Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vIZRdbZtyiH0Q8YHakndmIT-UTE.roa
File: vIZRdbZtyiH0Q8YHakndmIT-UTE.roa (raw, json)
Hash identifier: 58Jrbiu9GvQCu32V4isx+WAldZGHSwLgutccuRKQ4nI=
Subject key identifier: BC:86:51:75:B6:6D:CA:21:F4:43:C6:07:6A:49:DD:98:84:FE:51:31
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0F5D
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vIZRdbZtyiH0Q8YHakndmIT-UTE.roa
Signing time: Mon 10 Feb 2025 14:08:00 +0000
ROA not before: Mon 10 Feb 2025 14:08:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3933 (0xf5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 10 14:08:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BC865175B66DCA21F443C6076A49DD9884FE5131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:81:17:53:df:85:d5:84:dd:44:90:b2:9b:8b:
3a:d8:da:4f:84:1e:db:a1:c0:a2:aa:84:ed:87:31:
ec:4e:9f:19:25:b5:58:7c:07:6c:ce:86:3e:73:d2:
c2:c6:e7:31:7f:fa:99:1d:12:c5:c9:99:7a:12:bd:
ca:3f:eb:ed:54:49:11:99:c4:22:d7:f0:3e:38:58:
7b:74:c7:15:e0:08:f2:c0:9e:9d:c5:d5:24:bc:1e:
a2:6b:2b:f6:88:67:dc:72:db:58:1b:4b:38:ec:62:
8f:88:81:de:e3:92:a1:99:ff:ed:3e:e1:9e:06:74:
b8:fc:f7:c4:ee:38:30:25:4c:0c:da:07:bb:42:77:
a6:2b:62:37:13:74:ee:71:90:a4:2c:6f:e5:ab:07:
2b:91:a6:ec:ab:66:78:58:a2:cd:77:4e:35:c8:b4:
b6:75:7a:2e:60:22:94:62:e8:d4:d0:aa:6a:f8:76:
e4:8b:1c:62:93:a5:84:8e:1c:d6:f8:d8:c4:24:c9:
a0:d3:5a:a5:ae:50:37:ea:77:78:f8:5e:2a:63:df:
5c:9f:ce:c0:e9:6e:37:a7:5f:d8:23:53:5f:e5:ea:
0b:0d:56:d5:95:7d:1d:5b:0f:5a:54:82:50:d9:df:
71:ab:4c:bb:4f:c6:3e:36:4b:c1:05:b8:f9:e8:76:
07:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:86:51:75:B6:6D:CA:21:F4:43:C6:07:6A:49:DD:98:84:FE:51:31
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vIZRdbZtyiH0Q8YHakndmIT-UTE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
18:da:d8:14:99:45:25:f2:25:11:8a:cd:43:31:1d:ee:01:bc:
be:60:61:ab:db:dd:39:2d:cf:f3:97:31:5e:1f:c4:d3:a6:b9:
ae:89:45:00:d5:a2:ad:23:be:52:bb:9a:c1:94:e9:0c:80:dc:
94:01:14:75:05:60:61:d0:93:da:5b:a1:97:0d:a5:78:4b:77:
b3:9b:fb:be:d8:85:90:74:f5:f6:96:6e:2d:d1:cb:3d:4f:e8:
2a:79:eb:50:75:da:1d:69:c2:eb:88:a7:fd:a3:c9:51:db:b0:
3f:6a:4c:21:88:7b:96:96:7e:66:3e:5f:47:3a:cd:95:28:20:
72:83:e3:a7:be:90:a9:64:3f:35:47:a6:36:6c:9a:63:e6:9d:
10:e1:2c:db:78:b8:f6:48:d6:f1:35:90:12:78:31:24:e0:08:
32:4e:67:69:67:16:3e:8e:3c:77:7c:ba:f4:a1:85:4d:a6:de:
ad:f6:5d:b0:60:d6:2a:52:83:be:df:4b:f1:64:0a:0a:b9:a9:
75:e6:bd:a0:c3:e7:c9:59:15:10:03:ee:ee:b9:a5:e0:a4:f5:
f3:30:98:0a:a9:7a:8c:00:bb:4e:26:c3:95:f0:e5:29:39:e1:
a7:f8:47:d9:9d:b6:de:d2:9b:32:93:64:42:87:68:29:51:29:
de:63:a8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:06:23 2025 by rpki-client