Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OfM3WLncmnqNutDVymzc6b0ufaM.roa
File: OfM3WLncmnqNutDVymzc6b0ufaM.roa (raw, json)
Hash identifier: I0+GTAjwvMfCxlpnKUEpphB5HMoDSTXzJRatJUro8o8=
Subject key identifier: 39:F3:37:58:B9:DC:9A:7A:8D:BA:D0:D5:CA:6C:DC:E9:BD:2E:7D:A3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 127B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OfM3WLncmnqNutDVymzc6b0ufaM.roa
Signing time: Mon 10 Feb 2025 14:14:54 +0000
ROA not before: Mon 10 Feb 2025 14:14:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7532
IP address blocks: 150.116.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4731 (0x127b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=39F33758B9DC9A7A8DBAD0D5CA6CDCE9BD2E7DA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:56:55:bb:92:a1:33:13:64:4c:8b:2d:0e:59:
06:02:8e:bf:04:05:9d:a6:72:a4:54:10:8d:70:47:
71:f0:99:16:c5:66:64:d6:fb:6f:fd:1d:b2:73:fd:
f5:1d:76:1d:99:64:89:06:68:95:90:65:5f:6c:cf:
78:c4:9f:11:25:77:cd:2c:28:69:c7:81:81:56:3e:
eb:d0:b0:18:1a:0f:da:3e:f9:ed:71:07:0b:31:2a:
80:eb:e5:01:86:8e:84:a0:8d:78:16:c6:3b:49:36:
42:7b:ad:3a:ce:0b:fc:c7:50:85:5e:ce:87:83:d7:
1b:72:97:42:09:3b:59:4d:c8:bc:65:cc:e1:c5:22:
7f:70:77:45:c3:8e:9d:50:27:50:b7:cf:25:15:b8:
c8:ef:fb:26:c0:7c:07:13:d8:e7:94:ce:8d:7f:39:
a3:d1:cf:05:c4:ec:6d:ac:3c:20:7f:c0:62:86:06:
75:3c:48:d3:91:cf:f5:90:43:89:3a:3d:ba:4a:82:
a5:1f:25:ab:36:18:63:8d:06:b4:28:75:16:a4:b5:
2a:8e:77:2c:2d:af:bd:bb:75:7b:12:5a:79:2e:05:
fc:07:65:07:dc:de:92:4c:d8:2a:7b:b3:13:5d:23:
c5:9c:2b:e6:74:e9:df:8e:c8:00:fc:bd:d5:a7:5d:
3e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F3:37:58:B9:DC:9A:7A:8D:BA:D0:D5:CA:6C:DC:E9:BD:2E:7D:A3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OfM3WLncmnqNutDVymzc6b0ufaM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.55.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:fd:88:5e:ec:46:66:06:76:3e:45:ef:24:a3:61:91:22:8e:
6b:84:8f:c2:44:cd:f1:60:8a:d8:88:3c:33:5e:73:e6:87:c8:
ca:9d:ff:ad:f4:4c:b4:dc:60:04:6c:4c:27:c2:0a:3d:05:60:
86:a6:ec:7c:3a:ba:d2:76:8d:e4:71:8f:d5:97:aa:80:ec:4a:
4d:83:7f:27:c9:67:3c:22:6b:3b:70:36:83:f2:a7:2a:70:8d:
aa:b3:1b:cc:d2:06:61:7b:5a:8d:f6:78:32:75:c3:c0:c7:9a:
5f:8a:22:26:9c:07:f9:20:e5:d5:5a:1e:d3:2b:e3:85:31:34:
b2:04:bb:9c:4c:fb:e3:ed:2d:ce:cf:61:dc:63:03:ca:a4:c0:
76:44:97:62:2a:ad:99:ad:0e:13:c8:2c:67:74:56:cd:bb:39:
f0:ba:49:0c:19:6d:95:f9:af:68:75:91:f5:60:63:9f:98:af:
da:74:88:2b:fb:be:b7:10:73:f1:7b:5c:4f:01:5d:9a:af:43:
82:73:b4:58:33:a7:85:a1:60:b1:97:f2:91:2a:0f:37:e2:54:
75:3a:e9:29:8b:ec:0b:f7:b4:10:81:a8:ff:8e:66:33:79:35:
d4:b4:c8:96:e6:8b:8e:b4:4f:57:78:e9:9a:8d:be:cc:7a:49:
37:31:4d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:24:36 2025 by rpki-client