Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/nPLcfy3x_oJJp7_COxMdp2_Ttto.roa
File: nPLcfy3x_oJJp7_COxMdp2_Ttto.roa (raw, json)
Hash identifier: XYsrMibXfr8HO0eHDhflQT1ZotB5M4Mim1bU/VX4pHg=
Subject key identifier: 9C:F2:DC:7F:2D:F1:FE:82:49:A7:BF:C2:3B:13:1D:A7:6F:D3:B6:DA
Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Certificate serial: 0122
Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/nPLcfy3x_oJJp7_COxMdp2_Ttto.roa
Signing time: Sun 17 Nov 2024 13:31:09 +0000
ROA not before: Sun 17 Nov 2024 13:31:09 +0000
ROA not after: Tue 23 Sep 2025 15:30:20 +0000
asID: 152618
IP address blocks: 160.187.100.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290 (0x122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Validity
Not Before: Nov 17 13:31:09 2024 GMT
Not After : Sep 23 15:30:20 2025 GMT
Subject: CN=9CF2DC7F2DF1FE8249A7BFC23B131DA76FD3B6DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:b0:1c:30:62:a7:f2:85:2c:be:13:b7:07:
40:ee:46:f1:7e:04:ad:81:b1:69:5b:45:d5:c8:5d:
1f:ca:06:70:87:4e:0e:9b:26:e1:25:4e:bb:32:b3:
38:84:1f:d0:10:bb:48:55:99:61:e4:ba:bc:02:f0:
96:38:ae:72:b5:d7:0a:9a:04:17:b2:0b:32:e8:53:
b6:c9:39:c7:d1:53:46:05:a1:b8:f6:a6:8e:aa:d7:
ee:03:c7:8a:4d:99:30:62:08:1a:81:7c:80:63:79:
71:f3:39:c8:f8:04:59:5a:bf:dd:b8:74:22:3d:bf:
49:37:01:8c:52:76:74:e4:c7:29:7d:1a:e7:6c:33:
8c:b8:06:1b:53:05:31:62:99:8e:84:3f:b5:a7:bd:
13:41:09:5d:5b:eb:9a:61:8d:56:dd:e7:2e:d2:5b:
20:aa:aa:99:63:8b:06:b5:bc:9f:85:90:1a:74:64:
a9:37:7f:b3:b0:69:58:46:46:ab:a6:7b:23:38:34:
ff:6d:25:0a:6a:88:d0:6a:d5:9a:c6:37:69:75:3e:
2e:98:0c:3b:12:49:56:aa:3b:75:6e:c7:98:ab:0f:
6c:95:93:cf:90:1b:53:06:cc:e2:c2:58:2f:bf:b4:
eb:20:19:f8:5a:52:ca:c5:91:b5:e1:25:02:8b:5e:
e0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F2:DC:7F:2D:F1:FE:82:49:A7:BF:C2:3B:13:1D:A7:6F:D3:B6:DA
X509v3 Authority Key Identifier:
keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/nPLcfy3x_oJJp7_COxMdp2_Ttto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.100.0/23
Signature Algorithm: sha256WithRSAEncryption
05:77:e2:a2:64:26:4e:eb:a7:a9:31:5c:3b:4a:65:11:57:eb:
21:57:18:f3:3d:19:97:9c:b2:d3:06:75:86:26:cb:fb:ea:03:
cd:8c:a2:74:47:8e:76:56:b5:a9:f7:28:b6:26:ed:64:9f:6b:
37:16:b9:ea:bb:ac:84:67:7e:8a:22:c3:e0:46:e4:f2:d6:f5:
a8:cd:17:69:c4:b9:e3:ed:9f:84:ac:f6:83:fc:f8:04:3c:5e:
11:21:9e:fe:0f:a7:e9:10:f5:27:01:87:bd:03:cb:e8:87:a9:
79:35:a3:c0:51:df:b3:ca:4a:d5:70:cf:c9:73:02:c0:1a:46:
49:b5:eb:e8:9f:dd:ed:86:25:96:8e:17:2d:95:a5:5a:c3:54:
4c:4b:8c:81:f3:a5:a1:b5:1d:06:f5:cd:07:18:fa:dc:66:16:
39:ef:3e:8e:2d:c0:69:93:65:4d:95:a6:16:4c:13:9a:f7:1d:
2d:7a:a8:d2:9f:b6:81:cb:6b:04:cf:b1:c2:60:19:b8:fd:3d:
99:86:c0:86:04:db:ab:c9:c7:33:fa:e5:07:71:9b:ae:a8:2b:
cf:44:34:b9:6f:3a:34:dc:af:b6:b5:c6:82:02:06:94:d2:12:
9e:b1:b7:3c:d4:bc:79:44:fa:8f:fd:e4:a3:cc:e8:bf:83:8e:
f9:63:59:22
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 14 11:42:31 2025 by rpki-client