Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ag8hxGO1grxWsfNMVFkB5E4_6Ic.roa
File: Ag8hxGO1grxWsfNMVFkB5E4_6Ic.roa (raw, json)
Hash identifier: R71dzF7O3oskOPFtAn1jwns2MfwOVlsKYO0Yi5AlIHQ=
Subject key identifier: 02:0F:21:C4:63:B5:82:BC:56:B1:F3:4C:54:59:01:E4:4E:3F:E8:87
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12BF
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ag8hxGO1grxWsfNMVFkB5E4_6Ic.roa
Signing time: Mon 10 Feb 2025 14:15:11 +0000
ROA not before: Mon 10 Feb 2025 14:15:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10085
IP address blocks: 223.26.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4799 (0x12bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=020F21C463B582BC56B1F34C545901E44E3FE887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b0:e9:c3:09:bf:36:cf:fe:6f:df:56:24:d6:
86:2f:bb:c5:9c:b9:43:bf:42:69:36:1f:68:ec:1c:
c1:4d:72:bd:6a:df:1a:d6:32:a0:e5:e8:d2:08:34:
16:99:f0:72:fc:2a:44:49:29:94:65:3a:77:08:b1:
34:1f:5b:6f:84:80:8b:43:cf:04:ad:48:10:3a:43:
fd:53:fd:ff:4a:9a:e7:53:9e:f7:39:62:3f:d4:7e:
dc:c8:5b:99:e1:4f:56:01:9c:08:ef:08:77:15:3b:
8b:27:f7:56:75:5f:64:c7:d5:52:9b:8b:d9:34:7d:
7f:24:4f:7f:96:a7:00:d8:2e:56:57:a5:d0:35:ad:
d3:eb:07:10:f7:e2:dc:b7:4e:81:0c:3c:16:7b:b0:
d6:6e:ad:9b:df:cd:ee:af:44:ee:68:dc:bb:a0:ba:
03:9f:11:48:5f:2a:1f:03:c0:2a:27:49:ba:a5:c0:
c7:29:39:fb:fd:7e:59:4b:3a:8a:9b:d8:68:4f:6f:
3b:21:15:32:2c:c2:e0:ed:7e:42:4a:28:cb:32:97:
fe:49:5d:1f:64:99:20:24:30:24:2c:31:7c:7b:8f:
49:18:90:47:26:c5:f4:7e:96:a6:61:96:c2:0f:d5:
63:8a:34:2b:b1:5a:72:81:90:13:66:6b:19:10:9b:
38:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0F:21:C4:63:B5:82:BC:56:B1:F3:4C:54:59:01:E4:4E:3F:E8:87
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Ag8hxGO1grxWsfNMVFkB5E4_6Ic.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.96.0/21
Signature Algorithm: sha256WithRSAEncryption
56:dc:1a:c7:7f:b4:8c:e2:8c:5f:cb:a7:35:d7:3b:64:ac:dd:
c4:cf:bf:fd:c1:d2:c5:b7:39:7a:cc:73:fb:e3:f0:5b:25:b5:
d2:55:bc:bf:ce:db:91:f2:b0:09:3e:a0:1f:f5:0b:64:2c:a0:
79:7a:9e:54:23:a1:3d:4f:11:d5:15:4a:41:7b:f2:cd:f2:e8:
35:04:d9:7e:af:b6:39:44:1d:5b:d4:5d:bc:7d:99:d4:bf:b5:
24:89:07:c7:ed:66:65:72:02:1c:6a:1c:74:3c:eb:dc:ab:f8:
40:9b:64:a7:32:2e:1c:fd:4b:d7:6f:3d:64:6e:a5:94:e7:e8:
5a:9b:67:dd:ec:74:88:d5:f8:13:84:5a:22:8f:79:31:c3:9b:
ea:6e:31:d7:86:4f:66:fe:43:6b:4a:7e:01:33:fa:67:c4:65:
bf:da:86:51:a0:9f:01:20:4f:15:70:fb:ec:11:eb:07:2c:0d:
f2:b1:01:45:f1:e7:88:4a:e7:99:cb:47:60:82:2b:6a:11:66:
27:8e:a8:57:4c:62:64:82:29:5d:db:43:5d:06:7c:e3:3e:51:
1c:c1:f5:44:0d:0f:5b:e4:d5:e3:a1:dc:e8:e4:2c:d4:e2:2d:
6c:0f:8a:dd:63:67:75:41:59:8e:7f:74:c8:3d:53:10:96:dc:
5a:65:f6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:40:13 2025 by rpki-client