Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Aa7Dc77mDFED6T9-NsECeTPxB4Y.roa
File: Aa7Dc77mDFED6T9-NsECeTPxB4Y.roa (raw, json)
Hash identifier: tbm2XhS74T+BsdWaIYftDvDF9EDRHgmV5g8PkUw+09E=
Subject key identifier: 01:AE:C3:73:BE:E6:0C:51:03:E9:3F:7E:36:C1:02:79:33:F1:07:86
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1256
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Aa7Dc77mDFED6T9-NsECeTPxB4Y.roa
Signing time: Mon 10 Feb 2025 14:14:44 +0000
ROA not before: Mon 10 Feb 2025 14:14:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4694 (0x1256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=01AEC373BEE60C5103E93F7E36C1027933F10786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4e:64:84:3a:fe:1b:39:2a:07:b0:cc:ec:75:
0c:4a:4a:a6:db:1e:1c:e6:d9:ac:83:9c:76:19:c6:
7b:89:47:ee:10:3c:7f:bc:a1:60:f7:dd:84:df:4c:
ad:51:41:f8:88:54:90:4c:0a:0b:d9:7f:7c:27:fb:
6a:cf:91:94:48:ab:08:0f:4a:ca:26:cd:04:ae:d7:
7e:9e:14:ed:15:a3:10:82:72:7c:5a:97:c2:b4:11:
b9:e4:01:02:b2:76:78:e2:c9:da:38:1a:84:95:40:
c3:05:d4:07:a3:38:7b:22:98:53:37:6b:21:4c:61:
f7:c8:0e:2b:cd:f3:31:a4:e3:c5:a5:24:d6:00:94:
75:ba:d4:c4:53:84:80:e4:50:6f:3b:f4:da:17:12:
8f:33:e9:11:1a:27:a3:83:51:3d:7e:19:b9:5e:09:
d5:5c:1f:57:3d:1c:ce:0c:92:2c:84:4f:14:fd:8b:
e9:2d:57:f8:6c:2d:8c:df:bd:dd:78:8c:4e:de:73:
cf:41:79:9e:75:df:8e:96:dc:3f:51:09:60:b4:ae:
67:a9:25:0b:1f:8f:c1:2b:07:56:e8:4e:66:b2:3f:
92:b0:d8:a6:e6:99:9e:0f:f7:20:de:85:cb:84:b9:
b4:df:26:67:20:f0:f0:aa:4c:34:d7:a7:e7:2f:76:
01:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AE:C3:73:BE:E6:0C:51:03:E9:3F:7E:36:C1:02:79:33:F1:07:86
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Aa7Dc77mDFED6T9-NsECeTPxB4Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.192.0/18
Signature Algorithm: sha256WithRSAEncryption
9b:04:a6:c5:be:a0:72:1f:1f:ce:33:da:9a:34:d8:dd:f3:1f:
7c:ad:46:4a:dc:27:72:eb:01:30:de:dc:35:44:0d:63:32:2c:
9c:d1:d3:1f:77:91:b8:ce:65:c3:74:07:32:1e:b0:00:8d:59:
fe:b6:4f:79:e4:cd:74:17:67:4e:cc:eb:c4:e6:f6:d9:55:1f:
0e:12:47:03:54:ab:5f:af:ea:8c:c0:b3:77:6f:dd:24:af:7d:
aa:09:48:a0:84:cb:dc:5d:71:06:5e:90:ec:30:9e:c8:42:74:
db:50:95:58:9f:2a:98:12:ab:b3:5f:af:71:ed:9e:e6:92:eb:
f0:68:89:a2:69:e0:12:a2:c8:79:74:b3:c8:11:7b:44:d2:57:
6b:a6:82:50:2e:04:8a:62:df:e6:9d:20:38:b4:62:79:21:67:
ab:2f:71:ef:02:a0:5a:8d:7b:19:8c:57:89:be:41:61:21:7d:
e8:6b:43:b1:c0:a2:63:6b:d3:32:fc:dd:c7:d0:7f:14:c1:2b:
d7:13:ed:8d:dc:af:c8:fe:8a:f4:a1:06:35:fe:65:c5:62:b0:
dc:5f:0a:fe:49:eb:23:7b:8d:b3:bc:6b:80:bd:d0:c5:c6:e6:
b4:62:5d:2a:72:07:0a:39:14:86:ea:3d:eb:95:65:d3:68:63:
a1:41:0f:6f
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICElYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx
NDE0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAxQUVDMzczQkVFNjBD
NTEwM0U5M0Y3RTM2QzEwMjc5MzNGMTA3ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3TmSEOv4bOSoHsMzsdQxKSqbbHhzm2ayDnHYZxnuJR+4QPH+8
oWD33YTfTK1RQfiIVJBMCgvZf3wn+2rPkZRIqwgPSsomzQSu136eFO0VoxCCcnxa
l8K0EbnkAQKydnjiydo4GoSVQMMF1AejOHsimFM3ayFMYffIDivN8zGk48WlJNYA
lHW61MRThIDkUG879NoXEo8z6REaJ6ODUT1+GbleCdVcH1c9HM4MkiyETxT9i+kt
V/hsLYzfvd14jE7ec89BeZ51346W3D9RCWC0rmepJQsfj8ErB1boTmayP5Kw2Kbm
mZ4P9yDehcuEubTfJmcg8PCqTDTXp+cvdgFHAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUAa7Dc77mDFED6T9+NsECeTPxB4YwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9BYTdEYzc3bURGRUQ2
VDktTnNFQ2VUUHhCNFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQGlnTAMA0GCSqGSIb3DQEBCwUAA4IBAQCbBKbFvqByHx/OM9qaNNjd8x98rUZK
3Cdy6wEw3tw1RA1jMiyc0dMfd5G4zmXDdAcyHrAAjVn+tk955M10F2dOzOvE5vbZ
VR8OEkcDVKtfr+qMwLN3b90kr32qCUighMvcXXEGXpDsMJ7IQnTbUJVYnyqYEquz
X69x7Z7mkuvwaImiaeASosh5dLPIEXtE0ldrpoJQLgSKYt/mnSA4tGJ5IWerL3Hv
AqBajXsZjFeJvkFhIX3oa0OxwKJja9My/N3H0H8UwSvXE+2N3K/I/or0oQY1/mXF
YrDcXwr+Sesje42zvGuAvdDFxua0Yl0qcgcKORSG6j3rlWXTaGOhQQ9v
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:38:01 2025 by rpki-client