Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/RSkC3Zs91hkj5Q54c_Mz6hsF104.roa
File: RSkC3Zs91hkj5Q54c_Mz6hsF104.roa (raw, json)
Hash identifier: lzJCM4zH7l35IsWMVU5YTg4lMzYzJgsnFX16v5d9eaI=
Subject key identifier: 45:29:02:DD:9B:3D:D6:19:23:E5:0E:78:73:F3:33:EA:1B:05:D7:4E
Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA
Certificate serial: F6
Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/RSkC3Zs91hkj5Q54c_Mz6hsF104.roa
Signing time: Fri 22 Nov 2024 15:54:41 +0000
ROA not before: Fri 22 Nov 2024 15:54:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 14618
IP address blocks: 113.192.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246 (0xf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA
Validity
Not Before: Nov 22 15:54:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=452902DD9B3DD61923E50E7873F333EA1B05D74E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f2:b9:07:20:ea:6c:ad:ae:7e:41:47:8e:2b:
d9:c6:06:c3:93:02:30:8a:41:5e:6a:ba:e6:0a:26:
19:cb:d8:ec:b3:fb:5b:1b:c8:0a:1e:c2:42:43:da:
f6:1b:22:a4:28:8d:26:4f:4c:9e:63:3c:c3:a8:f9:
b8:ff:23:00:e4:ea:c5:b9:00:28:66:da:d9:52:b5:
c0:45:99:e7:33:fb:e1:0b:50:53:82:0b:01:70:3b:
d1:99:a1:5d:c0:14:0b:01:6b:56:ff:74:39:60:80:
e4:07:2e:05:d4:cd:9e:56:3b:a4:58:a8:6f:57:52:
49:0b:88:1f:a1:16:22:ff:c0:bf:74:94:cf:fa:97:
d7:94:b7:6a:72:1b:93:e4:4c:63:91:72:76:42:ca:
da:af:00:a7:3b:4b:e9:26:52:5e:15:cb:ed:b8:99:
46:1c:c2:00:5d:af:14:11:a2:9d:96:8f:3b:a8:0a:
d8:a8:a4:34:a2:9d:2c:5b:42:69:08:96:b7:d0:c9:
fe:06:3b:82:80:c9:86:a0:a5:ef:38:d0:4b:cd:5d:
52:2c:a0:49:5a:a3:bf:99:48:5c:ca:88:5a:09:45:
c1:00:b3:5f:a5:58:0b:4a:1e:90:e5:b3:39:aa:88:
de:ff:59:b5:6b:fd:3f:d6:f7:d5:7b:43:86:11:54:
9f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:29:02:DD:9B:3D:D6:19:23:E5:0E:78:73:F3:33:EA:1B:05:D7:4E
X509v3 Authority Key Identifier:
keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/RSkC3Zs91hkj5Q54c_Mz6hsF104.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.192.24.0/23
Signature Algorithm: sha256WithRSAEncryption
33:80:2e:53:aa:6f:f6:89:e0:ac:8e:70:3f:6e:7a:a0:87:94:
ca:9e:aa:f2:61:2f:75:ad:ce:1c:f7:a2:5f:ba:e9:45:62:bf:
ba:17:2c:71:55:f5:36:c4:33:49:d9:36:1e:9b:d6:67:7a:4c:
f7:02:a3:92:36:51:55:6b:c0:40:7c:e5:66:4f:59:eb:3a:f2:
16:6b:23:fc:b3:78:99:ce:38:45:09:78:b1:02:b7:b6:55:6f:
13:54:46:f8:bf:33:86:56:f1:e2:99:8d:65:3b:3c:c8:a4:b3:
0b:86:b3:45:33:99:1a:6c:0a:dd:0a:50:56:5e:70:1c:2e:c1:
f0:0e:b1:9e:5e:30:77:15:fc:f5:f3:6d:a6:7a:f3:57:8b:f3:
83:22:fd:8d:d9:a1:98:03:18:21:3c:57:42:a9:d9:ec:44:a9:
c1:c7:2e:15:f0:30:52:7d:84:9a:5a:9a:0c:1b:fa:e0:07:1a:
47:d3:02:de:c5:7b:d3:dd:bb:68:f2:67:ff:af:88:5c:2a:fc:
80:ee:5d:b9:84:b5:e3:ab:6c:bd:48:11:84:35:a1:d9:ee:bc:
b1:f8:d5:0e:47:0b:cc:c5:ab:1f:b2:3c:15:fa:2c:00:88:5a:
37:eb:a8:32:ed:46:0e:4e:01:bc:d8:75:bd:27:6d:c3:98:d7:
30:7e:8e:a2
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y4
NEZBRUQ2Q0I0N0UxMTJGMjRDNkIwMjc3QTQ4NjIyNzA2NzJDQTAeFw0yNDExMjIx
NTU0NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1MjkwMkREOUIzREQ2
MTkyM0U1MEU3ODczRjMzM0VBMUIwNUQ3NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDM8rkHIOpsra5+QUeOK9nGBsOTAjCKQV5quuYKJhnL2Oyz+1sb
yAoewkJD2vYbIqQojSZPTJ5jPMOo+bj/IwDk6sW5AChm2tlStcBFmecz++ELUFOC
CwFwO9GZoV3AFAsBa1b/dDlggOQHLgXUzZ5WO6RYqG9XUkkLiB+hFiL/wL90lM/6
l9eUt2pyG5PkTGORcnZCytqvAKc7S+kmUl4Vy+24mUYcwgBdrxQRop2WjzuoCtio
pDSinSxbQmkIlrfQyf4GO4KAyYagpe840EvNXVIsoElao7+ZSFzKiFoJRcEAs1+l
WAtKHpDlszmqiN7/WbVr/T/W99V7Q4YRVJ/XAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQURSkC3Zs91hkj5Q54c/Mz6hsF104wHwYDVR0jBBgwFoAUP4T67Wy0fhEvJMaw
J3pIYicGcsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9T
VEVDSC9QNFQ2N1d5MGZoRXZKTWF3SjNwSVlpY0djc28uY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tST05PU1RFQ0gvUlNrQzNaczkx
aGtqNVE1NGNfTXo2aHNGMTA0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAXHAGDANBgkqhkiG9w0BAQsFAAOCAQEAM4AuU6pv9ongrI5wP256oIeU
yp6q8mEvda3OHPeiX7rpRWK/uhcscVX1NsQzSdk2HpvWZ3pM9wKjkjZRVWvAQHzl
Zk9Z6zryFmsj/LN4mc44RQl4sQK3tlVvE1RG+L8zhlbx4pmNZTs8yKSzC4azRTOZ
GmwK3QpQVl5wHC7B8A6xnl4wdxX89fNtpnrzV4vzgyL9jdmhmAMYITxXQqnZ7ESp
wccuFfAwUn2EmlqaDBv64AcaR9MC3sV70927aPJn/6+IXCr8gO5duYS146tsvUgR
hDWh2e68sfjVDkcLzMWrH7I8FfosAIhaN+uoMu1GDk4BvNh1vSdtw5jXMH6Oog==
-----END CERTIFICATE-----
Generated at Sun Apr 27 17:35:36 2025 by rpki-client