Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1YxTXSQzPxPhMO_neID3jGqbI9Q.roa
File: 1YxTXSQzPxPhMO_neID3jGqbI9Q.roa (raw, json)
Hash identifier: jDpnfrkxseNFQsby358vEHYQbNtJNJIog2nI+IP0hDw=
Subject key identifier: D5:8C:53:5D:24:33:3F:13:E1:30:EF:E7:78:80:F7:8C:6A:9B:23:D4
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11B9
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1YxTXSQzPxPhMO_neID3jGqbI9Q.roa
Signing time: Mon 26 Aug 2024 05:11:04 +0000
ROA not before: Mon 26 Aug 2024 05:11:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 150.117.160.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4537 (0x11b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D58C535D24333F13E130EFE77880F78C6A9B23D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:88:c3:86:97:48:11:35:d0:db:67:1a:6b:4a:
20:72:2f:05:11:48:a4:a0:d8:b6:79:ae:6e:d8:0e:
44:b7:e0:74:4e:26:08:c8:d5:a7:01:62:20:e1:49:
54:e6:93:ec:1c:b9:a5:40:85:3b:85:37:60:ca:08:
89:08:40:73:c2:4f:22:e3:4b:36:d3:9b:bb:c0:0c:
d1:e1:42:aa:af:57:6a:e0:dc:00:5a:d7:70:c4:54:
7f:ab:5d:4c:33:f5:78:3d:5d:58:46:9a:b3:3c:45:
35:19:ca:b9:c5:9b:36:0f:93:a5:8c:2b:a7:95:a1:
87:50:2e:e9:f7:b0:86:58:cb:d0:41:e3:bf:27:e5:
2c:32:f3:30:ff:cf:f8:d9:98:f9:22:da:3a:51:cb:
87:75:cc:07:d4:0a:7f:56:e6:3d:f3:95:19:36:6d:
0d:4a:1b:f3:02:8c:4e:f3:98:6d:62:87:58:a1:0f:
eb:f2:35:30:31:09:82:71:ee:16:a1:64:14:d2:33:
d4:3c:73:74:20:08:ee:6f:5e:b4:4f:70:2e:c6:58:
5b:e6:c7:23:ef:43:d0:0e:53:00:9c:62:66:b3:20:
10:82:ac:da:3f:4d:8c:b9:8d:34:8c:78:4d:92:8e:
7d:bf:d2:e0:be:ca:f3:13:1e:45:96:af:62:21:3e:
de:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8C:53:5D:24:33:3F:13:E1:30:EF:E7:78:80:F7:8C:6A:9B:23:D4
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1YxTXSQzPxPhMO_neID3jGqbI9Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.160.0/21
Signature Algorithm: sha256WithRSAEncryption
9b:d1:2a:7c:2e:c7:61:31:cb:7b:21:75:c5:12:f6:e2:3b:20:
65:8f:4c:28:b0:13:6b:40:af:26:ea:c3:fe:7f:b0:80:c3:75:
42:4e:8a:96:95:cf:8e:59:8f:fb:f0:28:be:c5:07:12:a8:5e:
2c:2e:00:6f:f3:df:f5:14:b9:62:3c:5c:39:7f:ce:3d:04:fb:
33:9b:55:6d:87:b7:2f:ff:f9:d7:94:cc:69:e2:65:0c:53:87:
95:87:7b:8d:00:cf:35:a3:f2:68:df:25:17:4e:94:a8:68:23:
46:60:06:74:7f:19:0a:b9:9b:eb:85:f2:ba:78:0c:47:cd:a2:
15:a4:19:6a:88:48:ad:a4:d6:b3:6b:82:5c:26:cc:3e:91:b1:
cf:5b:46:9e:a5:0f:b5:2b:c4:68:f9:60:e1:c5:88:62:62:30:
82:ac:f4:f4:c2:7d:19:b3:0c:9c:ae:ca:1a:c6:d4:57:62:b5:
fe:a8:62:6e:f6:d7:4d:48:06:a3:fa:73:21:b5:f8:55:16:29:
cd:d9:3a:e1:31:45:74:7e:ae:f3:e9:19:d3:56:24:d1:00:79:
13:61:13:81:9e:c6:f2:6c:4c:b7:8b:59:d3:96:33:31:cd:fc:
1d:bb:11:9e:ff:bf:53:df:fe:ff:f3:40:01:ac:92:bf:49:5b:
bb:33:d2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:44:19 2025 by rpki-client