Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0p0zy7_xAiwhGmnvRCmabbCMBTY.roa
File: 0p0zy7_xAiwhGmnvRCmabbCMBTY.roa (raw, json)
Hash identifier: mrAMPlx0tPkGhePPew0N8hFyylVw3cPw1riok+M4aNg=
Subject key identifier: D2:9D:33:CB:BF:F1:02:2C:21:1A:69:EF:44:29:9A:6D:B0:8C:05:36
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 116F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0p0zy7_xAiwhGmnvRCmabbCMBTY.roa
Signing time: Mon 26 Aug 2024 05:10:46 +0000
ROA not before: Mon 26 Aug 2024 05:10:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 118.150.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4463 (0x116f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D29D33CBBFF1022C211A69EF44299A6DB08C0536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:36:db:06:22:e8:c5:10:d2:1c:ca:b9:f5:
f6:50:3f:d7:ee:a1:8e:ec:ef:1e:3d:d1:fa:59:21:
c8:dc:5c:08:e2:22:80:5e:d3:36:92:a9:2e:2d:09:
c6:67:86:fb:9e:ab:84:c8:ce:eb:22:b4:31:49:2e:
13:82:18:52:6c:1c:25:80:0f:b1:e5:22:cb:5c:49:
af:f3:04:7d:47:8d:9d:80:4a:6a:2e:c3:35:e4:44:
09:79:4e:1b:2d:17:7a:41:71:0a:12:7b:ae:c7:c4:
6b:5d:e8:ae:d8:97:bb:15:82:16:d1:e4:69:3a:03:
0f:68:b2:7a:ca:c5:6e:b9:4d:30:d6:f5:80:b1:03:
59:26:f0:fa:05:fc:aa:82:5c:66:24:27:7b:7c:11:
18:ad:73:24:dd:06:ff:86:6a:21:af:b9:54:15:a1:
c9:a3:5f:aa:61:12:31:0f:71:bb:f0:9a:f0:4c:39:
fa:d0:8b:43:35:17:e9:00:6c:f4:65:7f:ed:34:fc:
75:5b:91:dc:91:8a:6a:aa:51:38:d0:4e:ec:29:02:
7d:67:35:e8:9b:b9:ed:83:8b:2b:63:a3:a1:43:b4:
8a:fa:0d:92:ad:51:41:8d:96:fa:bc:90:68:77:9a:
8a:91:47:bf:5b:96:12:e4:f6:fb:c1:1e:c8:7f:b0:
00:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9D:33:CB:BF:F1:02:2C:21:1A:69:EF:44:29:9A:6D:B0:8C:05:36
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0p0zy7_xAiwhGmnvRCmabbCMBTY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.240.0/21
Signature Algorithm: sha256WithRSAEncryption
aa:5d:36:f8:61:9a:4c:53:92:96:a5:25:83:82:47:b0:39:a4:
5b:86:05:3d:d9:bf:d4:b6:5c:da:93:66:b1:c7:ba:c2:a9:d5:
d0:61:d2:50:4b:f9:52:97:5a:2d:41:75:68:f6:d7:e1:19:62:
33:86:b0:1d:41:9c:72:81:af:0d:03:5d:51:4b:8e:92:94:4d:
6c:a2:7f:05:30:b8:f1:bb:69:8c:95:48:90:11:81:89:fa:39:
95:95:fc:24:ff:33:9e:73:a6:84:b0:7e:2e:c4:3e:1d:d2:8f:
02:2e:d8:9f:09:4e:29:0b:49:74:88:13:d5:e3:0c:f2:1c:f4:
56:62:3d:e4:7b:d9:14:94:a1:e4:76:28:c0:e5:83:1f:d2:dc:
dc:77:76:11:29:c6:11:53:c7:da:4a:49:5f:08:42:1b:f1:0c:
64:f4:6a:06:ff:82:48:e1:96:6f:a8:0a:80:15:12:85:c7:2b:
a5:b9:b4:3b:19:2c:d2:4a:40:44:c1:bf:8d:2a:fa:15:cf:3a:
cf:63:e8:6a:e1:fc:9d:03:e8:b5:d4:55:5c:31:a6:e4:7e:53:
e6:28:2f:ac:e4:ae:97:81:bb:6d:99:52:f5:b4:ce:38:f8:df:
c2:79:1e:10:20:36:8a:89:a0:f7:54:91:b7:35:a7:15:29:44:
09:2a:5b:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:59:43 2025 by rpki-client