Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ER2JgaksnTleVF4UcY3-8a6O07s.roa
File: ER2JgaksnTleVF4UcY3-8a6O07s.roa (raw, json)
Hash identifier: NxVGNGrwDqTFSck4Y4pB7J+DdeAaoqHE1IpgjHSgvWg=
Subject key identifier: 11:1D:89:81:A9:2C:9D:39:5E:54:5E:14:71:8D:FE:F1:AE:8E:D3:BB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 127A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ER2JgaksnTleVF4UcY3-8a6O07s.roa
Signing time: Mon 10 Feb 2025 14:14:53 +0000
ROA not before: Mon 10 Feb 2025 14:14:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4730 (0x127a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=111D8981A92C9D395E545E14718DFEF1AE8ED3BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:d9:c5:79:46:ed:f3:66:8e:e9:59:f9:8a:
2a:98:35:3b:c5:21:b3:3a:c6:df:65:4a:64:44:9d:
e0:17:d1:a7:a1:95:3f:59:3e:04:1b:57:64:03:6a:
0d:d7:d9:8b:1d:91:d8:63:17:b2:2f:a5:e1:b8:fe:
61:a2:7a:91:42:c8:73:5a:9e:2b:3a:92:ed:e2:5f:
49:3e:d2:8a:be:92:6e:c5:20:18:88:26:63:73:a2:
86:eb:f1:07:13:b1:86:f9:35:8c:8b:a1:66:56:ce:
5d:da:4a:e1:ca:65:e8:7d:a9:cd:1c:dd:72:6b:4b:
bd:46:4c:6b:fa:32:12:2f:70:0f:78:5f:2a:76:c3:
4e:9e:da:01:52:b5:13:94:93:51:2f:ef:af:ef:52:
74:64:4a:ba:de:97:98:75:ed:aa:1a:7f:f0:eb:30:
d0:a9:72:8c:ae:17:70:71:f2:fe:8a:43:a7:dd:fc:
f9:c3:9d:c6:19:9b:bf:b6:a0:3e:18:8d:ef:70:31:
c5:15:b2:a4:f1:e7:97:5e:18:51:c9:e3:d8:6b:0d:
52:8b:10:26:4a:b2:c0:9d:28:23:0b:f7:36:68:3c:
c4:5a:11:db:c9:59:a5:83:a5:12:23:cf:55:ea:af:
ef:33:53:d2:33:fe:9b:ee:77:f7:a0:08:5b:cd:d9:
b0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1D:89:81:A9:2C:9D:39:5E:54:5E:14:71:8D:FE:F1:AE:8E:D3:BB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ER2JgaksnTleVF4UcY3-8a6O07s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.64.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:30:88:91:a6:db:1a:d7:fb:f8:7b:56:1c:a1:71:a0:83:71:
c2:98:2d:b0:b2:0e:b3:74:40:ca:f4:2e:7c:04:2a:3a:3a:69:
ec:66:a3:55:58:41:e7:35:62:3d:be:66:12:c6:f0:54:f0:b1:
d8:e9:bc:4d:6c:4b:62:32:13:77:ba:96:0b:86:16:f5:ac:61:
4b:c4:e0:ee:dc:be:11:ef:45:bd:68:51:9d:d6:81:3e:db:9e:
fc:9a:67:44:20:25:d9:63:76:ac:a5:b7:29:40:01:87:06:bb:
9b:c5:18:4a:c4:20:81:57:1d:e6:cd:96:7b:4e:24:ef:d0:c1:
59:8b:dc:2e:e8:36:fa:e4:9e:0b:23:4f:7e:3f:0e:3d:14:bd:
d3:87:fa:7b:8f:d6:bd:6e:cc:a6:4e:79:74:34:c8:08:8e:e3:
a7:e6:33:58:1c:02:62:41:3c:81:76:2d:b0:6b:85:c6:a4:99:
9e:cb:5b:76:52:21:38:3d:3c:45:6d:7c:0d:cb:be:a9:11:e7:
08:ae:e2:f7:3d:a9:d8:31:82:82:d8:f9:2a:af:ca:5f:20:a0:
bc:e1:82:77:45:67:27:32:d8:7a:78:7b:71:70:ce:9c:ae:29:
77:a9:c4:3b:74:e9:df:04:7c:68:31:db:4d:ae:fe:ce:d8:6e:
f4:fc:ca:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:20 2025 by rpki-client