Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/az3BSCe7ZsGTD-uTFz-tisiDkT4.roa
File: az3BSCe7ZsGTD-uTFz-tisiDkT4.roa (raw, json)
Hash identifier: 4aM9tcwdSly7ivIZBxn7u/BptxfSdpYYUUhRq4PWSPk=
Subject key identifier: 6B:3D:C1:48:27:BB:66:C1:93:0F:EB:93:17:3F:AD:8A:C8:83:91:3E
Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA
Certificate serial: F6
Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/az3BSCe7ZsGTD-uTFz-tisiDkT4.roa
Signing time: Fri 22 Nov 2024 15:54:41 +0000
ROA not before: Fri 22 Nov 2024 15:54:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 16509
IP address blocks: 113.192.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246 (0xf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA
Validity
Not Before: Nov 22 15:54:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6B3DC14827BB66C1930FEB93173FAD8AC883913E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bb:41:22:38:c1:e4:80:e8:de:4d:92:87:05:
89:7c:1b:21:95:98:45:c7:4d:19:cd:91:4e:1a:36:
50:87:38:26:b7:d7:5e:46:ef:82:a1:23:37:4c:fe:
31:cb:0c:97:32:c3:29:93:f5:dc:84:ef:cb:28:93:
76:10:09:7d:b8:9e:a2:6e:78:f0:80:7c:b8:99:33:
1d:97:d8:6f:0a:85:67:f7:b4:f1:09:23:a8:8e:09:
83:6a:fd:9a:0e:e0:1f:97:38:80:ee:2a:57:99:d1:
d1:3c:3f:42:72:1e:e9:0d:e8:97:6f:49:8f:15:78:
4f:b3:75:4b:51:a9:e7:57:fe:69:31:0e:60:ea:b8:
62:76:6c:cb:49:30:ea:e2:6d:18:72:41:55:da:d9:
6e:8a:24:bd:14:5d:f8:e6:c3:c5:ac:0a:e2:05:c2:
6b:b9:d5:68:c3:b4:82:e8:89:f0:ed:e9:f7:ee:8b:
4a:b1:69:39:56:cc:f6:f8:ed:4c:ff:20:a7:8b:18:
07:c2:86:a3:4d:df:58:48:99:b9:dd:73:67:a5:0b:
7b:18:42:1d:d5:63:6b:76:d5:dd:79:dd:45:65:b4:
32:94:06:f2:87:04:4d:c2:41:d1:21:10:f6:5f:04:
46:b3:66:fe:9e:3d:00:f7:ea:4b:38:5d:b8:f2:24:
42:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3D:C1:48:27:BB:66:C1:93:0F:EB:93:17:3F:AD:8A:C8:83:91:3E
X509v3 Authority Key Identifier:
keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/az3BSCe7ZsGTD-uTFz-tisiDkT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.192.24.0/23
Signature Algorithm: sha256WithRSAEncryption
07:58:95:e2:0c:b6:fa:a2:69:ab:2c:ed:db:b6:d5:97:6f:ee:
5d:bb:d2:67:91:7e:1d:a3:60:0e:9b:44:c1:44:8a:a0:74:60:
9a:8b:4f:8e:20:2a:eb:ab:fa:b7:e4:a6:a9:1e:7b:57:83:bb:
d6:c6:7f:63:d0:5f:2b:3a:fe:11:bc:b1:2e:25:d0:6c:eb:b0:
32:c3:df:bd:19:67:08:a4:34:c0:ab:0d:38:a9:5a:d0:fa:e4:
1f:37:4a:7e:b8:43:97:9b:44:0d:d2:5e:d3:16:91:b3:b6:7a:
ef:80:77:ec:8b:4a:c8:58:95:31:4a:17:f4:f9:a2:3b:e3:3a:
61:38:0e:40:e0:c2:b3:21:5d:80:88:e4:e3:c3:8f:5d:64:1c:
48:f5:2f:4a:d1:1f:6e:f1:6e:5a:55:b7:21:a2:88:d5:52:b7:
14:59:ee:11:ee:82:44:c0:29:bb:aa:a8:c3:b5:1b:56:ec:85:
8b:2e:a4:d3:6f:d6:83:c4:5f:b9:81:ed:b6:c3:31:04:bc:ef:
ce:a9:2e:0e:3c:5f:ff:c6:98:89:6e:60:8c:de:bc:30:63:ab:
d8:fa:53:19:4a:62:da:ce:ba:f5:20:12:af:0a:83:5c:de:fd:
48:31:78:87:5d:b4:6a:f3:99:14:e1:41:80:6b:b5:f3:3e:2c:
f5:5b:32:5d
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y4
NEZBRUQ2Q0I0N0UxMTJGMjRDNkIwMjc3QTQ4NjIyNzA2NzJDQTAeFw0yNDExMjIx
NTU0NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCM0RDMTQ4MjdCQjY2
QzE5MzBGRUI5MzE3M0ZBRDhBQzg4MzkxM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCu0EiOMHkgOjeTZKHBYl8GyGVmEXHTRnNkU4aNlCHOCa3115G
74KhIzdM/jHLDJcywymT9dyE78sok3YQCX24nqJuePCAfLiZMx2X2G8KhWf3tPEJ
I6iOCYNq/ZoO4B+XOIDuKleZ0dE8P0JyHukN6JdvSY8VeE+zdUtRqedX/mkxDmDq
uGJ2bMtJMOribRhyQVXa2W6KJL0UXfjmw8WsCuIFwmu51WjDtILoifDt6ffui0qx
aTlWzPb47Uz/IKeLGAfChqNN31hImbndc2elC3sYQh3VY2t21d153UVltDKUBvKH
BE3CQdEhEPZfBEazZv6ePQD36ks4XbjyJEKRAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUaz3BSCe7ZsGTD+uTFz+tisiDkT4wHwYDVR0jBBgwFoAUP4T67Wy0fhEvJMaw
J3pIYicGcsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9T
VEVDSC9QNFQ2N1d5MGZoRXZKTWF3SjNwSVlpY0djc28uY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tST05PU1RFQ0gvYXozQlNDZTda
c0dURC11VEZ6LXRpc2lEa1Q0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAXHAGDANBgkqhkiG9w0BAQsFAAOCAQEAB1iV4gy2+qJpqyzt27bVl2/u
XbvSZ5F+HaNgDptEwUSKoHRgmotPjiAq66v6t+SmqR57V4O71sZ/Y9BfKzr+Ebyx
LiXQbOuwMsPfvRlnCKQ0wKsNOKla0PrkHzdKfrhDl5tEDdJe0xaRs7Z674B37ItK
yFiVMUoX9PmiO+M6YTgOQODCsyFdgIjk48OPXWQcSPUvStEfbvFuWlW3IaKI1VK3
FFnuEe6CRMApu6qow7UbVuyFiy6k02/Wg8RfuYHttsMxBLzvzqkuDjxf/8aYiW5g
jN68MGOr2PpTGUpi2s669SASrwqDXN79SDF4h120avOZFOFBgGu18z4s9VsyXQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:31:09 2025 by rpki-client