Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xfV1b12RO5UrUseqwjU8L9cMokw.roa
File: xfV1b12RO5UrUseqwjU8L9cMokw.roa (raw, json)
Hash identifier: vff5szrdbQe+8n3p0zSOS5AjlqClA4bPofVtCJft8Bc=
Subject key identifier: C5:F5:75:6F:5D:91:3B:95:2B:52:C7:AA:C2:35:3C:2F:D7:0C:A2:4C
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0F69
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xfV1b12RO5UrUseqwjU8L9cMokw.roa
Signing time: Mon 10 Feb 2025 14:08:02 +0000
ROA not before: Mon 10 Feb 2025 14:08:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 192.72.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3945 (0xf69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 10 14:08:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C5F5756F5D913B952B52C7AAC2353C2FD70CA24C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d0:b7:90:8c:39:15:42:a6:8d:7a:d6:94:3d:
b8:d3:29:c0:a2:ca:af:0e:33:c4:01:dc:71:b1:0e:
ab:52:35:04:52:4a:68:3a:9c:9b:6f:d5:a8:f6:3a:
cd:a8:b9:e3:d9:40:4a:76:4b:d1:03:85:75:c3:91:
ac:e0:8e:21:44:cf:17:27:fe:3e:57:77:62:fa:ef:
ed:9d:eb:6e:37:bc:a1:af:7f:7b:5d:c9:bf:9f:0c:
73:1e:15:ed:c0:2d:4d:9d:65:60:10:d1:11:11:d5:
cb:e4:a3:ed:b8:0b:ef:f9:f3:0c:dd:6f:f5:85:af:
8f:81:a4:d3:7e:10:94:43:4d:fe:17:3c:6e:9c:fa:
02:32:c1:7c:7a:74:e7:af:96:95:75:6f:03:70:b2:
6b:2d:03:b0:f4:d0:42:a8:84:ea:d0:23:4a:35:43:
03:f7:ac:21:ef:59:fa:55:12:a4:9e:17:c1:64:d3:
ac:cd:61:14:c2:4e:e2:be:2b:e6:22:98:65:45:cc:
4f:cc:8d:c0:f1:50:56:f1:30:39:a0:5e:e0:24:af:
40:23:55:7d:41:f5:e5:f1:70:6c:8e:aa:1f:1b:c2:
d8:3c:d5:30:bf:e9:da:9b:62:51:c6:2d:eb:ee:ce:
cd:2f:0b:e7:7e:8d:d9:89:37:32:a7:a6:24:7a:6b:
13:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F5:75:6F:5D:91:3B:95:2B:52:C7:AA:C2:35:3C:2F:D7:0C:A2:4C
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xfV1b12RO5UrUseqwjU8L9cMokw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.252.0/24
Signature Algorithm: sha256WithRSAEncryption
96:7b:88:9e:1c:4d:36:7c:4d:99:27:4d:59:39:db:2d:10:58:
c6:37:5b:59:c8:f0:87:17:b7:ec:60:ab:ca:98:48:00:8e:10:
86:42:f6:c2:7f:03:74:48:17:be:25:bb:8a:db:a1:5c:72:eb:
a0:b9:8a:d9:cf:d9:a3:14:e5:5f:42:1a:95:4f:a0:ce:ce:a0:
3b:25:ab:99:75:b0:a4:bb:e6:3b:d7:23:9c:29:01:8d:16:23:
50:2a:af:2a:de:fc:de:65:c4:2f:7f:ae:a9:08:fc:cc:1d:40:
56:f5:14:49:a0:2d:2b:84:f6:f8:4e:4c:54:93:e4:d6:8d:b9:
85:69:e7:1a:d1:cd:89:51:a6:08:43:9e:3b:f1:7e:3b:33:47:
4e:0e:6f:21:cb:33:69:c2:7a:e6:ff:05:5f:72:67:66:44:f3:
34:75:f9:1a:c8:7b:01:6b:76:44:73:69:02:57:31:ed:a3:57:
32:be:76:13:25:4e:a6:57:9a:67:c2:d0:7c:d6:e8:9d:f0:cf:
c4:22:54:d0:f4:0e:c7:3c:68:cb:44:44:3a:86:44:af:e1:ad:
a6:cd:1b:92:2a:11:50:ee:4b:9b:c5:0d:b2:0b:9d:fd:ae:42:
4f:84:a9:d5:1b:6f:6b:29:9b:af:0c:09:cf:ff:e3:ae:88:aa:
fd:3f:19:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:12 2025 by rpki-client