08:32:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9DC60092E460B3AA353C8DA6620E66E5EEE470F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:10:83:75:b7:5a:f3:54:53:d6:0a:55:0a:2b:
b6:97:b6:44:da:44:81:ed:1a:3d:76:fb:67:e6:c3:
69:43:93:a5:a7:bc:f3:ec:76:17:58:74:20:35:be:
54:dc:43:15:b3:5c:00:e8:a9:68:8f:56:77:67:52:
9a:fb:fe:21:8e:16:1f:d8:68:c9:66:5a:ea:61:9a:
84:3e:8f:cb:33:49:2d:60:84:1e:59:37:18:07:6f:
cc:83:d7:b5:75:78:4d:86:39:54:17:59:8a:f2:0e:
48:db:89:5c:91:87:81:59:29:f1:18:0c:f8:10:b2:
34:d5:d1:5c:47:f4:23:7d:86:d1:3b:2e:a5:f8:22:
4f:b5:ad:12:8b:b1:3c:06:9c:42:1a:af:d6:82:d6:
21:5b:bb:d8:f6:13:5a:98:db:b2:b8:3e:52:26:d1:
05:22:35:71:e6:da:3a:4a:fc:4e:d4:7e:dc:65:1f:
8e:c6:fe:02:f5:f8:99:94:8d:78:f4:99:9f:f5:0b:
5d:78:38:d7:92:32:f9:b8:07:fb:1f:5b:ba:76:7f:
db:e8:88:c1:b3:16:51:f4:6f:13:1b:6e:dc:94:ca:
01:3b:83:d2:45:96:73:bb:1b:f1:9e:0c:ec:d0:93:
28:e7:ec:db:8f:00:34:81:a9:14:d4:54:5f:04:91:
e7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C6:00:92:E4:60:B3:AA:35:3C:8D:A6:62:0E:66:E5:EE:E4:70:F2
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ncYAkuRgs6o1PI2mYg5m5e7kcPI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.75.245.0/24
Signature Algorithm: sha256WithRSAEncryption
38:65:19:51:cc:c2:85:0d:6a:0a:e1:a0:68:37:70:5c:49:9a:
fc:c6:78:3d:ad:b1:11:ef:72:21:94:f0:26:4b:44:a5:fe:5c:
ef:34:94:0c:d5:15:11:8d:b8:15:61:3a:bb:5b:aa:87:dc:d2:
0b:fa:76:07:0e:4e:fb:92:83:fd:fb:cc:f7:e9:39:28:c9:02:
39:a8:72:b9:a6:75:4e:db:6c:91:4d:a7:96:45:15:30:8f:5b:
26:41:ec:1e:9c:cb:6c:c6:e5:51:d9:2f:01:ad:8d:0f:4b:8c:
ab:c0:02:a6:3d:81:ba:30:e8:b1:5d:4e:c0:63:48:e4:78:ce:
2d:c7:44:d0:c5:09:1d:58:3d:07:e1:1f:1b:9b:ed:64:f1:f7:
a8:64:d6:8a:f8:17:4c:20:db:5d:a6:92:fb:d8:c0:93:13:26:
86:68:08:4a:b8:6e:69:65:b7:f1:ba:a6:1b:2a:e8:b3:53:31:
a1:ba:a8:7f:2e:a0:a2:f9:eb:80:e5:76:97:14:b0:55:a6:e3:
5e:57:a3:73:b3:8e:6c:ca:08:9f:b5:39:89:eb:12:ec:a7:71:
75:19:af:bd:e6:0d:aa:2e:b5:df:da:22:62:04:78:41:6b:6e:
ea:e2:af:95:e7:47:04:65:78:09:91:4c:60:2b:97:66:65:c4:
f9:0a:f9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:23:30 2025 by rpki-client