Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AE_q3DBo3sjkgChK1st2jbMLPV0.roa
File: AE_q3DBo3sjkgChK1st2jbMLPV0.roa (raw, json)
Hash identifier: 9QpiXAE3Ms02xdxJwqE5uYWGhxp3tzssWPQfjB4enuY=
Subject key identifier: 00:4F:EA:DC:30:68:DE:C8:E4:80:28:4A:D6:CB:76:8D:B3:0B:3D:5D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1265
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AE_q3DBo3sjkgChK1st2jbMLPV0.roa
Signing time: Mon 10 Feb 2025 14:14:47 +0000
ROA not before: Mon 10 Feb 2025 14:14:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 150.116.0.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4709 (0x1265)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=004FEADC3068DEC8E480284AD6CB768DB30B3D5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7f:82:7d:7a:7b:76:fe:42:58:72:48:c6:4f:
57:89:1d:ac:ed:be:c0:ab:f9:3b:b8:5d:3f:cc:83:
e0:52:77:62:05:5e:d9:34:ab:43:f4:78:f4:ad:49:
00:74:fe:08:d2:21:39:48:e0:19:47:2f:30:93:95:
b2:d8:3b:ff:2f:28:59:8f:aa:43:60:65:6b:8a:70:
75:35:a0:4e:5f:8a:0b:51:20:bb:fd:5b:2a:e3:c1:
72:ec:43:87:36:44:5d:3a:4b:32:62:35:1d:27:d9:
2a:80:6b:02:c6:31:b3:ec:99:7b:a2:d3:bb:2f:8d:
81:a8:08:ab:33:01:c9:bf:21:41:07:f1:d7:e9:65:
5d:2b:34:af:1f:6e:61:49:b3:c2:0e:8f:b9:88:4d:
e1:9f:31:8d:2e:95:f7:98:c5:36:cd:0f:59:cf:fa:
d8:d7:b6:3c:1e:bc:73:9c:3b:ea:70:cf:6b:7d:ff:
b8:e2:09:17:45:b5:eb:07:9b:26:5e:28:38:36:fb:
4a:2a:42:ad:95:bc:9c:62:43:5b:62:d6:e5:91:b7:
97:68:98:4c:97:93:bb:8c:0e:fc:c3:66:1a:2a:86:
02:c1:bd:37:38:56:6e:59:ce:32:1f:27:5b:a3:e8:
91:53:53:c9:6d:2a:18:d5:15:0b:10:fb:eb:04:92:
17:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4F:EA:DC:30:68:DE:C8:E4:80:28:4A:D6:CB:76:8D:B3:0B:3D:5D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AE_q3DBo3sjkgChK1st2jbMLPV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.0.0/21
Signature Algorithm: sha256WithRSAEncryption
72:56:0a:6e:8f:d2:93:71:86:66:2f:ac:ad:05:b0:71:1b:24:
7b:38:f1:ad:3a:d9:a4:6c:71:90:37:3e:15:9f:9f:ac:8e:49:
bc:19:0e:69:d5:b4:25:e1:c8:ec:5e:10:7b:e9:a5:3c:9b:c0:
af:18:15:b7:63:60:dc:74:33:cb:92:84:fc:90:b3:a0:60:22:
02:cf:0b:1c:a1:91:8c:8b:7b:7f:d6:c4:6b:86:a4:f7:d3:6a:
b8:37:e8:07:df:b0:b4:6e:a9:59:b8:c0:7a:c6:7c:4d:65:0f:
bb:79:bf:bb:88:c9:b0:99:0f:c5:68:4d:22:04:b1:c6:fe:ec:
92:83:de:d1:dc:97:69:85:9b:7b:0b:8f:d0:3b:a6:18:cd:81:
cb:9b:45:b7:68:f3:96:82:32:02:47:69:2c:86:73:0c:ed:7c:
bf:a6:3b:57:e3:22:ce:1c:9f:6a:9a:37:39:29:f1:8b:2c:40:
b9:ca:cb:36:25:71:cc:17:0e:8c:60:37:75:dc:c8:b5:ce:0a:
1c:d1:16:aa:87:59:90:8d:5c:20:45:07:60:6b:d9:79:18:97:
80:88:06:96:72:cd:fb:e2:9d:98:69:92:c2:05:b2:be:6c:94:
37:70:2b:80:e7:cb:f8:ac:ea:69:6f:fd:ce:39:84:34:3a:48:
88:6e:74:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:45:15 2025 by rpki-client