Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tXvqTPaWKYJMhEWFDXv_eH8TuyY.roa
File: tXvqTPaWKYJMhEWFDXv_eH8TuyY.roa (raw, json)
Hash identifier: E1hBYIoG0qjVDOEVF+qGmZMBHoRzLhlIcQesmdxHB+Y=
Subject key identifier: B5:7B:EA:4C:F6:96:29:82:4C:84:45:85:0D:7B:FF:78:7F:13:BB:26
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1281
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tXvqTPaWKYJMhEWFDXv_eH8TuyY.roa
Signing time: Mon 10 Feb 2025 14:14:56 +0000
ROA not before: Mon 10 Feb 2025 14:14:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 150.117.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4737 (0x1281)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B57BEA4CF69629824C8445850D7BFF787F13BB26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:57:51:c7:f8:0e:17:d0:7b:4e:d0:90:45:f2:
22:c7:ee:3c:ac:0d:26:0a:86:c7:ca:36:74:3a:43:
6d:91:f5:bd:c3:df:b0:b1:da:5d:94:80:90:d1:da:
3a:38:c2:16:cd:15:ca:1f:69:19:99:bc:6f:3e:7c:
1b:98:65:99:68:65:4c:9e:67:0a:70:44:c4:8d:1f:
1b:b7:5c:4d:73:83:29:f9:9a:b9:69:0b:4d:ee:fd:
24:2b:74:cf:c5:f0:aa:f4:29:96:1f:fe:e6:c3:02:
f6:e8:a2:78:fa:df:03:23:73:92:01:2d:60:fd:78:
f7:d0:c0:cb:e2:a3:1d:c8:ea:ba:31:80:f3:55:b6:
c4:31:13:d9:99:fd:04:92:a3:f8:be:67:c5:f8:27:
27:24:dc:d0:05:9b:ad:ba:3e:87:3b:60:83:d9:96:
11:ba:3c:bf:f6:7d:77:4d:65:88:a7:7b:74:d9:8e:
7c:b9:81:b5:3a:af:4a:1f:c6:87:72:48:97:ad:02:
bd:8b:2c:08:a6:e4:5e:a8:60:89:d4:79:65:18:81:
6a:7e:89:85:8f:f1:51:89:04:ca:82:1d:b2:14:54:
90:5c:ad:ad:e8:a6:70:84:4a:0a:32:7a:c8:8d:47:
35:5d:03:93:4f:1d:15:2f:d1:e0:57:b6:d4:87:80:
44:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:7B:EA:4C:F6:96:29:82:4C:84:45:85:0D:7B:FF:78:7F:13:BB:26
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tXvqTPaWKYJMhEWFDXv_eH8TuyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/19
Signature Algorithm: sha256WithRSAEncryption
53:97:77:75:28:d7:cc:35:bd:71:8f:fc:c3:90:75:b2:99:50:
c3:db:33:be:b8:d0:15:61:1b:23:a5:13:47:ee:0c:34:35:7d:
ce:13:91:8f:d7:b1:22:fc:c6:05:b9:0e:42:f8:b9:95:7a:13:
6d:78:05:8d:40:a5:97:a9:26:45:77:21:f7:39:6d:dc:67:2e:
22:18:20:c6:e3:cb:ab:0c:95:57:6e:43:ca:75:27:c2:bc:f1:
47:fd:ad:b1:38:a0:a4:14:21:89:f0:f4:51:b6:2d:e8:64:f5:
a6:c0:1b:87:a1:d6:67:dc:43:08:49:af:2a:3c:c2:bc:98:f5:
fa:e0:22:98:b7:47:90:ea:53:25:4f:23:cf:07:6c:db:17:67:
b2:9f:c8:35:37:a5:d9:8a:df:01:60:88:63:7c:80:dd:e3:84:
b2:b2:5f:df:08:3c:e1:ac:2b:1b:79:56:de:56:84:f0:4e:64:
d7:09:b5:0d:fa:9a:00:b6:1b:aa:1a:d1:71:ec:cd:4d:04:e9:
03:8d:10:5a:95:3d:30:3a:1d:31:ad:38:a4:32:60:8e:24:6c:
3c:c6:7c:11:3b:cf:f1:2d:ff:bd:57:ed:68:a0:80:a6:ed:28:
b5:c7:94:b2:79:f1:af:75:2f:65:ec:4a:65:66:2d:80:fa:92:
a9:bf:38:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:39:06 2025 by rpki-client