Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u5dB-fTQ022-Sz3Mtx_BzPZbhGU.roa
File: u5dB-fTQ022-Sz3Mtx_BzPZbhGU.roa (raw, json)
Hash identifier: ARy/9ygPEuD1fkRu1zp4/VL82a2eWI+FpJjKGpgGtOg=
Subject key identifier: BB:97:41:F9:F4:D0:D3:6D:BE:4B:3D:CC:B7:1F:C1:CC:F6:5B:84:65
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12BA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u5dB-fTQ022-Sz3Mtx_BzPZbhGU.roa
Signing time: Mon 10 Feb 2025 14:15:10 +0000
ROA not before: Mon 10 Feb 2025 14:15:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4794 (0x12ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BB9741F9F4D0D36DBE4B3DCCB71FC1CCF65B8465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:eb:0b:b9:ef:a3:10:c6:94:0f:05:ce:fd:33:
2c:dc:2a:42:26:81:cc:7b:90:55:4c:e0:94:1f:16:
53:51:fe:4f:ca:11:46:c3:fb:ac:e5:2d:3a:59:48:
2d:fd:b7:f2:c0:47:97:d5:db:97:c6:aa:07:84:c1:
e6:70:ae:9b:49:2f:7c:48:6d:cf:ab:61:d5:be:4c:
b0:4a:11:c2:95:0e:ab:29:fd:73:5e:6c:89:35:7a:
e2:05:53:27:08:c4:91:eb:07:6e:b4:e3:0f:61:0c:
b8:58:9c:1a:fb:29:54:75:51:b6:97:19:d6:3f:d8:
d3:0c:be:f7:35:67:62:5b:de:26:26:70:a5:e7:fa:
75:4b:c9:86:d8:56:a5:e1:60:fa:72:7b:15:eb:d7:
ae:bb:d2:60:65:ad:64:9e:b6:0b:f1:47:02:5f:1c:
70:d8:11:74:67:94:1c:d7:c2:59:32:b7:57:b1:66:
2a:da:d8:a8:4f:45:ea:65:14:aa:64:39:7c:d9:a8:
ee:3b:bc:5f:9d:5a:dc:0a:db:82:3d:5d:b8:95:2b:
49:ce:9d:59:8c:a7:ca:fb:ce:de:8d:34:56:ec:38:
2e:11:2c:58:18:75:99:2a:6b:33:a9:29:09:91:8c:
62:dc:19:28:bc:cc:32:c1:c9:71:42:be:16:e7:d3:
7e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:97:41:F9:F4:D0:D3:6D:BE:4B:3D:CC:B7:1F:C1:CC:F6:5B:84:65
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u5dB-fTQ022-Sz3Mtx_BzPZbhGU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.128.0/17
Signature Algorithm: sha256WithRSAEncryption
09:8c:be:1d:35:20:b1:be:4b:2c:fd:91:91:e1:6a:3f:9b:b6:
6f:ab:00:35:b8:08:f4:f8:ed:0e:e1:94:7e:d5:e6:90:d4:83:
be:53:04:52:c0:f9:93:e5:ac:75:92:b6:2b:ea:b7:69:e4:8a:
80:33:f0:1a:87:f0:0e:24:5d:a5:78:ca:e7:63:eb:23:c5:7a:
1c:23:3d:f2:ec:4c:5f:ce:bf:0b:56:ae:1d:f7:7b:5d:7f:f1:
2b:4c:cf:59:cd:2e:59:f6:30:f0:2f:07:b4:bf:11:74:ea:5b:
1e:01:0a:0d:40:0a:74:29:25:fa:46:88:22:d9:be:03:0a:00:
4e:d6:fc:b8:b5:40:1f:f6:b8:d2:a2:ed:82:fd:a7:57:e9:4e:
6b:e8:3f:4e:e5:7f:e0:00:39:7d:b2:91:c5:0d:14:a0:00:94:
9b:f6:fb:a8:87:d4:35:1d:11:1a:ff:04:d2:29:bf:cf:ee:b9:
d0:d4:b6:79:18:24:34:e8:87:41:52:fd:ab:0a:f3:fb:85:70:
fd:90:33:c6:86:d5:2b:85:cc:70:6c:07:9d:9d:b2:7a:3e:92:
2f:2d:57:6e:fb:31:b5:33:6a:75:17:d1:4f:5f:f0:84:f2:e8:
fe:aa:33:6f:46:d8:cd:07:9f:31:42:08:f6:73:a0:13:c1:55:
a3:cb:82:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:29:04 2025 by rpki-client