Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6meQZr9r5OWp7DmzaBTyclNXllk.roa
File: 6meQZr9r5OWp7DmzaBTyclNXllk.roa (raw, json)
Hash identifier: RARCL6KKL3gr5nPDUQBBPlQsVr7f7YmfzYEFIxnTqmc=
Subject key identifier: EA:67:90:66:BF:6B:E4:E5:A9:EC:39:B3:68:14:F2:72:53:57:96:59
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0C6F
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6meQZr9r5OWp7DmzaBTyclNXllk.roa
Signing time: Thu 15 Sep 2022 02:43:19 +0000
ROA not before: Thu 15 Sep 2022 02:43:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 15 02:43:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EA679066BF6BE4E5A9EC39B36814F27253579659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e2:0a:c3:dc:9f:18:ce:a6:a3:2f:8d:dc:9f:
66:79:4f:ba:db:5b:be:2c:da:2a:58:02:77:4b:85:
ef:01:c6:7e:e8:a8:37:3d:3b:00:b5:01:ca:c3:ca:
84:3e:4d:dc:d6:ce:f0:c4:e9:f0:9d:f4:0d:ca:b3:
34:6f:de:f4:86:4e:77:e7:ee:b8:e4:6c:08:90:aa:
82:d0:9d:d2:5f:a8:2d:d2:db:38:8a:73:5e:60:72:
09:8b:a1:93:2a:c6:19:27:e8:22:83:db:77:90:33:
d6:59:59:d1:5f:c7:f4:87:38:52:37:9a:93:04:3c:
85:03:ab:cb:9e:aa:da:d6:15:19:44:0e:b0:8b:d6:
ac:3c:17:8d:d1:10:09:fd:e0:4d:62:7d:79:bb:a7:
ed:27:a0:c7:9c:2c:89:aa:c3:6e:d6:12:86:0e:53:
65:49:1d:c8:3c:ca:44:46:2e:ff:04:db:64:56:7c:
9f:89:ba:4a:06:fb:83:4a:86:51:12:de:da:46:b3:
3e:fe:39:43:e7:5c:4d:90:1b:61:d6:72:39:1b:ba:
f7:3c:11:df:9b:a1:53:0c:cf:fa:76:dc:1c:0c:9f:
a6:d2:21:93:56:c4:70:21:52:98:f4:82:ee:60:83:
5e:71:63:b5:79:09:d4:aa:da:ad:ac:d8:d5:7a:98:
03:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:67:90:66:BF:6B:E4:E5:A9:EC:39:B3:68:14:F2:72:53:57:96:59
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6meQZr9r5OWp7DmzaBTyclNXllk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
40:1e:f2:f7:50:61:98:f1:d4:41:3f:36:11:eb:7f:b5:18:1e:
2b:4f:64:0b:ae:9a:cd:21:77:54:18:88:44:fa:15:e3:d8:9e:
7c:ab:18:8a:3c:bb:9f:95:50:af:72:c0:8f:37:3d:db:cf:8c:
49:e6:1e:be:37:46:6c:12:59:31:57:a9:a9:92:91:ea:7f:6a:
48:21:d9:bb:b6:5f:13:7c:b1:f0:e6:bb:ed:a3:6e:2c:8b:09:
50:bd:75:e3:4e:a8:5a:c2:27:25:be:5e:98:c5:90:74:37:89:
31:30:e5:e9:88:47:07:c0:f3:d0:53:ef:0d:16:25:6a:21:42:
46:38:7c:7f:40:d7:8f:f4:80:df:e8:43:26:54:d7:4f:6b:e2:
f5:a6:f1:47:93:07:36:e9:ff:b1:9e:db:de:66:85:3c:61:d9:
6d:ad:18:da:92:78:cf:7f:a1:a0:40:cd:6d:52:93:a5:9c:1a:
4c:16:46:b5:16:41:8a:da:7d:e3:72:a9:c1:ef:58:a3:11:46:
6f:a3:53:62:71:91:d0:8d:c6:56:92:56:63:06:51:09:4c:43:
1c:96:46:7f:cb:84:53:88:68:ac:7d:d4:4e:bc:6e:b2:f2:50:
a0:d7:78:f0:22:72:b0:65:33:4f:be:6e:dc:a7:29:9e:bc:c9:
fe:45:2f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:39:08 2025 by rpki-client