Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TTiz9UaPgKVOETFOKrGTb-r2azs.roa
File: TTiz9UaPgKVOETFOKrGTb-r2azs.roa (raw, json)
Hash identifier: fuwiYvLZh3Kik8ffbss8bUFNmDxTKwmFObh6mWlWlHs=
Subject key identifier: 4D:38:B3:F5:46:8F:80:A5:4E:11:31:4E:2A:B1:93:6F:EA:F6:6B:3B
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 106A
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TTiz9UaPgKVOETFOKrGTb-r2azs.roa
Signing time: Fri 22 Aug 2025 08:54:13 +0000
ROA not before: Fri 22 Aug 2025 08:54:13 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 4780
IP address blocks: 192.72.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4202 (0x106a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Aug 22 08:54:13 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=4D38B3F5468F80A54E11314E2AB1936FEAF66B3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ee:56:bc:b4:c5:a2:1f:9c:88:86:10:ff:99:
73:ac:16:8f:e4:3a:28:52:23:2c:d7:fc:5a:30:b0:
00:f5:4d:da:ba:27:cf:48:c5:55:31:36:f7:31:2a:
ef:de:05:a5:ad:c5:61:57:f9:ab:3b:4f:de:90:c7:
f0:54:9b:5d:1e:4e:bd:71:3c:62:82:de:56:ae:1d:
f2:1e:38:7c:6f:a4:7c:48:a7:26:6d:ee:84:bc:94:
60:0e:9f:0d:2c:b0:4b:19:76:e8:3b:a9:3a:05:4f:
50:2d:f0:71:a0:b7:7e:5c:4a:ff:2c:69:76:f7:51:
6f:ef:70:f8:d6:d9:12:8c:35:91:f5:f6:de:c8:84:
ac:ab:31:4a:e7:86:b2:d5:d7:aa:ae:4d:d1:30:10:
01:74:70:fa:61:74:ee:0f:de:02:6d:f3:c7:8a:b3:
18:ce:bf:a8:95:8e:50:46:b2:54:12:b8:98:bd:7b:
7b:53:3e:a0:b4:6e:dd:b6:b8:54:b3:e0:d0:2c:55:
4f:1b:b3:07:37:25:67:68:78:4c:2c:be:9a:2c:cf:
4a:36:ed:02:1f:7f:82:44:1b:02:7a:1b:d2:a1:47:
b6:37:fa:95:c1:30:bd:28:6b:d3:24:ba:ff:68:6e:
05:01:e7:46:b2:0d:3e:dc:ce:44:51:ac:44:a0:bb:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:38:B3:F5:46:8F:80:A5:4E:11:31:4E:2A:B1:93:6F:EA:F6:6B:3B
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TTiz9UaPgKVOETFOKrGTb-r2azs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.240.0/21
Signature Algorithm: sha256WithRSAEncryption
54:aa:1f:ca:f8:71:8b:58:81:40:67:b7:e6:4a:39:1d:dd:ec:
a4:6f:2d:6a:16:05:33:33:23:b1:32:6b:ae:f9:87:e9:d6:95:
2b:13:14:10:fd:53:53:35:e0:5a:31:28:d1:6a:19:e6:20:b4:
0c:ae:41:d5:ba:c6:f3:b1:46:b2:2b:de:ac:df:e9:49:4c:53:
9b:31:15:64:36:83:a7:b3:a7:c6:d9:a4:ef:9a:10:71:b9:c2:
ba:6f:e3:96:ee:9a:4e:d6:23:51:93:02:54:72:31:8e:98:af:
78:ac:e2:b6:32:e6:c9:49:3c:c1:e7:ca:07:53:cc:e2:0a:6f:
be:16:26:d9:78:33:df:65:57:d4:f3:ac:8c:89:a2:00:2d:b2:
88:dd:ce:e4:04:47:21:47:93:4d:8c:a5:a6:dd:8e:5f:d0:a7:
40:40:ef:03:c5:88:9f:08:3e:a9:9f:ec:4f:46:7d:dc:48:3b:
d1:79:83:28:e4:1a:b4:34:55:66:7b:ce:c4:37:3c:bb:77:17:
c1:1d:df:8a:af:85:26:bf:6c:45:6b:59:76:21:0f:47:f5:3d:
a4:7c:5a:70:02:d0:63:1f:f4:db:06:b1:25:e2:0c:10:88:05:
83:42:a0:8f:63:9a:f3:b3:32:09:a8:c4:4a:5a:d4:95:90:c1:
25:a7:c6:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:37:54 2025 by rpki-client