Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8-rxMqkULh47bPIffj0drsu_USc.roa
File: 8-rxMqkULh47bPIffj0drsu_USc.roa (raw, json)
Hash identifier: OHw0xOKvEooA7+BwFNMbZANLAsHKATuQuA+ShbxqYXQ=
Subject key identifier: F3:EA:F1:32:A9:14:2E:1E:3B:6C:F2:1F:7E:3D:1D:AE:CB:BF:51:27
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12B1
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8-rxMqkULh47bPIffj0drsu_USc.roa
Signing time: Mon 10 Feb 2025 14:15:08 +0000
ROA not before: Mon 10 Feb 2025 14:15:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10133
IP address blocks: 203.163.222.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4785 (0x12b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F3EAF132A9142E1E3B6CF21F7E3D1DAECBBF5127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:27:11:82:46:ea:02:45:60:38:b0:ff:12:45:
e5:10:a2:91:7b:c0:4c:82:c2:db:2d:c4:7a:d7:cc:
f4:14:c8:ca:8c:34:a9:d1:de:30:ce:95:e9:4f:ea:
24:d0:51:86:bd:01:76:39:40:41:03:a9:89:96:be:
0a:95:be:2c:99:24:0e:f7:f5:bd:fe:57:e0:3a:f5:
10:1b:c6:41:16:08:c5:43:e2:f4:5e:08:2a:c2:8e:
04:cb:fc:e3:d8:91:48:82:37:2c:5e:f6:fd:0f:d0:
84:17:bf:c4:69:81:cb:70:cc:be:65:e4:99:c9:9a:
57:b8:64:1e:49:52:75:e7:87:eb:4e:59:fb:2e:41:
7c:3b:1d:f7:26:b9:aa:2c:ee:ca:88:62:cc:d2:ce:
7d:59:b4:8a:b2:8c:16:5e:5a:42:32:7a:27:c9:8e:
dc:a0:b9:b7:46:92:44:1f:e4:54:04:18:92:6f:5a:
52:65:ad:5b:49:74:f3:b7:da:e3:f9:73:94:1f:ef:
8d:47:b0:11:5a:c1:a7:4a:69:27:14:f1:e6:ee:c2:
74:10:e9:cb:db:af:98:51:a8:6e:94:6f:0a:32:72:
c6:f8:40:ed:63:dd:33:aa:c1:92:ba:f0:73:45:96:
95:c5:d3:c8:d5:cb:82:6d:5d:b7:6a:6a:c4:7a:98:
64:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EA:F1:32:A9:14:2E:1E:3B:6C:F2:1F:7E:3D:1D:AE:CB:BF:51:27
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8-rxMqkULh47bPIffj0drsu_USc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.222.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:47:2b:f4:29:eb:e5:8f:0f:c6:e3:a9:b6:0d:48:f1:19:35:
70:94:26:53:49:fe:d7:a3:c7:01:ce:54:ef:ad:2e:3e:f8:56:
dd:bf:e6:9f:8a:44:c3:7e:92:ea:dd:7c:e0:39:84:90:c5:b0:
e6:06:ee:78:01:66:5f:86:46:cd:41:ab:4f:f8:9a:c3:5e:1b:
b0:bd:0c:44:6c:ac:2c:51:30:15:d4:6f:b6:58:b6:ba:11:e6:
53:07:11:e1:4f:09:b0:d3:7a:fa:40:41:8f:e8:cd:6e:f1:d6:
8f:bd:1a:9d:aa:b9:90:10:5c:55:38:02:f4:5d:a6:74:dd:56:
61:a8:22:83:20:00:73:b6:51:99:2c:13:34:0d:d7:96:fc:45:
7f:a8:3a:a4:7d:42:df:db:ed:ae:0c:fc:10:0a:da:a6:68:d2:
ef:92:83:38:b0:1b:73:6d:b6:91:3f:1f:e5:d7:62:84:00:7d:
8b:3b:db:ac:b0:ab:46:2a:be:f1:63:84:fa:fc:e7:fc:dc:21:
47:a6:4c:92:32:96:19:e3:ab:f3:2a:84:c1:04:ae:b5:86:52:
4b:6b:39:71:06:f7:b6:cd:8f:39:16:a9:85:7e:d6:ff:df:2e:
4d:e5:1e:06:9c:ae:7f:13:23:0f:d6:de:9c:18:9b:fe:1e:6d:
24:4e:64:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:39:38 2025 by rpki-client