Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/lAl48-BQSuSkd7yjNqf77v-ww74.roa
File: lAl48-BQSuSkd7yjNqf77v-ww74.roa (raw, json)
Hash identifier: 6hNc1C+QfzBiddGSkftTqfA3tBu6Bp+kwIzTXmuETow=
Subject key identifier: 94:09:78:F3:E0:50:4A:E4:A4:77:BC:A3:36:A7:FB:EE:FF:B0:C3:BE
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5988
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/lAl48-BQSuSkd7yjNqf77v-ww74.roa
Signing time: Mon 10 Feb 2025 14:10:36 +0000
ROA not before: Mon 10 Feb 2025 14:10:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 43.227.26.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22920 (0x5988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Feb 10 14:10:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=940978F3E0504AE4A477BCA336A7FBEEFFB0C3BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:1a:91:16:55:eb:91:30:23:b2:94:5e:68:
6c:c1:99:c4:86:d7:dd:e8:34:81:ba:11:f7:f6:b0:
4a:fc:9e:8d:ea:c7:9d:93:fd:43:3c:39:77:7e:5e:
41:89:9f:f9:4a:0a:bd:91:2e:b3:4d:2f:b0:7d:cd:
42:aa:3b:69:1b:88:5e:f5:54:dc:72:38:8b:a6:2d:
df:e1:a6:25:91:20:d1:0e:55:77:f7:47:63:18:ad:
5b:0b:5a:39:04:3c:28:90:ed:63:34:4d:c2:92:8d:
2f:b4:95:a3:cd:02:b2:e1:24:8c:db:31:52:54:26:
f2:95:2a:50:fa:bb:0b:0f:eb:b8:78:de:bd:d9:7a:
88:ea:d3:93:db:36:cc:0d:93:71:43:3e:b9:ed:73:
72:f0:d7:53:7e:04:cb:34:8d:8e:63:0c:47:69:c4:
a1:15:ed:66:b4:9d:44:db:44:a7:d3:01:ad:90:ba:
f6:3e:4b:11:6e:e6:43:77:82:99:ad:d9:3b:5f:f4:
be:c1:e0:b8:ab:f7:76:95:98:14:11:3c:80:e2:6d:
47:df:e2:8e:13:7c:37:3f:83:bd:bd:71:02:fb:b9:
d6:07:dd:46:a2:0c:f7:c4:1b:dc:79:c3:53:4a:84:
94:89:be:88:72:c8:85:cc:2a:7f:ff:07:04:f4:79:
fb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:09:78:F3:E0:50:4A:E4:A4:77:BC:A3:36:A7:FB:EE:FF:B0:C3:BE
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/lAl48-BQSuSkd7yjNqf77v-ww74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.227.26.0/23
Signature Algorithm: sha256WithRSAEncryption
15:82:13:ae:9a:61:18:23:ff:b0:6c:4c:cc:1a:ca:22:94:a4:
94:df:a1:73:e7:4d:a6:6f:39:67:3b:d1:af:1b:f6:da:db:60:
70:bd:91:c1:03:c7:d4:92:01:d4:e3:47:fd:84:b1:2f:c2:99:
5e:8b:af:c2:c0:3d:4f:fa:60:b5:d2:be:72:a7:64:73:c1:86:
13:9f:2f:45:62:81:4c:1c:e2:c0:50:7b:33:ad:f6:f2:51:26:
0b:1d:10:b8:1f:98:bb:f3:54:08:28:6b:bf:30:3c:5e:80:b7:
ce:15:48:f6:29:fa:d4:bc:31:ca:78:7f:3d:88:56:d4:d4:ce:
08:92:74:1b:93:25:cb:70:9d:bb:48:e4:9c:83:13:eb:23:ef:
35:dc:cb:d7:9b:ce:37:de:32:21:ae:cd:da:bc:10:75:1a:18:
97:7e:98:75:86:af:1d:6d:4b:70:b1:67:db:0b:dd:84:37:c7:
48:db:cf:15:33:6d:20:11:e9:f9:5b:b0:bd:85:a2:49:5d:d2:
02:3a:14:71:8e:ff:68:cd:2e:a4:35:de:38:ad:83:30:3a:58:
70:9a:b2:30:21:44:ac:01:92:6b:cb:de:8d:7e:95:c7:03:11:
fd:6e:8e:76:c3:e4:a2:86:51:16:f5:6a:17:ff:4c:a1:34:bb:
e8:17:80:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:23 2025 by rpki-client