Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/RNpmx3_cH9fBbXiClhaBRn62Jhw.roa
File: RNpmx3_cH9fBbXiClhaBRn62Jhw.roa (raw, json)
Hash identifier: BgcUkAoY7CWRXOb5FAsE0gwz0gPRraOler+YjHqrDI0=
Subject key identifier: 44:DA:66:C7:7F:DC:1F:D7:C1:6D:78:82:96:16:81:46:7E:B6:26:1C
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 0CB1
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/RNpmx3_cH9fBbXiClhaBRn62Jhw.roa
Signing time: Mon 10 Feb 2025 14:08:26 +0000
ROA not before: Mon 10 Feb 2025 14:08:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7539
IP address blocks: 211.73.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3249 (0xcb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Feb 10 14:08:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=44DA66C77FDC1FD7C16D7882961681467EB6261C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c4:da:c0:52:29:2c:b8:74:46:3b:e3:a0:9d:
ca:ba:a0:45:a6:4f:31:b2:e8:11:71:16:0c:fc:27:
38:44:e1:91:dc:24:70:31:85:56:f2:5f:3d:d3:e9:
b3:4f:2e:bc:52:cd:d6:c8:be:9f:67:20:fd:55:85:
e0:e0:b0:06:62:4c:82:dd:b6:d4:45:8f:e6:8f:72:
95:b1:ed:c8:a1:41:f5:c0:03:0d:2b:ba:19:c0:ef:
2c:55:78:32:92:4d:a3:35:42:49:8b:b8:9f:6c:6a:
46:60:a1:af:f9:74:66:c1:48:e3:1c:1b:30:f8:d9:
4a:37:8e:95:90:48:1e:15:1c:3d:27:97:eb:64:91:
ab:d3:a1:8a:cd:98:b1:d3:f9:f1:e1:21:79:af:38:
17:21:d6:68:75:a1:2b:ef:08:4b:9e:c8:57:30:e8:
1f:27:54:82:1a:28:3f:e8:47:55:d4:60:62:79:cd:
33:0c:d3:ac:25:59:9e:40:4d:7a:15:e1:35:1a:cd:
60:be:90:2b:6e:37:98:29:81:0a:d8:c5:53:b0:66:
24:30:a1:ef:c1:5a:5c:a6:ac:2e:58:fc:17:fa:9f:
f9:ee:1d:e2:bb:44:f7:4b:2d:60:4a:6b:ea:14:d9:
5f:c5:fb:ae:ac:5e:e2:ed:c2:5e:fa:4b:fa:a3:45:
2b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DA:66:C7:7F:DC:1F:D7:C1:6D:78:82:96:16:81:46:7E:B6:26:1C
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/RNpmx3_cH9fBbXiClhaBRn62Jhw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.64.0/19
Signature Algorithm: sha256WithRSAEncryption
5d:ba:d0:7e:d4:f4:80:57:72:82:d7:8d:3c:45:91:ea:06:1f:
46:86:4e:07:e2:63:f2:7b:75:85:66:4c:f2:2e:25:22:df:ae:
06:c1:98:98:b8:0c:e9:3a:49:99:d8:d0:be:28:a7:7d:02:31:
c8:ff:dc:cf:c1:14:1b:1f:dc:0d:2f:a1:9a:2b:6d:cf:bf:b6:
11:b4:71:62:b8:72:42:90:a6:db:f4:1e:a8:95:28:cb:60:0a:
b9:a1:34:c4:f6:11:9b:de:25:fc:ce:03:76:b2:03:92:57:11:
de:09:b6:15:5c:de:b8:23:4f:b2:77:6a:a7:77:55:70:f6:be:
e8:0b:c5:0f:e2:fa:51:8a:58:0e:f5:e4:5e:e7:1b:ad:62:2a:
95:8e:51:b9:55:b0:78:0c:c7:58:ce:ea:b0:db:e6:75:68:aa:
5d:42:d1:a2:6f:cb:aa:48:a5:4f:c6:2c:93:30:65:c6:59:ca:
fc:fe:ae:13:9f:89:28:76:ad:af:89:84:b1:0a:cb:f9:00:c3:
e7:e8:97:51:de:c0:02:2a:3c:83:0e:0a:ae:c5:7f:f0:a8:8a:
69:0a:3c:41:33:cc:73:6a:f6:6a:63:b7:93:9c:31:05:d1:c4:
3a:2c:55:05:98:a1:57:5e:02:c2:74:71:90:8f:72:bd:76:b9:
b9:0b:cb:3d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDLEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQz
ODY4NUZGM0VBMUY0NjY4NURFNUY1N0M2QTRCODEwNDQ4MTg5MTAeFw0yNTAyMTAx
NDA4MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0REE2NkM3N0ZEQzFG
RDdDMTZENzg4Mjk2MTY4MTQ2N0VCNjI2MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4xNrAUiksuHRGO+Ogncq6oEWmTzGy6BFxFgz8JzhE4ZHcJHAx
hVbyXz3T6bNPLrxSzdbIvp9nIP1VheDgsAZiTILdttRFj+aPcpWx7cihQfXAAw0r
uhnA7yxVeDKSTaM1QkmLuJ9sakZgoa/5dGbBSOMcGzD42Uo3jpWQSB4VHD0nl+tk
kavToYrNmLHT+fHhIXmvOBch1mh1oSvvCEueyFcw6B8nVIIaKD/oR1XUYGJ5zTMM
06wlWZ5ATXoV4TUazWC+kCtuN5gpgQrYxVOwZiQwoe/BWlymrC5Y/Bf6n/nuHeK7
RPdLLWBKa+oU2V/F+66sXuLtwl76S/qjRSvbAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQURNpmx3/cH9fBbXiClhaBRn62JhwwHwYDVR0jBBgwFoAU7ThoX/PqH0ZoXeX1
fGpLgQRIGJEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNIQy83
VGhvWF9QcUgwWm9YZVgxZkdwTGdRUklHSkUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzdUaG9YX1BxSDBab1hlWDFmR3BMZ1FSSUdKRS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSEMvUk5wbXgzX2NIOWZCYlhpQ2xoYUJS
bjYySmh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdNJQDAN
BgkqhkiG9w0BAQsFAAOCAQEAXbrQftT0gFdygteNPEWR6gYfRoZOB+Jj8nt1hWZM
8i4lIt+uBsGYmLgM6TpJmdjQviinfQIxyP/cz8EUGx/cDS+hmittz7+2EbRxYrhy
QpCm2/QeqJUoy2AKuaE0xPYRm94l/M4DdrIDklcR3gm2FVzeuCNPsndqp3dVcPa+
6AvFD+L6UYpYDvXkXucbrWIqlY5RuVWweAzHWM7qsNvmdWiqXULRom/LqkilT8Ys
kzBlxlnK/P6uE5+JKHatr4mEsQrL+QDD5+iXUd7AAio8gw4KrsV/8KiKaQo8QTPM
c2r2amO3k5wxBdHEOixVBZihV14CwnRxkI9yvXa5uQvLPQ==
-----END CERTIFICATE-----
Generated at Tue Apr 8 09:25:30 2025 by rpki-client