Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FbQPnnhuFOReAg-_c3QTHdp0v7w.roa
File: FbQPnnhuFOReAg-_c3QTHdp0v7w.roa (raw, json)
Hash identifier: NxWeajvn++xLJSM3dZewufLd2Auy5G6W3JIY/WiWKus=
Subject key identifier: 15:B4:0F:9E:78:6E:14:E4:5E:02:0F:BF:73:74:13:1D:DA:74:BF:BC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12B8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FbQPnnhuFOReAg-_c3QTHdp0v7w.roa
Signing time: Mon 10 Feb 2025 14:15:10 +0000
ROA not before: Mon 10 Feb 2025 14:15:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 150.117.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4792 (0x12b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=15B40F9E786E14E45E020FBF7374131DDA74BFBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1e:2b:bd:4c:9d:99:1b:5a:6d:5a:b9:f7:4b:
a6:77:34:ae:33:19:5d:6d:7c:eb:d6:b6:81:22:be:
c1:2c:a5:78:8d:50:5b:2a:c8:cb:3e:31:a1:9b:12:
5e:0c:e1:66:8e:1d:3c:48:52:d9:85:cb:e7:ca:64:
1c:07:50:4b:ba:1d:a9:45:32:85:de:7b:9d:61:73:
b1:25:e7:37:21:dc:a3:3a:ef:0b:29:15:f7:ff:a7:
21:84:12:36:48:a9:26:78:c0:93:79:92:51:7b:98:
16:67:47:1d:a9:29:50:77:36:60:60:b9:1d:21:f9:
41:56:97:ac:b1:c6:84:2b:66:31:c1:be:27:d4:24:
5b:ea:9f:4f:ba:bc:25:1f:6f:b9:52:f6:e5:18:2f:
f2:34:c7:ac:f4:1e:62:c7:33:71:23:67:33:a4:45:
ce:fc:2a:8d:84:08:90:1d:71:b3:ad:fa:94:37:91:
c4:31:e3:d1:d5:42:3f:40:14:37:9b:51:03:21:57:
b9:49:96:1d:54:34:fa:e7:95:ba:1a:85:e6:85:58:
93:00:b2:4d:b2:5c:29:d4:fd:05:e1:9d:43:a1:9b:
cd:ee:23:17:54:35:c1:88:46:97:50:20:ea:ac:21:
38:dd:7b:72:7c:2c:4b:84:41:b2:2d:f3:72:8e:59:
9a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B4:0F:9E:78:6E:14:E4:5E:02:0F:BF:73:74:13:1D:DA:74:BF:BC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FbQPnnhuFOReAg-_c3QTHdp0v7w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.64.0/20
Signature Algorithm: sha256WithRSAEncryption
31:97:bd:6b:d1:ed:9b:4a:59:94:1b:09:38:77:1e:e5:b4:ac:
cc:25:36:50:a0:bc:09:72:03:7d:30:42:98:1c:e8:ce:7a:b9:
83:10:2d:65:c1:c2:96:f9:af:d1:51:e1:9c:a2:08:b1:ed:17:
67:ba:35:ef:26:27:83:b5:c2:85:7f:57:7a:34:a5:5b:f7:c2:
c9:47:ff:2c:75:10:2d:35:fb:a0:85:bf:ea:c7:9a:15:8d:8a:
18:80:d4:a4:22:fb:d3:02:e2:8f:9f:7d:6b:b8:82:f7:6e:7c:
90:a9:de:59:de:85:0c:6b:b4:93:6f:71:fc:be:b1:70:26:39:
56:75:c0:e7:db:1f:23:2d:cf:46:21:90:6e:71:6e:2c:65:3d:
9f:8e:7d:9e:6d:6b:21:3e:49:51:08:cd:52:45:1e:0b:65:53:
6c:2e:ee:7b:31:dc:b7:91:c1:75:6a:e0:3d:b8:98:f7:61:f4:
06:9a:cc:23:05:7f:40:92:ba:ce:87:7d:3f:6e:55:4d:9e:00:
1a:86:e2:1f:12:80:03:1a:2d:a9:62:22:d7:78:42:6e:68:70:
63:e1:fe:7c:8f:10:18:bc:e9:2d:fc:78:b3:ce:31:d2:9f:31:
cd:f0:6b:d9:94:67:4d:b1:64:5d:3b:56:cc:70:23:5b:e8:7f:
ed:e1:31:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:04:55 2025 by rpki-client