Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u5YDL1mNnHwLgxsrBmjQ4Ud9Ktk.roa
File: u5YDL1mNnHwLgxsrBmjQ4Ud9Ktk.roa (raw, json)
Hash identifier: AhWTUwlzudURbhjPnf7bhwMGbGC/34usQvv4dxTSRVI=
Subject key identifier: BB:96:03:2F:59:8D:9C:7C:0B:83:1B:2B:06:68:D0:E1:47:7D:2A:D9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1254
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u5YDL1mNnHwLgxsrBmjQ4Ud9Ktk.roa
Signing time: Mon 10 Feb 2025 14:14:43 +0000
ROA not before: Mon 10 Feb 2025 14:14:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 223.26.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4692 (0x1254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BB96032F598D9C7C0B831B2B0668D0E1477D2AD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:bc:c1:de:c2:d9:52:3a:b8:99:93:37:06:0f:
41:44:bb:66:af:17:bf:41:18:7c:a3:90:bb:29:47:
b6:65:ad:84:15:ee:21:0a:b7:26:8f:0c:f7:e3:f7:
72:0d:83:35:6a:d2:e6:ed:f0:7c:4f:c8:e9:36:aa:
70:60:3b:13:03:52:68:8d:a6:18:fc:81:89:b8:11:
8a:0d:63:fb:b5:97:7f:1f:34:da:a9:55:83:1e:65:
73:83:c0:03:da:64:ac:5e:e9:b3:3f:92:42:91:5e:
02:cb:27:8e:0e:6d:ae:4c:75:fb:66:28:0b:33:0c:
92:2a:0e:09:1f:ee:44:15:3a:3c:d3:d5:38:49:4b:
cf:94:51:76:2e:dc:bb:4b:d5:2d:ff:bc:a5:1b:d7:
e8:d2:57:5d:c2:94:7c:26:35:e5:d9:6d:a1:90:70:
c6:6d:48:f1:93:b5:02:18:04:b7:a9:13:7d:ec:a3:
22:3e:16:c1:9e:a7:cc:4c:d3:c2:42:68:87:28:c5:
7b:32:01:3d:d3:98:bd:7a:f9:f4:ea:cf:26:5b:04:
d1:4c:42:8e:91:a2:f7:af:79:e0:01:05:6e:f7:b2:
2c:47:b0:75:28:e3:39:6a:9b:fd:13:d4:81:c5:ef:
c8:55:db:1a:75:ce:6a:04:f1:76:01:d1:08:ce:5f:
17:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:96:03:2F:59:8D:9C:7C:0B:83:1B:2B:06:68:D0:E1:47:7D:2A:D9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u5YDL1mNnHwLgxsrBmjQ4Ud9Ktk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.80.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:19:9f:78:6c:bd:a3:a9:ad:ff:cd:57:8a:1f:91:d1:43:86:
f1:49:8b:18:ec:87:ee:bc:37:5c:b9:3a:71:ea:29:ab:07:61:
8b:7a:6e:ef:3c:d2:ef:75:59:e7:d0:6c:2e:ee:11:ea:23:ba:
d8:0e:09:83:49:34:a4:7e:d4:d8:ce:22:be:bd:9e:23:bb:1c:
a8:20:d2:1d:7f:c9:61:4e:f4:48:13:19:21:66:17:9c:d5:5a:
68:31:41:13:5a:4b:91:ab:34:97:e6:c3:05:b3:9b:09:f8:83:
7e:18:49:99:60:f9:86:2d:b8:b2:ea:59:f6:c2:7d:03:af:25:
bd:8f:62:8e:fc:0b:78:42:7b:67:7b:68:b8:4b:89:a8:8b:5f:
a3:66:fb:38:a0:de:63:eb:16:f5:b4:2b:65:66:5f:3d:0d:5f:
a3:8e:54:37:22:87:05:6e:b1:4b:ac:e0:73:e0:b1:45:aa:0d:
2a:9a:bc:af:85:9a:ba:39:b4:5c:69:26:42:a2:2c:b8:62:36:
fb:c8:2f:70:f5:74:ad:1b:4d:56:d4:3b:13:b7:2c:d5:84:e8:
f3:0b:67:6d:3a:cc:30:64:88:74:cd:92:42:64:0a:e7:db:25:
7a:0b:76:94:5c:0e:e3:81:0f:2f:60:0b:f9:80:b3:81:e8:5c:
c9:73:71:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:57:36 2025 by rpki-client