Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/zfg162eOICKoMqsJFTDVcKJ7Gn4.roa
File: zfg162eOICKoMqsJFTDVcKJ7Gn4.roa (raw, json)
Hash identifier: 26fZaQZUXTWim23fSCffFkRscfr4JQRdUmnCKDbrsRE=
Subject key identifier: CD:F8:35:EB:67:8E:20:22:A8:32:AB:09:15:30:D5:70:A2:7B:1A:7E
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5986
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/zfg162eOICKoMqsJFTDVcKJ7Gn4.roa
Signing time: Mon 10 Feb 2025 14:10:35 +0000
ROA not before: Mon 10 Feb 2025 14:10:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 103.46.188.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22918 (0x5986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Feb 10 14:10:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CDF835EB678E2022A832AB091530D570A27B1A7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:ae:fa:6f:a9:75:b3:cf:b9:06:df:b6:76:
19:5a:ae:ef:0f:68:25:4a:6c:d2:24:0e:fe:0e:9d:
2d:a7:08:a6:0d:b3:f4:5d:60:59:62:6c:d7:da:60:
91:64:2b:2f:7a:14:48:51:56:44:82:c2:45:5b:b5:
f7:ea:34:c6:38:fc:e1:fc:a1:ac:e4:2e:ce:85:df:
f7:53:04:4e:9e:ab:47:b7:c1:17:f5:91:1c:16:8f:
6a:c0:e8:c1:58:3f:b7:3e:0d:52:d8:d4:d2:db:2c:
78:11:0e:9f:cd:c2:07:2f:d4:6c:c9:76:a3:1e:9b:
f5:37:7a:31:ee:04:61:18:50:dd:60:dc:62:a6:13:
20:62:1d:ff:cc:24:7a:13:e8:30:91:74:17:7c:6b:
6e:c9:55:c0:99:f3:b9:ce:4f:52:f8:23:8f:cf:39:
fa:cb:24:29:11:4c:da:3e:b8:11:f2:0b:b2:3e:d1:
9f:69:42:3a:bf:13:a6:ca:3f:1c:89:f9:b9:6d:a2:
35:ee:f2:39:bd:fc:e7:52:07:ad:e7:96:d9:57:8b:
d4:c4:91:1e:b6:6e:fb:b8:0c:b0:66:83:c6:1f:62:
4c:0c:ce:4f:60:b5:53:81:8e:b9:ea:ed:d9:a1:88:
a9:dc:b4:ae:7d:12:ba:22:94:59:a5:ec:ba:d1:13:
79:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F8:35:EB:67:8E:20:22:A8:32:AB:09:15:30:D5:70:A2:7B:1A:7E
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/zfg162eOICKoMqsJFTDVcKJ7Gn4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.46.188.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:69:3f:a5:57:d3:fc:63:c2:b3:72:57:5e:23:57:11:62:da:
ec:45:98:e9:97:5b:03:d3:bb:20:17:4c:60:a0:a4:4b:ff:42:
89:9e:e0:9f:0d:28:96:68:3c:18:da:49:ec:85:cf:5f:8a:da:
d7:8d:e4:d1:d0:96:0e:f9:ea:08:de:b7:ee:8f:82:82:ae:ba:
dc:7c:90:e3:b1:2b:29:db:e4:35:14:ea:8e:64:23:c4:4d:37:
9d:4c:f9:ae:9f:bb:41:2e:44:bf:5f:ae:c0:53:bd:79:18:46:
82:61:3c:3b:2b:e9:1b:34:7c:3f:9f:9a:99:fe:72:c3:2c:2d:
52:8c:40:d9:ed:0c:fe:ce:01:84:fb:f4:8a:85:e9:66:c5:ff:
d8:02:f8:44:c7:93:1f:16:03:e4:11:de:a3:fe:c1:a2:70:f0:
62:52:ff:65:92:c3:fb:2e:f0:3a:d5:3c:fb:39:cc:42:1d:d3:
15:50:4d:0c:74:b2:7b:ab:7e:e9:bd:c5:aa:11:5f:ad:b9:2b:
68:30:9b:46:cb:37:8b:fb:72:02:d5:f3:9a:e0:91:15:22:6b:
1e:85:e2:9f:35:5c:6f:3d:52:e1:9e:b8:a6:03:68:01:76:6b:
f1:61:b6:ec:5c:40:33:30:88:98:c8:1a:8b:6e:0f:9d:d5:cc:
3e:eb:74:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:18:17 2025 by rpki-client