Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jz8RcYbj8OvmFXB2VgCGccgzsJc.roa
File: jz8RcYbj8OvmFXB2VgCGccgzsJc.roa (raw, json)
Hash identifier: 7QUxhiW5RqLp5ozgmCxytwo2Ro5+P4qNxVZWAfa2mag=
Subject key identifier: 8F:3F:11:71:86:E3:F0:EB:E6:15:70:76:56:00:86:71:C8:33:B0:97
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12A8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jz8RcYbj8OvmFXB2VgCGccgzsJc.roa
Signing time: Mon 10 Feb 2025 14:15:06 +0000
ROA not before: Mon 10 Feb 2025 14:15:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 223.26.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4776 (0x12a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8F3F117186E3F0EBE615707656008671C833B097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:47:6a:2c:e7:64:51:5c:24:b3:ac:78:6e:94:
fc:d5:45:c8:fb:a1:25:25:a9:2c:04:27:ea:8d:f2:
79:b0:11:92:d5:96:a6:7e:d0:2e:8b:8c:35:6c:0d:
b6:02:47:75:83:fc:50:9c:8b:f0:40:c0:36:83:70:
bc:94:45:dc:25:bc:4f:d7:fb:f1:bd:98:99:f6:fb:
95:a2:31:13:fd:01:2b:10:ff:0c:5a:8a:9e:f1:ab:
d1:c7:f9:0e:0b:2c:bc:d4:cb:0f:a0:a8:00:8a:df:
39:2d:42:12:f7:20:9f:e3:c3:df:01:6e:98:d2:c5:
fd:01:26:e9:ab:5c:f5:67:78:73:4a:7b:0b:72:13:
93:e5:f0:d9:29:73:37:7c:fc:86:9a:52:74:0b:a0:
d9:54:f0:5f:52:bb:c2:0e:21:0c:41:79:d9:05:f1:
be:88:b2:a2:38:9a:4b:5c:ad:ab:ca:1a:1c:f7:92:
dd:5c:bc:90:07:36:b5:5e:97:e5:2b:7d:f8:a4:47:
c1:fb:21:bc:10:1e:3b:d2:df:9c:fe:71:35:11:cd:
32:f3:5d:1c:d9:b4:d7:0d:c5:52:53:0e:f2:d3:4a:
fc:4e:fd:a3:8f:1d:17:31:29:43:69:f0:fa:f6:4f:
80:53:b6:c0:89:0f:36:12:11:e4:ae:a0:eb:ba:f4:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3F:11:71:86:E3:F0:EB:E6:15:70:76:56:00:86:71:C8:33:B0:97
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jz8RcYbj8OvmFXB2VgCGccgzsJc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.108.0/22
Signature Algorithm: sha256WithRSAEncryption
83:6c:b4:20:08:7a:27:60:db:08:29:2c:66:1b:ef:d7:33:fa:
fd:0d:9e:b4:38:86:6d:ee:82:db:36:21:40:38:e9:42:33:e5:
58:6c:81:58:12:f8:1f:36:f1:21:68:39:9f:61:51:4b:6a:f0:
34:ba:b3:76:16:33:e9:33:38:33:48:6d:68:ee:f0:20:dd:8a:
37:9a:5c:d3:39:6e:82:a0:17:78:79:55:6d:ff:b5:87:68:b4:
e7:8e:9c:a2:6d:d6:4b:15:8b:c6:31:00:bf:b4:52:0e:3a:94:
c1:88:ad:fb:7a:68:85:3c:28:c4:3d:c0:ed:d2:b2:63:70:21:
1d:30:67:68:47:82:bc:83:77:33:55:6f:8f:ab:fe:e0:64:07:
c1:63:13:cd:ff:29:10:48:b5:c4:62:ad:00:6e:aa:e6:e1:82:
e2:f9:85:07:e6:eb:15:e1:c5:ca:7c:f1:ed:c3:3d:6b:ae:32:
90:c7:51:5c:75:b4:3d:57:89:c9:6e:fc:bf:db:53:37:13:34:
b2:f9:46:cd:2a:95:c8:9f:0b:35:90:22:9a:5c:9b:3c:18:2d:
b6:43:f9:cf:f9:ea:32:b3:1a:20:31:06:bf:0c:39:ab:5a:42:
d2:93:fa:e9:c2:3a:82:13:62:67:bf:40:fa:07:d9:b6:1c:24:
8e:2a:00:38
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEqgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx
NDE1MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGM0YxMTcxODZFM0Yw
RUJFNjE1NzA3NjU2MDA4NjcxQzgzM0IwOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMR2os52RRXCSzrHhulPzVRcj7oSUlqSwEJ+qN8nmwEZLVlqZ+
0C6LjDVsDbYCR3WD/FCci/BAwDaDcLyURdwlvE/X+/G9mJn2+5WiMRP9ASsQ/wxa
ip7xq9HH+Q4LLLzUyw+gqACK3zktQhL3IJ/jw98BbpjSxf0BJumrXPVneHNKewty
E5Pl8Nkpczd8/IaaUnQLoNlU8F9Su8IOIQxBedkF8b6IsqI4mktcravKGhz3kt1c
vJAHNrVel+UrffikR8H7IbwQHjvS35z+cTURzTLzXRzZtNcNxVJTDvLTSvxO/aOP
HRcxKUNp8Pr2T4BTtsCJDzYSEeSuoOu69JHnAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUjz8RcYbj8OvmFXB2VgCGccgzsJcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9qejhSY1liajhPdm1G
WEIyVmdDR2NjZ3pzSmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQC3xpsMA0GCSqGSIb3DQEBCwUAA4IBAQCDbLQgCHonYNsIKSxmG+/XM/r9DZ60
OIZt7oLbNiFAOOlCM+VYbIFYEvgfNvEhaDmfYVFLavA0urN2FjPpMzgzSG1o7vAg
3Yo3mlzTOW6CoBd4eVVt/7WHaLTnjpyibdZLFYvGMQC/tFIOOpTBiK37emiFPCjE
PcDt0rJjcCEdMGdoR4K8g3czVW+Pq/7gZAfBYxPN/ykQSLXEYq0Abqrm4YLi+YUH
5usV4cXKfPHtwz1rrjKQx1FcdbQ9V4nJbvy/21M3EzSy+UbNKpXInws1kCKaXJs8
GC22Q/nP+eoysxogMQa/DDmrWkLSk/rpwjqCE2Jnv0D6B9m2HCSOKgA4
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:19:26 2025 by rpki-client