Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FfyGquDIOIhUMdFWl_sfnkM7heQ.roa
File: FfyGquDIOIhUMdFWl_sfnkM7heQ.roa (raw, json)
Hash identifier: zUlLG2Gq+rw2nfwZ5yyEmwOmn6moRJy9HggcMG/AcnE=
Subject key identifier: 15:FC:86:AA:E0:C8:38:88:54:31:D1:56:97:FB:1F:9E:43:3B:85:E4
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 127E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FfyGquDIOIhUMdFWl_sfnkM7heQ.roa
Signing time: Mon 10 Feb 2025 14:14:55 +0000
ROA not before: Mon 10 Feb 2025 14:14:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 150.117.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4734 (0x127e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=15FC86AAE0C838885431D15697FB1F9E433B85E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:76:fe:d4:e9:24:87:d9:cd:2d:7d:c3:ab:
73:a7:13:af:5a:c1:b8:00:d5:a9:d1:2c:9e:0f:ca:
8f:9d:fa:c6:6b:91:0a:ae:db:02:17:fc:d1:b1:fe:
2f:8f:ee:2a:e5:dc:da:b9:9d:1a:db:f1:b6:4c:fb:
e3:fc:ec:26:97:ee:53:41:e0:96:65:5e:e9:1c:22:
c3:24:4d:79:29:03:8f:1c:7f:db:4d:af:37:88:29:
27:db:85:c1:47:07:bc:e5:21:7c:a5:e6:59:ec:20:
f9:44:1d:4a:5f:7e:a0:44:bc:3f:b3:6b:8a:99:90:
4c:2d:74:33:78:7d:40:5c:9a:d4:d1:05:ec:21:d2:
fc:37:82:14:16:62:cc:69:2e:69:e1:99:fe:ba:92:
82:53:c1:ec:6d:da:2d:d8:a5:e1:fc:22:b1:a8:f3:
33:3a:33:9f:46:0d:41:d5:e6:67:a9:fd:65:b9:d6:
f1:49:10:60:af:19:df:1d:6b:92:14:1e:9f:ae:fa:
24:2a:d7:a4:b7:34:80:22:5b:df:b1:47:cc:fc:9e:
6b:d1:4f:d5:98:6c:81:d8:14:1c:d8:31:1b:ee:b5:
b5:0d:d5:08:2f:b9:68:19:ac:f7:d8:c6:ea:c1:47:
3b:64:22:29:cf:cf:be:0e:ed:1c:bb:14:8f:b7:8b:
a7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:FC:86:AA:E0:C8:38:88:54:31:D1:56:97:FB:1F:9E:43:3B:85:E4
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FfyGquDIOIhUMdFWl_sfnkM7heQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.208.0/20
Signature Algorithm: sha256WithRSAEncryption
56:b8:b3:96:cd:64:65:75:47:75:a3:82:de:89:2f:fa:b6:6f:
e9:1f:c4:f6:5e:81:6d:4e:9d:ae:7b:1d:39:2d:bf:57:47:4c:
ec:ce:a6:85:ad:13:2f:ee:b2:c0:6e:19:a6:87:50:75:85:2b:
4e:1a:db:8d:aa:ac:47:1e:1b:7a:20:02:dd:a7:17:70:79:27:
b6:1b:9f:7f:97:e4:11:7a:39:85:ed:58:09:86:6b:5c:4d:a7:
26:02:0f:6d:0a:e3:44:af:09:9b:62:a5:d9:25:64:d7:a7:64:
a2:45:be:bd:8b:97:b3:68:70:a9:7d:82:74:b0:0e:ea:44:bc:
1d:d8:a2:c3:be:7f:b8:a0:ef:51:70:81:dc:50:18:c4:85:dc:
d0:85:33:e3:2e:ac:98:a2:d2:ac:1a:93:19:81:78:de:1d:9d:
fa:8d:81:9e:43:2d:4e:f3:f9:89:a6:3c:2b:fe:7e:be:8a:3f:
0e:e0:34:7b:65:93:13:b4:0f:34:a3:62:2f:53:10:dd:0e:46:
f1:ec:b9:74:45:59:73:e0:4c:a6:0e:77:05:98:a9:fe:d1:51:
ce:29:88:38:d4:ea:c7:0a:5a:05:29:ce:ff:c0:1b:7f:67:d5:
d4:ce:46:45:5b:9b:2f:81:72:40:17:62:19:35:43:48:f3:f7:
29:36:fb:7a
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx
NDE0NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1RkM4NkFBRTBDODM4
ODg1NDMxRDE1Njk3RkIxRjlFNDMzQjg1RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzBHb+1Okkh9nNLX3Dq3OnE69awbgA1anRLJ4Pyo+d+sZrkQqu
2wIX/NGx/i+P7irl3Nq5nRrb8bZM++P87CaX7lNB4JZlXukcIsMkTXkpA48cf9tN
rzeIKSfbhcFHB7zlIXyl5lnsIPlEHUpffqBEvD+za4qZkEwtdDN4fUBcmtTRBewh
0vw3ghQWYsxpLmnhmf66koJTwext2i3YpeH8IrGo8zM6M59GDUHV5mep/WW51vFJ
EGCvGd8da5IUHp+u+iQq16S3NIAiW9+xR8z8nmvRT9WYbIHYFBzYMRvutbUN1Qgv
uWgZrPfYxurBRztkIinPz74O7Ry7FI+3i6cLAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUFfyGquDIOIhUMdFWl/sfnkM7heQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9GZnlHcXVESU9JaFVN
ZEZXbF9zZm5rTTdoZVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnXQMA0GCSqGSIb3DQEBCwUAA4IBAQBWuLOWzWRldUd1o4LeiS/6tm/pH8T2
XoFtTp2uex05Lb9XR0zszqaFrRMv7rLAbhmmh1B1hStOGtuNqqxHHht6IALdpxdw
eSe2G59/l+QRejmF7VgJhmtcTacmAg9tCuNErwmbYqXZJWTXp2SiRb69i5ezaHCp
fYJ0sA7qRLwd2KLDvn+4oO9RcIHcUBjEhdzQhTPjLqyYotKsGpMZgXjeHZ36jYGe
Qy1O8/mJpjwr/n6+ij8O4DR7ZZMTtA80o2IvUxDdDkbx7Ll0RVlz4EymDncFmKn+
0VHOKYg41OrHCloFKc7/wBt/Z9XUzkZFW5svgXJAF2IZNUNI8/cpNvt6
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:24 2025 by rpki-client