Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-hXinkyERwOZmWW6tJRlYuYDnsw.roa
File: -hXinkyERwOZmWW6tJRlYuYDnsw.roa (raw, json)
Hash identifier: 0UG4bKyKZC4S+DSXTHRARxITOvLWVdVciAo1fD+aHNg=
Subject key identifier: FA:15:E2:9E:4C:84:47:03:99:99:65:BA:B4:94:65:62:E6:03:9E:CC
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0F72
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-hXinkyERwOZmWW6tJRlYuYDnsw.roa
Signing time: Mon 10 Feb 2025 14:08:05 +0000
ROA not before: Mon 10 Feb 2025 14:08:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3954 (0xf72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 10 14:08:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FA15E29E4C844703999965BAB4946562E6039ECC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:a4:0b:ed:84:15:47:73:2c:0f:87:42:41:
65:4d:0a:50:da:e4:81:2d:4b:0c:24:2a:65:25:a9:
45:11:09:10:a6:6a:9c:42:fd:eb:6a:b5:86:de:77:
42:b2:e0:8d:af:e5:d3:6c:3c:4c:b7:1c:b0:29:c9:
fc:cf:48:b6:fb:a2:84:a2:1a:d6:5b:48:88:30:84:
69:ff:79:f1:55:48:0c:51:1c:ba:88:7c:d6:a2:09:
0e:e8:85:a3:7f:4f:0c:2b:ac:87:d5:51:22:d9:fa:
f9:46:ac:e7:c1:0f:7b:c7:5f:1c:54:e2:5a:6e:e6:
bd:eb:2b:56:63:14:58:a5:2f:ae:d4:16:56:4e:8c:
6f:02:68:21:0e:8b:48:a2:17:e5:7f:7c:f7:f3:3b:
05:66:52:ba:2c:e1:ee:cb:77:d2:6b:53:44:79:85:
d8:99:f2:6d:b9:22:18:ea:4d:13:da:1f:e6:4f:26:
39:fd:a2:f6:05:f3:fa:c7:2b:6e:65:ce:77:6a:e1:
57:1c:e3:04:20:ff:43:61:c2:38:68:97:39:09:f8:
c1:a3:ff:ac:5c:b9:2e:b9:2b:e2:66:90:ff:03:23:
a1:0e:bf:c7:a5:80:2a:5c:6a:78:71:23:3e:89:40:
1d:c3:40:ad:05:ba:25:6f:ac:e9:a2:ef:f5:80:d3:
2d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:15:E2:9E:4C:84:47:03:99:99:65:BA:B4:94:65:62:E6:03:9E:CC
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-hXinkyERwOZmWW6tJRlYuYDnsw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
21:88:81:21:57:30:17:6c:89:36:a3:6f:19:cc:da:ae:75:35:
77:15:61:ca:72:5d:1e:45:e0:a2:a0:cb:ee:35:5f:a9:f9:e2:
ce:0d:3a:71:02:4a:33:a8:59:a5:7e:f3:dc:2a:0d:38:53:dc:
33:fc:9d:73:15:fa:a9:9f:4d:94:21:11:1f:17:65:ff:2c:2d:
f1:e4:a8:a0:b2:62:e2:3e:b6:dd:7f:68:c2:c5:70:4d:02:80:
ce:5c:4e:cb:69:f3:9a:37:1c:e6:a6:18:8b:0f:d3:8c:2e:cd:
d2:2c:f1:16:a3:ff:02:e8:58:98:da:36:ee:33:41:ff:03:f3:
76:b8:75:30:cf:fc:e6:9a:66:65:d0:a6:2e:be:02:b4:90:ea:
11:39:ee:27:e3:52:f6:c0:e1:68:1a:3c:01:6a:2a:12:f7:38:
30:fd:8f:d3:97:c1:da:3f:da:83:eb:e2:70:61:ae:64:8c:3c:
d0:8d:01:e7:a4:a6:33:1e:85:03:7a:aa:a8:ae:b4:8c:4a:5b:
41:e4:64:8f:4b:b9:4c:e4:8c:4e:92:40:19:b7:06:dc:cd:bb:
24:a8:05:1d:6e:78:ec:18:3e:b8:7a:ba:29:98:82:22:ee:b3:
33:fa:ce:6c:96:e4:98:f9:0f:18:84:fb:f2:3d:af:df:aa:d7:
ab:cd:de:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:23 2025 by rpki-client