Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/lq0KsKq6EztXcJyCQ2cx0HJ4oRs.roa
File: lq0KsKq6EztXcJyCQ2cx0HJ4oRs.roa (raw, json)
Hash identifier: XyspOgAWmlnP+2uT5SokeDia/YVQEo+Vfoug601Fkkk=
Subject key identifier: 96:AD:0A:B0:AA:BA:13:3B:57:70:9C:82:43:67:31:D0:72:78:A1:1B
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CEA
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lq0KsKq6EztXcJyCQ2cx0HJ4oRs.roa
Signing time: Wed 01 Feb 2023 10:29:28 +0000
ROA not before: Wed 01 Feb 2023 10:29:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3306 (0xcea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:29:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96AD0AB0AABA133B57709C82436731D07278A11B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e8:b7:c6:0d:ae:47:e2:6e:a6:cf:8f:ee:53:
56:3b:df:c3:5d:7c:69:f4:ad:c8:26:2e:83:73:19:
74:2c:47:76:c0:3a:72:eb:dc:4a:e4:0a:c8:da:bc:
e8:93:bd:de:ce:57:8b:ef:46:fc:31:10:dd:fb:31:
7d:2f:39:b7:83:ac:a2:45:a0:93:a1:4f:0e:23:b8:
d1:ce:80:15:8c:16:62:9e:cd:60:2e:f6:01:67:a1:
75:1a:6b:58:36:16:81:ef:a4:52:59:59:3c:a1:fc:
21:a0:2d:e4:cd:99:cd:e0:05:00:85:78:20:cd:eb:
2a:b4:14:0f:85:9e:5a:89:5f:71:25:e1:1e:e9:4b:
d0:44:b5:40:cc:37:8b:ec:15:f8:d8:bf:d8:52:ff:
4f:c1:e9:12:64:bf:6d:97:c6:85:7e:32:d1:a2:70:
3f:95:b7:2c:92:d7:08:4b:2d:a3:ad:23:41:75:ae:
fa:a8:ef:14:7c:34:39:bb:fb:87:37:55:f6:df:5a:
b7:97:4d:c7:5c:96:7a:ba:58:d2:70:45:93:52:70:
9c:e0:0a:63:dc:28:e0:b3:98:3f:de:7a:b1:1a:ff:
4f:19:8c:be:87:45:e8:4d:36:e4:78:fd:42:ad:cd:
a6:12:35:fa:fd:22:95:8d:fb:cd:fd:ab:63:ce:5d:
f1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AD:0A:B0:AA:BA:13:3B:57:70:9C:82:43:67:31:D0:72:78:A1:1B
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/lq0KsKq6EztXcJyCQ2cx0HJ4oRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
aa:e4:48:91:7b:d8:bd:d2:a0:0a:4a:f0:a7:59:aa:63:93:dc:
2d:e3:0b:3f:6e:17:f9:8a:b0:a4:40:c1:4d:01:2f:02:18:3c:
d7:9d:b5:6d:3f:83:eb:9b:fc:7b:4d:96:17:02:23:0e:df:23:
83:fd:3d:ad:ad:5c:05:ec:37:8a:9e:c9:70:90:14:f6:d0:dd:
b0:94:ac:6e:c0:b7:80:b4:fd:65:2a:a7:af:cc:e2:f1:be:26:
93:ef:89:e6:41:af:cd:1d:1a:63:7b:82:37:d6:84:f1:32:12:
a5:77:63:70:d1:89:a3:80:4f:24:63:e9:7f:8e:0f:c3:6c:c8:
e2:07:7b:06:27:0c:2d:3c:a6:58:7d:f7:0f:74:d3:89:35:af:
33:8e:69:51:0c:be:ae:80:f3:f0:d1:70:22:64:60:82:10:d2:
52:cf:38:06:10:1c:a0:30:8f:2c:2f:96:82:c0:3f:7b:cf:a3:
a8:78:67:fa:6e:6b:7d:6b:27:48:76:af:fc:da:93:ce:d8:09:
b8:80:30:2d:00:ef:03:0f:56:47:6d:77:85:5c:c7:1f:e7:bf:
28:a4:a8:0e:db:91:50:28:2c:f4:d8:d9:62:c2:6d:60:2b:1b:
8f:57:63:84:e7:f2:36:e6:6d:9a:1d:19:db:49:7b:ed:bf:a2:
58:07:db:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:33:33 2025 by rpki-client