Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3VVzwRIrhPApt7yVGyIt2ZhNz6o.roa
File: 3VVzwRIrhPApt7yVGyIt2ZhNz6o.roa (raw, json)
Hash identifier: K7/wtVMD7kZbT8aFaDGdkc8icXkQgoxHRe9mvlwpIxE=
Subject key identifier: DD:55:73:C1:12:2B:84:F0:29:B7:BC:95:1B:22:2D:D9:98:4D:CF:AA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1279
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3VVzwRIrhPApt7yVGyIt2ZhNz6o.roa
Signing time: Mon 10 Feb 2025 14:14:53 +0000
ROA not before: Mon 10 Feb 2025 14:14:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 150.117.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4729 (0x1279)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DD5573C1122B84F029B7BC951B222DD9984DCFAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cf:21:ba:e3:de:6b:ab:6b:ec:35:b7:dd:08:
da:da:db:ba:2c:7f:41:8d:53:b2:ef:c2:3f:ad:1b:
64:aa:6a:02:4a:66:c4:2a:a8:8b:9d:1b:21:67:ac:
8f:f3:7f:b2:ec:e8:82:29:07:6a:ea:ec:b4:df:0b:
12:af:b3:fd:61:7f:7d:f3:ab:0a:d5:19:b4:16:5a:
65:7e:74:72:c1:65:6b:92:15:58:41:16:31:22:bf:
29:52:24:6c:cc:87:ec:1e:5a:02:0a:9c:e3:5c:63:
ad:d7:20:2d:7c:fa:92:28:8e:c3:43:5c:4f:c4:df:
2d:c7:b1:6f:ec:da:95:bf:79:a3:9a:b7:d1:f0:04:
16:89:84:81:a8:2d:00:47:0f:22:d9:e4:66:a5:0e:
49:87:9e:79:cc:e2:38:bb:b8:bd:c3:f5:90:5b:6f:
27:bf:28:09:7b:85:b1:6e:99:55:ba:9b:60:c9:ab:
cf:8f:8b:87:36:41:9f:a0:91:22:e3:a1:e5:94:78:
6a:9c:09:1c:b8:40:2f:52:9d:d0:15:eb:30:24:0c:
c6:81:e9:73:da:68:86:81:59:77:cf:9f:25:1a:ab:
4f:5d:0c:3f:0d:90:cb:95:89:c8:0a:2b:43:5a:63:
8f:d2:65:14:97:ac:89:59:6b:3f:ec:16:00:8e:8a:
22:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:55:73:C1:12:2B:84:F0:29:B7:BC:95:1B:22:2D:D9:98:4D:CF:AA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3VVzwRIrhPApt7yVGyIt2ZhNz6o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.56.0/21
Signature Algorithm: sha256WithRSAEncryption
18:26:7b:54:d7:e4:cc:b7:9e:c5:81:aa:b7:fc:f9:b9:63:0e:
e0:ce:ec:46:34:cc:00:4f:a0:e7:8a:e4:ae:ce:18:80:ce:cd:
c8:bd:ed:b7:bc:85:2e:3c:6b:86:5a:ba:e1:09:87:09:ff:46:
ed:c2:78:9b:01:ca:23:bf:a8:1f:ec:0c:6a:7e:37:95:40:dc:
1b:82:aa:45:1a:cf:f7:f2:da:be:44:04:13:8b:fa:7a:a9:b8:
d5:b3:0a:6d:ae:99:ce:ff:cc:ba:bb:cb:cb:7f:62:85:74:7f:
6d:98:67:3c:43:02:4c:c2:8a:89:aa:9c:ac:10:fd:aa:c0:fb:
9f:84:34:d1:2a:db:b1:9c:52:a0:bc:87:ba:20:9e:e4:db:52:
df:10:e1:5a:67:c2:bb:20:a0:4f:bb:2e:88:15:e4:00:d3:c6:
80:97:73:69:87:a0:64:02:84:14:e1:a5:76:49:c9:b4:c2:8b:
1a:ef:5f:91:33:e0:b9:dc:94:32:2b:d5:ea:12:95:a4:6d:dd:
0e:bd:7b:94:fb:51:24:99:32:1b:ea:85:d9:e4:5c:93:7f:80:
c6:26:78:4b:7a:7b:9b:31:95:be:35:6b:03:38:09:69:c1:25:
90:b4:d6:1d:fd:48:71:40:cc:40:c1:27:cc:16:a4:83:f9:98:
80:10:86:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:52:22 2025 by rpki-client