Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9k6qUIy-K5FcbrpVivxCiitUfec.roa
File: 9k6qUIy-K5FcbrpVivxCiitUfec.roa (raw, json)
Hash identifier: 31TGrAi9aB9mouNzIdzaL+IcSQuFl+XGXKs6ZwZlAsw=
Subject key identifier: F6:4E:AA:50:8C:BE:2B:91:5C:6E:BA:55:8A:FC:42:8A:2B:54:7D:E7
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0F6A
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9k6qUIy-K5FcbrpVivxCiitUfec.roa
Signing time: Mon 10 Feb 2025 14:08:03 +0000
ROA not before: Mon 10 Feb 2025 14:08:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 192.72.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3946 (0xf6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 10 14:08:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F64EAA508CBE2B915C6EBA558AFC428A2B547DE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:72:9d:e8:b1:d9:54:a4:81:4f:ef:4f:93:ee:
ab:ba:60:65:d1:78:01:12:5d:d2:51:bd:38:54:3f:
f0:68:63:c2:5e:e3:ef:97:fd:a1:a4:47:f6:b8:c4:
d5:e7:82:e1:37:ae:ca:f2:a0:49:dd:15:43:a8:e5:
b1:fe:cd:48:db:84:82:b4:3b:53:b8:88:dc:5d:3c:
cb:28:64:9e:9d:94:9e:42:5d:bc:27:f9:62:fd:cb:
43:e2:cf:a9:59:58:74:3b:80:71:31:69:9b:27:f6:
9f:3a:cd:64:fb:ff:27:ef:de:b3:a6:85:14:ce:ca:
08:4a:9c:48:df:d6:e7:50:3e:27:58:6b:d7:1f:10:
fe:ff:ad:72:f6:95:dc:f2:59:23:bd:54:cb:c5:ca:
cd:07:6d:c7:87:b3:dc:c2:f6:d5:85:44:90:a6:52:
4f:d1:62:85:de:db:73:89:7a:d3:64:f2:ba:d5:10:
9b:1f:45:58:68:b0:e3:05:69:22:a9:fc:f8:fd:74:
98:96:ee:5c:cf:a0:92:e7:12:ac:af:2c:49:da:4b:
e7:4e:e2:71:85:8f:68:7c:e1:8c:c0:fd:34:11:db:
76:2e:24:4b:f4:11:e5:ba:7b:62:c8:f4:76:ff:4d:
03:36:bd:f9:a4:54:39:fc:e0:40:d8:fa:81:31:b7:
d5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:4E:AA:50:8C:BE:2B:91:5C:6E:BA:55:8A:FC:42:8A:2B:54:7D:E7
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9k6qUIy-K5FcbrpVivxCiitUfec.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.248.0/22
Signature Algorithm: sha256WithRSAEncryption
36:cf:58:18:d6:d7:3a:c3:55:26:48:1e:4f:f8:6c:43:26:e0:
2b:d1:3e:f2:a8:a0:c2:f3:c2:0c:8f:18:2c:77:d6:42:eb:7b:
2b:c3:f9:90:30:67:50:ff:f6:e3:05:80:a9:ac:f3:41:1c:1b:
c1:f6:d8:d6:4b:f6:35:d1:17:31:03:17:6a:9f:65:5e:bb:c0:
73:c8:c8:ac:8a:94:16:cf:92:d8:ba:0e:51:c2:79:0d:2a:7c:
60:0c:25:61:ad:21:37:f4:02:a7:b6:97:97:6e:73:2b:23:72:
2e:ed:db:06:09:4b:3c:67:f9:68:a1:7d:f1:ed:e4:b1:44:aa:
5d:7e:9f:47:fd:36:db:ac:b7:0b:cc:2c:0d:78:90:ff:35:ea:
d8:e3:0c:c1:8a:54:59:37:1d:8e:df:98:85:ad:b9:56:39:ce:
6b:31:16:0e:d7:76:5a:22:30:99:db:87:29:8c:76:20:47:ad:
64:12:de:5a:fb:0b:50:62:9d:7c:4e:d4:2b:84:c3:84:0a:3a:
c1:28:c7:2d:15:09:ed:12:51:24:e5:c5:88:b1:68:af:bc:17:
cd:05:4c:71:c7:2d:59:84:ec:98:e1:9b:35:07:46:98:4b:b8:
c8:3a:7d:61:98:db:99:b7:6e:c0:09:93:73:03:aa:0e:df:ac:
67:80:31:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:39:05 2025 by rpki-client