Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/m7DhiFhAPZoIqr4BHoHXpao14gg.roa
File: m7DhiFhAPZoIqr4BHoHXpao14gg.roa (raw, json)
Hash identifier: QJZbn+/p5A8gX8009rNNtxvt4K4wqcXdkOuZbFAakEg=
Subject key identifier: 9B:B0:E1:88:58:40:3D:9A:08:AA:BE:01:1E:81:D7:A5:AA:35:E2:08
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 1062
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m7DhiFhAPZoIqr4BHoHXpao14gg.roa
Signing time: Fri 22 Aug 2025 08:54:12 +0000
ROA not before: Fri 22 Aug 2025 08:54:12 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 4780
IP address blocks: 192.72.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4194 (0x1062)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Aug 22 08:54:12 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=9BB0E18858403D9A08AABE011E81D7A5AA35E208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:3d:e8:9a:cf:fd:d0:e6:9e:15:e0:ae:89:
4c:5a:11:ea:85:00:f0:7a:fe:33:9d:09:63:84:a9:
e3:de:22:1b:d2:05:8f:82:c3:bc:de:b5:21:b0:ca:
25:83:74:b7:23:b1:34:fc:2b:88:65:59:a8:27:b5:
91:5b:84:f7:52:f9:53:c0:74:89:54:6a:6f:9b:e8:
94:bf:8b:dd:ba:e6:7b:df:1e:c3:75:99:a1:41:0d:
f4:40:23:ed:2e:20:69:4b:82:9d:ba:96:87:8f:01:
ca:97:e1:34:84:aa:07:12:70:9e:a5:ec:22:fa:6d:
c7:fd:90:58:1d:04:08:37:cd:1c:71:d0:3f:db:7c:
f3:fd:01:ca:fb:35:16:3b:83:eb:09:3f:1b:82:e9:
f9:c7:60:c7:6f:85:4d:48:05:7c:d5:51:17:d3:39:
c3:33:79:b9:0b:7c:0d:4e:cf:58:7a:02:98:56:38:
2d:3d:02:c7:57:9a:d3:a8:b3:a7:a7:48:f0:89:3e:
cc:f9:4a:31:2d:a8:f3:e9:c3:cb:00:d7:0e:85:3d:
0f:75:a2:92:37:06:47:9e:64:af:36:f0:c6:26:7e:
4d:37:55:82:fa:42:10:b5:93:a2:65:d5:50:20:e7:
81:b6:f3:fd:70:7d:fd:7d:d7:29:7c:ca:09:93:93:
61:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B0:E1:88:58:40:3D:9A:08:AA:BE:01:1E:81:D7:A5:AA:35:E2:08
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m7DhiFhAPZoIqr4BHoHXpao14gg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1a:05:e0:c9:b0:61:e9:cb:0b:8d:4c:51:63:d6:7e:2a:bc:0a:
c0:87:d4:4f:b6:41:d6:87:93:68:03:97:c7:51:af:07:15:07:
7e:f1:81:a3:0b:ad:65:98:ff:9c:43:20:86:4b:0e:fd:93:12:
ec:fc:71:9e:59:d4:0a:cf:8e:2e:f7:bb:67:bd:41:93:da:e9:
9c:b6:76:46:bd:37:f2:57:f0:81:ae:89:7e:0d:cf:ae:1a:c8:
7b:75:d5:c0:db:5e:96:4f:40:e5:18:18:65:e0:e6:d1:d7:7e:
d9:b8:cc:d2:70:33:81:a0:89:60:f6:44:d7:32:e8:63:d6:68:
e3:b1:f0:02:32:38:4d:3b:e1:1c:cf:df:5c:cf:68:cf:55:d3:
f7:76:7b:ec:0d:6f:31:63:2b:66:94:c5:7c:f0:4a:98:ef:02:
e6:ca:d1:65:bb:d4:b0:59:4e:7b:16:f7:65:92:00:cc:25:b7:
5d:6d:03:9e:0d:44:3b:4c:81:6e:f3:e3:8f:54:98:cc:08:c9:
8e:93:67:59:dc:8f:a4:15:cc:be:ca:29:0f:e7:7e:d4:a2:7e:
b7:ef:77:c0:01:6d:68:02:0e:05:73:92:2d:70:6a:1c:8e:57:
c9:c5:65:d3:4d:b1:a0:7f:d2:12:32:ad:da:9d:a8:92:9c:79:
c3:c5:dd:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:39:28 2025 by rpki-client