Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Pgo3XEcVunDOAG19mfRga8BZins.roa
File: Pgo3XEcVunDOAG19mfRga8BZins.roa (raw, json)
Hash identifier: LI3nslX2JRoWwQ+1by6p4AwZT4xeEDobwEv9qRuMnig=
Subject key identifier: 3E:0A:37:5C:47:15:BA:70:CE:00:6D:7D:99:F4:60:6B:C0:59:8A:7B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 128E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Pgo3XEcVunDOAG19mfRga8BZins.roa
Signing time: Mon 10 Feb 2025 14:14:59 +0000
ROA not before: Mon 10 Feb 2025 14:14:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.117.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4750 (0x128e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3E0A375C4715BA70CE006D7D99F4606BC0598A7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:37:e8:6b:93:4a:d6:de:6c:a4:4f:6e:b0:d0:
de:73:e5:bb:a6:29:a5:1e:87:6e:50:5c:8a:c7:39:
72:48:9d:f3:c1:63:a4:23:b0:61:91:c8:e3:48:b9:
29:fe:99:23:a0:42:71:95:35:ce:a3:3a:f6:2f:42:
7c:0e:86:70:df:f1:a1:7b:da:49:41:1a:58:ca:53:
21:1e:15:aa:73:04:81:c5:91:9a:63:04:ba:b9:ff:
55:4e:32:26:3b:d1:d6:a6:e6:27:e7:dd:31:70:e1:
3e:7a:b5:49:33:a9:d8:98:c0:b3:03:e0:45:d7:51:
69:b9:bd:4d:18:07:60:46:e6:91:0d:3e:41:ec:22:
34:6a:ee:99:c0:9d:62:da:b6:de:a6:6e:59:ff:37:
db:0f:10:20:e6:8c:19:4c:89:e3:db:f6:21:91:10:
51:29:e1:e1:71:6c:d3:78:97:a9:ff:4d:30:17:b1:
d3:19:27:6e:94:66:a0:8f:64:3b:4e:ee:71:8d:ca:
d3:30:07:20:0c:3c:fa:27:62:b8:15:df:5c:f5:a3:
11:cf:5f:ad:07:9a:14:6f:e9:60:0f:3e:fa:fe:f6:
11:61:7b:72:ec:96:47:63:f2:a4:5d:4b:06:e5:03:
94:6f:3a:c2:0b:64:3b:a1:4a:59:71:24:53:69:56:
86:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:0A:37:5C:47:15:BA:70:CE:00:6D:7D:99:F4:60:6B:C0:59:8A:7B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Pgo3XEcVunDOAG19mfRga8BZins.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.232.0/21
Signature Algorithm: sha256WithRSAEncryption
16:89:81:12:43:aa:1c:74:6a:c3:b2:2c:3b:86:1d:2a:59:8a:
90:f1:33:35:0a:ab:0c:56:0e:f5:95:92:c6:f9:5e:00:e9:bd:
db:d2:9a:21:05:4a:d7:cc:6c:84:20:48:ec:e7:9f:bb:e4:3d:
42:3e:26:fd:69:c3:b2:38:0e:f9:37:2c:88:80:9c:65:cf:79:
26:cb:6f:d1:71:77:35:2d:6f:c2:af:09:49:5d:a9:3f:3f:0d:
28:e0:53:d2:9e:fd:d6:c0:21:42:ee:eb:96:6d:d4:3d:e4:10:
f2:12:2c:9e:79:e5:91:a2:ae:49:2b:e0:bf:91:78:70:2b:86:
1a:15:e2:47:42:5a:79:c5:35:be:f7:74:ae:7f:2c:f4:4d:b4:
84:a0:69:b3:f5:6d:3d:63:53:a0:99:86:73:35:55:4b:1b:63:
50:b3:84:de:9f:a0:e4:f9:fd:e7:8b:f2:e1:53:45:52:b4:60:
18:1d:ee:7f:06:30:c3:1f:20:dc:80:45:3a:96:3b:62:d0:f0:
c8:18:c4:0e:00:82:3d:e5:6b:96:cf:ed:2f:e1:38:77:73:44:
c6:df:ed:fb:0f:00:21:33:1e:16:6b:8d:79:57:d1:0d:4b:30:
7a:9a:08:6a:3e:42:c1:d3:9c:37:f6:f1:55:b4:6a:59:a7:59:
1e:43:4b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:21 2025 by rpki-client