Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/pN7ZwF0LW42ypsIbS8fY9Glr7Ew.roa
File: pN7ZwF0LW42ypsIbS8fY9Glr7Ew.roa (raw, json)
Hash identifier: DHYfLzt6gQwuLU3/IqtIYmxooHQs9QYn28KSHiQPB3M=
Subject key identifier: A4:DE:D9:C0:5D:0B:5B:8D:B2:A6:C2:1B:4B:C7:D8:F4:69:6B:EC:4C
Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA
Certificate serial: 0131
Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/pN7ZwF0LW42ypsIbS8fY9Glr7Ew.roa
Signing time: Mon 10 Feb 2025 13:45:16 +0000
ROA not before: Mon 10 Feb 2025 13:45:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 16509
IP address blocks: 113.192.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 305 (0x131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA
Validity
Not Before: Feb 10 13:45:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A4DED9C05D0B5B8DB2A6C21B4BC7D8F4696BEC4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7a:64:0e:cf:5a:62:1d:09:8a:d1:ab:c3:40:
db:2f:0d:25:e3:c1:5b:f1:95:9f:4a:53:38:4a:41:
6e:28:50:3f:ec:65:d6:4a:73:4f:11:2d:d2:2e:bc:
c5:d4:c4:62:d2:a8:02:2e:c3:b8:bd:93:ea:42:bb:
fd:4f:15:fb:7a:70:c8:20:4e:3a:cb:75:5b:05:91:
51:ed:19:78:b6:2a:2d:6e:f2:98:d3:34:00:9c:d0:
7a:ef:29:cf:8a:8d:f4:a9:fa:71:f0:52:1d:e0:69:
29:56:de:14:a8:65:4c:f9:8c:59:3b:9f:43:ef:21:
1f:29:66:ff:b9:d6:98:b2:aa:b3:f5:c6:17:0a:ab:
b7:64:b4:17:8c:ab:1c:64:42:b1:3d:eb:96:d6:77:
90:59:28:d8:c2:da:f9:9d:3c:66:80:7f:ba:60:66:
cc:e5:3e:f9:f8:de:6a:0f:ac:3b:6b:53:a0:11:6e:
a1:84:ae:0f:53:6b:dd:73:80:f6:0b:02:9e:04:5b:
63:ff:24:12:2c:17:7e:d9:7e:00:78:66:57:ab:7f:
b5:c3:c7:af:70:31:ea:1a:e7:86:8c:d8:cd:1a:11:
ff:d1:9e:ae:af:34:5e:2c:b9:9e:b8:74:cc:b6:2f:
aa:3f:c6:dc:e5:10:f7:7a:59:12:20:99:47:ea:f0:
ce:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DE:D9:C0:5D:0B:5B:8D:B2:A6:C2:1B:4B:C7:D8:F4:69:6B:EC:4C
X509v3 Authority Key Identifier:
keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/pN7ZwF0LW42ypsIbS8fY9Glr7Ew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.192.24.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:58:f0:88:95:70:7c:43:c1:69:46:58:73:89:65:10:1a:6e:
07:de:dc:88:f3:59:25:7a:8e:65:6e:82:54:32:46:15:9a:33:
39:1b:e3:ee:b1:dc:75:ce:e9:1e:eb:e3:03:37:21:23:d4:13:
bb:13:ef:db:75:f4:8d:98:54:b0:54:1e:5b:3e:3c:f5:e7:5e:
f4:33:99:a7:c8:42:b8:c8:12:cb:24:ac:c2:2e:19:76:a3:8f:
3e:48:e8:18:b4:ce:e2:58:b4:5e:90:d0:23:0e:70:3e:79:4b:
42:68:ea:47:91:e9:ab:90:91:a7:cc:c4:33:fd:ce:2b:98:f9:
3a:9c:6e:8d:d6:07:d4:f0:88:78:c4:7d:7a:d5:34:0c:3a:59:
a5:06:47:55:da:29:14:5c:70:66:a8:f8:4c:34:98:8b:a0:05:
d7:40:17:25:7d:c4:9c:a4:26:eb:57:54:3a:f0:63:81:7b:db:
fc:86:63:7f:1b:36:04:28:39:35:d5:87:13:aa:26:c0:46:d0:
6c:5d:19:7f:78:68:3d:dc:d4:cf:96:05:a8:7f:34:de:0f:6a:
64:5b:33:15:62:d4:00:a1:d1:fa:80:33:05:1b:08:24:32:b0:
a8:28:90:1e:16:7c:5f:de:12:1e:05:eb:19:3d:e0:a6:aa:2d:
00:01:74:62
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:49 2025 by rpki-client