Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jw9PSJtX0UJFA_ncDjPFS-TKeOY.roa
File: jw9PSJtX0UJFA_ncDjPFS-TKeOY.roa (raw, json)
Hash identifier: PynIfzTUFNFuAwZawEt9qiZOtpbWA5xLodeU+t5e1M4=
Subject key identifier: 8F:0F:4F:48:9B:57:D1:42:45:03:F9:DC:0E:33:C5:4B:E4:CA:78:E6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1299
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jw9PSJtX0UJFA_ncDjPFS-TKeOY.roa
Signing time: Mon 10 Feb 2025 14:15:02 +0000
ROA not before: Mon 10 Feb 2025 14:15:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4761 (0x1299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8F0F4F489B57D1424503F9DC0E33C54BE4CA78E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1c:3c:b1:4c:2f:0f:3e:78:a7:47:0a:d0:0e:
ca:f1:55:a9:c5:d2:df:a5:81:e5:e8:1c:36:71:2f:
c0:d7:00:2c:3d:59:22:bb:bd:04:78:ea:66:90:53:
07:ea:b8:fc:36:43:16:7e:9e:9a:ee:dd:66:42:5c:
dc:ad:7e:25:4f:f7:38:59:04:a6:b2:33:3a:c1:9c:
52:fe:6d:9c:90:99:c5:78:88:b3:22:c3:32:0f:3f:
04:06:7e:fa:ee:cf:76:41:c4:57:3a:10:e1:02:fc:
3f:b6:dc:1b:df:15:ae:85:17:e7:45:05:87:47:a9:
d4:4b:de:fa:a0:01:62:9a:58:f5:53:58:2d:77:65:
6f:62:37:94:10:0a:0f:b4:db:ae:ae:32:58:10:e2:
6f:2d:23:6b:4a:06:09:be:0b:c4:8c:fe:a9:4b:1f:
0f:cf:82:96:b2:92:7c:c3:dc:be:ea:1f:b9:51:78:
bc:65:9b:ed:12:5c:ac:45:aa:c4:58:01:af:13:e6:
a8:9e:1e:2e:a3:e3:32:fb:99:74:e1:71:86:69:b6:
c9:66:b3:24:00:4b:20:cf:74:f1:06:a0:0b:f2:c3:
50:34:61:cd:d0:15:1e:54:50:78:5b:0e:46:b8:56:
12:af:a5:9b:2c:e4:cc:40:66:69:ca:5e:6b:a5:e2:
2c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0F:4F:48:9B:57:D1:42:45:03:F9:DC:0E:33:C5:4B:E4:CA:78:E6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jw9PSJtX0UJFA_ncDjPFS-TKeOY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.96.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:e8:d8:8f:ec:b9:17:80:93:e1:76:56:84:e7:69:2d:85:6f:
96:35:11:7f:58:74:89:45:c9:38:30:66:c4:55:7c:f9:07:94:
d7:4b:ec:6d:0e:af:6e:7e:0f:c4:b7:aa:50:f7:b7:41:64:fe:
be:62:42:ed:4c:7b:da:88:9e:54:7b:6d:e2:54:63:fa:b2:52:
c6:db:5f:ec:09:6f:60:22:49:a8:2c:63:37:8d:7a:44:94:b9:
c6:16:5a:97:7a:ae:64:b0:6e:e6:52:e9:e3:91:23:64:86:f2:
f4:6f:d1:59:50:0d:6b:fa:f5:93:82:ed:84:fc:d2:ba:ee:aa:
2e:8a:64:d3:7d:1c:44:16:0f:6b:fa:5c:11:7a:6d:3c:15:7c:
b6:78:6b:87:61:e0:73:90:4f:dd:03:a7:c6:2a:03:7c:e3:22:
2b:5c:5c:33:ec:bb:c2:fb:cb:1e:56:87:ef:3f:b1:36:d6:fd:
78:40:99:b6:ff:34:02:b3:3b:86:6c:dd:3e:6b:16:05:18:d2:
6e:6c:65:cc:0e:3a:00:9f:fe:ad:86:8b:13:42:e6:c7:2d:62:
5e:aa:16:d2:6a:ad:bf:a0:8f:e4:eb:fd:38:80:23:ae:78:7b:
73:89:e4:c0:4c:79:7e:f6:01:3c:88:6e:8c:f4:a0:1b:25:8b:
2d:b8:9d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:42:01 2025 by rpki-client