Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/AcPLINHU0NWVVpnIaqxMdyt8hPw.roa
File: AcPLINHU0NWVVpnIaqxMdyt8hPw.roa (raw, json)
Hash identifier: TGD1JT0OmtjXuFr6GkQmJSzFWMnht7S+TZFXd5wO2tg=
Subject key identifier: 01:C3:CB:20:D1:D4:D0:D5:95:56:99:C8:6A:AC:4C:77:2B:7C:84:FC
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0F74
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AcPLINHU0NWVVpnIaqxMdyt8hPw.roa
Signing time: Mon 10 Feb 2025 14:08:06 +0000
ROA not before: Mon 10 Feb 2025 14:08:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 192.72.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3956 (0xf74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 10 14:08:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=01C3CB20D1D4D0D5955699C86AAC4C772B7C84FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a6:5b:85:9b:f5:a4:27:c7:d8:d2:32:14:73:
fa:46:cd:2e:f1:73:83:0e:a5:bf:55:40:0e:b4:74:
10:e8:2b:eb:ac:e3:7c:c8:35:17:29:b1:a7:f5:e6:
3c:b0:5e:ad:2d:78:76:9c:55:e6:fa:99:f2:cf:40:
16:89:13:98:27:7b:62:6d:1a:31:8e:90:8b:b0:bc:
61:41:c5:63:7c:89:5b:ae:2f:b7:99:fe:12:2d:93:
45:3e:12:1c:0e:b0:34:c9:f7:66:de:07:4b:36:32:
a3:d3:38:c0:cd:4c:97:cd:20:2e:e8:e8:a2:f1:6e:
42:0f:50:0b:c9:94:83:43:c6:c9:70:fe:6c:cd:23:
70:1a:4b:28:16:8f:97:ce:88:3e:bd:f7:d4:99:c4:
f2:6f:be:54:2b:70:89:cf:ba:75:8f:12:c3:91:e6:
f2:d0:0a:ba:68:48:b2:b2:32:5b:0c:ef:e5:7c:8e:
1a:7b:93:95:4d:52:d8:06:a9:d4:8b:33:5b:28:1c:
e1:01:28:54:a5:29:be:f7:55:9a:2a:0e:65:7d:bd:
ed:c8:9f:f4:8a:90:f6:30:7d:2f:8a:de:e0:e8:15:
d5:fc:8a:9c:1c:1f:8b:e8:f1:45:2c:db:d6:a3:21:
c2:ab:8a:0c:d7:2c:6e:42:aa:a3:29:d3:d1:67:fe:
cc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C3:CB:20:D1:D4:D0:D5:95:56:99:C8:6A:AC:4C:77:2B:7C:84:FC
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AcPLINHU0NWVVpnIaqxMdyt8hPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.4.0/22
Signature Algorithm: sha256WithRSAEncryption
54:92:44:6c:39:ab:0d:b8:20:20:fb:c1:a8:c2:a6:3a:ca:82:
90:61:52:fd:7e:f0:30:07:94:2c:d4:35:d2:9a:56:08:d2:91:
53:de:19:9d:5e:fc:4b:71:01:0b:32:b1:a0:6e:da:35:af:95:
fd:28:7c:02:0b:a1:0c:b3:57:2a:78:4c:b8:17:fb:0e:99:a8:
83:a1:0f:e3:56:09:63:16:03:9a:9c:eb:09:c7:a2:3e:2d:c9:
55:cd:5c:1b:50:5a:25:82:08:40:f6:17:f3:0e:fd:b1:a6:45:
3e:17:72:3f:f4:de:8f:16:3c:c4:80:d6:11:93:5c:ae:a3:91:
5f:a6:22:73:e2:ff:d0:87:5b:c1:cb:a8:45:21:3a:eb:00:b9:
27:c1:f8:b8:b4:5b:34:d7:bc:72:08:99:43:64:73:87:08:db:
44:f9:20:22:88:ac:7c:6e:40:5f:b9:5d:78:ae:f8:0e:47:9c:
5f:18:51:70:4c:c5:18:79:44:fb:8e:41:fd:b8:e0:85:b2:eb:
9d:8b:e3:da:49:f4:0d:18:38:60:40:de:52:02:74:53:f7:b8:
8a:17:b7:25:4a:f2:97:4b:0a:81:79:29:0b:40:bc:dd:4e:11:
b1:d5:4f:89:a0:c6:aa:53:3f:e1:86:b1:53:f3:09:b5:08:a2:
5d:f2:5b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:01:22 2025 by rpki-client