Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gwZJWdrwmkgf3B0mWjQi9ZJ9BoM.roa
File: gwZJWdrwmkgf3B0mWjQi9ZJ9BoM.roa (raw, json)
Hash identifier: s6eIROVWThacaTvjgDOzCs6rFxoKXhiFbQini7+pB+g=
Subject key identifier: 83:06:49:59:DA:F0:9A:48:1F:DC:1D:26:5A:34:22:F5:92:7D:06:83
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12A7
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gwZJWdrwmkgf3B0mWjQi9ZJ9BoM.roa
Signing time: Mon 10 Feb 2025 14:15:06 +0000
ROA not before: Mon 10 Feb 2025 14:15:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4775 (0x12a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=83064959DAF09A481FDC1D265A3422F5927D0683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:bc:6d:47:e1:b2:09:59:19:67:85:7a:e1:f2:
54:77:45:5c:b4:7a:c9:c0:83:df:da:0c:fa:04:4d:
7c:b4:68:3a:1a:fb:e7:41:82:f8:f5:b5:37:bd:e1:
42:4b:8e:d7:7d:6d:cf:14:f9:c6:93:5a:47:b9:af:
27:73:30:b9:21:27:dc:d5:c3:5f:47:65:4a:59:2c:
32:5b:e3:bd:a6:bb:37:20:b3:81:75:42:56:69:30:
89:fa:57:b5:90:75:ec:1d:2c:26:ce:01:a1:fa:30:
5c:01:19:c6:82:f1:63:6c:b3:91:70:de:0d:71:64:
de:52:95:06:b0:5c:99:55:97:be:a0:75:33:d8:dc:
c0:a6:96:2e:03:fe:28:ed:ef:a3:68:7e:bd:c6:fa:
8b:07:e8:25:33:5c:a4:2e:6c:6f:d9:08:6d:8e:94:
d6:c6:40:a1:43:5d:17:71:4b:0d:2c:36:2a:4b:23:
b4:63:0c:f7:8d:5a:90:f2:d3:b1:3c:6b:26:82:a8:
62:de:ce:e1:3b:41:9d:f6:51:fe:c7:b6:95:5e:ab:
0a:aa:02:bc:5e:1f:bb:91:9a:dc:e8:be:fc:ba:7c:
4d:43:2e:85:f9:de:a5:c6:e7:cb:2f:b5:c1:66:bc:
02:fd:3b:e0:e5:12:8d:ea:33:c5:df:3e:0b:08:01:
7d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:06:49:59:DA:F0:9A:48:1F:DC:1D:26:5A:34:22:F5:92:7D:06:83
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gwZJWdrwmkgf3B0mWjQi9ZJ9BoM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.232.0/22
Signature Algorithm: sha256WithRSAEncryption
90:ff:d4:dc:ae:ee:7a:8f:15:1c:b0:2a:50:b0:1f:ae:4b:55:
21:19:c5:21:f5:fe:fc:54:58:a8:6a:c7:71:0d:90:29:07:d8:
99:d5:f9:ee:e9:3d:68:73:83:85:1f:71:ad:88:03:6f:ae:60:
3d:47:82:40:d9:75:ee:bc:c1:75:ea:59:5c:26:16:5a:42:6b:
99:b7:6b:f3:aa:48:79:e5:6e:7b:ac:ac:d2:d9:55:70:05:10:
e9:0f:07:ca:f3:dd:72:ff:a5:b1:37:bd:00:03:47:2b:fa:c4:
1b:d9:bf:f4:cc:2d:6c:c0:a1:bf:8c:20:8e:c1:28:f9:a5:c8:
39:3a:52:d0:a9:e1:d9:64:f9:e5:33:42:2d:38:5c:d0:65:1b:
7a:d1:d4:df:5f:be:9a:ce:c5:93:55:8e:52:a8:d5:63:d0:ce:
dc:4d:23:16:e1:18:ae:68:a1:bc:3b:1f:dc:c4:82:8d:9d:8b:
aa:c2:7d:30:86:dd:1b:cd:aa:a1:f1:29:82:21:02:ba:c6:99:
88:be:6f:8c:86:09:47:a8:d5:f4:49:86:55:af:de:d7:f8:f2:
f9:bc:3e:75:68:62:5a:1a:58:91:5f:23:88:f8:dd:3b:bd:5a:
be:f3:fe:87:da:df:e7:9f:a5:63:b1:04:9e:fb:7e:f9:f2:42:
8a:5e:3e:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:08:01 2025 by rpki-client