Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1w9_PP_mbnRwBeOdfU3AOt1lIUM.roa
File: 1w9_PP_mbnRwBeOdfU3AOt1lIUM.roa (raw, json)
Hash identifier: 3+XXQcS+mZX5YYOPP93vSeIOeIB+l068Aw6PeUd5g9M=
Subject key identifier: D7:0F:7F:3C:FF:E6:6E:74:70:05:E3:9D:7D:4D:C0:3A:DD:65:21:43
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0A0C
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1w9_PP_mbnRwBeOdfU3AOt1lIUM.roa
Signing time: Sun 07 Feb 2021 06:37:58 +0000
ROA not before: Sun 07 Feb 2021 06:37:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2572 (0xa0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 7 06:37:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D70F7F3CFFE66E747005E39D7D4DC03ADD652143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:bf:c6:fa:f5:8c:75:3f:70:a3:07:b7:a6:ca:
08:7b:12:ec:ea:91:b9:00:14:c0:2b:83:8f:ff:61:
8c:6b:1c:7f:df:4e:b3:f6:0e:0b:dc:92:a7:03:95:
66:6c:87:22:67:c8:c1:a5:0c:2f:99:66:ac:9d:f7:
42:2c:ad:6c:7f:52:f8:a7:9c:8a:4c:0b:5d:6a:7c:
27:bc:96:ee:cc:30:8f:e9:3a:c4:95:54:cc:a3:5b:
f4:6d:1c:af:6e:d0:bc:97:15:2f:c1:a1:41:34:56:
99:57:e5:71:5e:50:fa:b3:9d:d5:a3:6c:40:35:9d:
a3:ac:48:6f:56:1b:32:0b:54:18:23:2e:52:72:88:
4d:16:81:d9:99:df:53:51:a8:45:21:24:7c:1f:ab:
88:16:1a:76:03:30:9b:5b:7c:de:fd:41:2f:64:a5:
ae:e4:8c:56:08:84:87:2b:34:2e:c5:39:a7:90:1e:
58:c6:55:88:8f:a7:6c:6e:6b:a3:0d:6d:56:05:32:
d4:e7:04:0d:32:24:88:40:1e:9a:1d:2e:64:c6:0e:
23:07:d1:d4:34:e7:94:0d:24:86:88:21:72:31:e0:
7d:ff:0f:3a:87:c1:fb:a7:fa:ec:bc:b9:37:ba:1f:
b3:02:69:53:db:0d:d0:05:5f:45:31:b3:6d:c3:e3:
bd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:0F:7F:3C:FF:E6:6E:74:70:05:E3:9D:7D:4D:C0:3A:DD:65:21:43
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1w9_PP_mbnRwBeOdfU3AOt1lIUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
09:11:b1:83:f7:36:f9:e1:27:9d:80:71:da:85:c7:13:70:0d:
fe:6e:b6:30:88:5a:f0:09:03:00:25:6e:de:39:1b:d5:d0:cc:
17:c8:75:ad:5d:34:5d:0f:cf:3e:b8:9d:b4:80:8c:a1:cf:9b:
da:8f:82:39:6f:9e:42:cb:16:ab:c9:6a:b3:f0:fc:95:d2:35:
2e:b1:52:52:4e:63:f6:7f:bf:fa:ed:5f:83:07:03:12:f8:00:
cc:1b:7c:85:85:ca:b6:8f:dd:dc:70:58:a3:ce:62:57:83:c8:
89:00:d2:fb:63:cc:fc:3f:a5:b6:09:c0:0b:14:22:cb:f4:3d:
8c:fc:20:1b:63:66:a4:06:03:a1:ff:72:40:b8:29:f0:ed:fd:
a5:09:0b:32:2c:f9:56:67:85:2e:29:9c:6a:92:e4:86:bb:a7:
75:c5:d8:08:24:52:9c:8a:33:79:73:47:b5:a1:cb:6d:8f:a7:
f5:cb:5c:81:a1:67:4e:d1:28:ac:ee:4a:ef:57:4f:46:17:74:
c0:25:51:2c:c0:9f:4e:49:da:09:bb:db:1e:7f:73:41:7a:f0:
38:73:b4:76:b8:c5:8a:a8:f8:aa:d4:da:e6:45:65:25:cb:bf:
ba:23:52:bf:3a:04:70:db:c8:a5:48:ab:8b:2c:62:c5:23:30:
76:83:0b:d1
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCgwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB
NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMTAyMDcw
NjM3NThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQ3MEY3RjNDRkZFNjZF
NzQ3MDA1RTM5RDdENERDMDNBREQ2NTIxNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfv8b69Yx1P3CjB7emygh7EuzqkbkAFMArg4//YYxrHH/fTrP2
DgvckqcDlWZshyJnyMGlDC+ZZqyd90IsrWx/UvinnIpMC11qfCe8lu7MMI/pOsSV
VMyjW/RtHK9u0LyXFS/BoUE0VplX5XFeUPqzndWjbEA1naOsSG9WGzILVBgjLlJy
iE0WgdmZ31NRqEUhJHwfq4gWGnYDMJtbfN79QS9kpa7kjFYIhIcrNC7FOaeQHljG
VYiPp2xua6MNbVYFMtTnBA0yJIhAHpodLmTGDiMH0dQ055QNJIaIIXIx4H3/DzqH
wfun+uy8uTe6H7MCaVPbDdAFX0Uxs23D472/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU1w9/PP/mbnRwBeOdfU3AOt1lIUMwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC
1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90
S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMXc5X1BQX21iblJ3QmVPZGZVM0FP
dDFsSVVNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN
BgkqhkiG9w0BAQsFAAOCAQEACRGxg/c2+eEnnYBx2oXHE3AN/m62MIha8AkDACVu
3jkb1dDMF8h1rV00XQ/PPridtICMoc+b2o+COW+eQssWq8lqs/D8ldI1LrFSUk5j
9n+/+u1fgwcDEvgAzBt8hYXKto/d3HBYo85iV4PIiQDS+2PM/D+ltgnACxQiy/Q9
jPwgG2NmpAYDof9yQLgp8O39pQkLMiz5VmeFLimcapLkhrundcXYCCRSnIozeXNH
taHLbY+n9ctcgaFnTtEorO5K71dPRhd0wCVRLMCfTknaCbvbHn9zQXrwOHO0drjF
iqj4qtTa5kVlJcu/uiNSvzoEcNvIpUiriyxixSMwdoML0Q==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:21:59 2025 by rpki-client