Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/atw9IRYDyGoKtE2P0AuRs7sUE84.roa
File: atw9IRYDyGoKtE2P0AuRs7sUE84.roa (raw, json)
Hash identifier: 12H6ffsztQGg/Fw+6Q7bNESogaNm1ojZihhkOH1zSLA=
Subject key identifier: 6A:DC:3D:21:16:03:C8:6A:0A:B4:4D:8F:D0:0B:91:B3:BB:14:13:CE
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0F63
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/atw9IRYDyGoKtE2P0AuRs7sUE84.roa
Signing time: Mon 10 Feb 2025 14:08:01 +0000
ROA not before: Mon 10 Feb 2025 14:08:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 192.72.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 10 14:08:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6ADC3D211603C86A0AB44D8FD00B91B3BB1413CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:92:27:e9:4c:98:fc:53:16:a2:bb:26:32:08:
75:7d:a3:12:36:0f:a5:81:d4:07:a8:5b:5b:e8:11:
96:5b:49:a7:fb:04:df:2f:d9:41:fc:04:be:6e:e6:
95:66:c3:5e:84:86:fa:b4:a5:84:e7:be:ee:6a:e0:
a7:fb:a6:55:60:b5:b6:69:c0:d6:22:3d:b5:57:93:
fe:57:55:ab:96:04:db:34:ff:6f:9c:56:12:8c:15:
ae:46:ed:c0:74:87:9d:12:a2:cb:2b:92:79:77:e6:
8f:a3:a5:92:3c:26:39:f8:92:9e:06:f0:02:37:6c:
fb:d9:ce:de:d4:79:3f:cf:2e:38:bf:15:db:38:bb:
a2:a9:82:68:8f:8a:6e:10:31:0e:e7:b0:e9:33:c2:
81:a3:f8:83:97:d6:96:d2:4c:35:02:75:8e:4e:31:
72:9a:2f:65:74:eb:cd:fd:8f:0e:5a:d5:01:2e:a0:
f8:94:b3:e4:bc:7a:c4:78:c1:84:08:ba:94:44:d6:
a2:b9:4a:a0:05:e3:82:92:98:b1:cd:12:6b:41:5d:
5c:0a:22:22:24:74:be:db:4d:c1:e5:fc:51:42:3f:
f8:33:66:28:db:87:cb:15:ba:83:f7:88:51:01:10:
ef:f5:ce:11:94:71:4a:97:7e:96:33:31:2e:dc:36:
39:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DC:3D:21:16:03:C8:6A:0A:B4:4D:8F:D0:0B:91:B3:BB:14:13:CE
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/atw9IRYDyGoKtE2P0AuRs7sUE84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.32.0/19
Signature Algorithm: sha256WithRSAEncryption
12:16:2e:5c:65:a1:66:14:2f:7d:43:e8:24:19:35:40:6c:46:
c2:18:4e:ea:71:66:e8:6d:2b:59:4d:bb:50:b8:af:f6:7f:51:
43:c6:bd:3f:32:aa:f5:76:4d:5f:33:18:d2:d8:00:2a:ea:8d:
e3:ff:15:05:73:94:3c:3e:82:af:f1:0f:b2:0e:11:2f:0e:7b:
49:c7:74:a7:1d:fb:dd:7c:e5:3a:a6:1f:6b:87:74:01:1b:70:
b0:86:e5:70:0a:d7:95:e1:dd:f9:7a:cd:f5:ac:b3:5d:42:37:
79:d1:a5:59:01:cb:5d:63:4e:91:3d:bf:98:99:2a:58:db:23:
4b:a5:5e:3b:29:fa:da:6c:e1:00:af:6d:57:5b:e7:f1:fd:22:
29:ac:82:da:e7:28:fc:7a:af:c6:c0:08:da:b9:1b:4a:a5:9e:
a2:19:84:e7:66:ac:31:35:ff:fc:ac:9f:3c:a9:56:43:0f:76:
87:df:b9:9f:46:7f:ce:9c:18:a5:e7:16:f1:89:62:be:1a:f3:
96:72:3e:06:29:e2:53:79:e7:cc:93:70:a3:40:4e:1d:dd:54:
75:c4:dd:65:5b:3d:ca:66:7c:64:8f:89:d2:06:8c:4c:c0:0e:
c3:6c:f9:09:e3:81:fc:ba:29:fe:40:04:7d:cd:aa:ff:2a:17:
0f:ef:34:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:29 2025 by rpki-client