Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CngxiMwItbM-18pSX1q0p4nGPZE.roa
File: CngxiMwItbM-18pSX1q0p4nGPZE.roa (raw, json)
Hash identifier: RbjIosN+mmQx8bQbTsewrO6qVhti14DCKyi1RKwms0g=
Subject key identifier: 0A:78:31:88:CC:08:B5:B3:3E:D7:CA:52:5F:5A:B4:A7:89:C6:3D:91
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12AB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CngxiMwItbM-18pSX1q0p4nGPZE.roa
Signing time: Mon 10 Feb 2025 14:15:07 +0000
ROA not before: Mon 10 Feb 2025 14:15:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10085
IP address blocks: 223.26.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4779 (0x12ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0A783188CC08B5B33ED7CA525F5AB4A789C63D91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:61:e5:76:8a:1c:2e:7b:00:e0:04:56:b4:0a:
eb:07:0c:65:a4:23:be:8a:13:e2:b1:03:fd:37:ee:
33:96:ad:f2:eb:5d:97:7f:06:83:f0:9f:70:b7:9d:
58:af:8e:14:bd:38:db:81:93:90:2d:db:a7:11:8d:
a8:c7:80:ca:42:0b:ea:8a:d0:1a:99:ca:58:ab:f5:
3e:f8:5c:1c:ea:d9:04:69:99:e8:7d:9c:11:29:00:
b4:be:a3:3d:8f:ce:96:a6:90:68:7b:83:30:aa:69:
d3:4e:2f:79:98:c6:0f:7c:05:cc:74:56:53:d8:77:
88:d8:75:e9:dc:d0:c6:a2:ad:bc:fa:23:1e:e3:6f:
df:a9:c9:d0:f6:35:62:1c:f5:e2:fb:ad:dc:05:d3:
53:1e:b8:36:da:08:e6:28:75:9c:d6:17:e1:a2:b5:
45:49:7e:14:cf:12:0f:32:ef:2a:1d:0c:01:51:06:
16:56:b7:f4:e3:52:5d:2f:34:05:b2:15:2d:90:23:
29:f2:62:e7:f9:02:81:7c:80:31:5f:7a:18:c0:0b:
a4:04:ca:ef:ac:9a:b7:f4:1d:44:67:bd:ef:3c:c4:
6b:e4:51:25:cd:ee:1b:65:d4:1f:0a:16:27:75:3a:
0b:90:70:68:1b:a6:e9:8a:a0:40:7e:5b:68:55:78:
c4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:78:31:88:CC:08:B5:B3:3E:D7:CA:52:5F:5A:B4:A7:89:C6:3D:91
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CngxiMwItbM-18pSX1q0p4nGPZE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.88.0/22
Signature Algorithm: sha256WithRSAEncryption
35:bf:e7:d8:9f:7f:0d:33:4c:89:ce:b9:20:0b:41:93:81:bc:
dc:3c:d5:da:3d:1c:b2:30:4e:75:00:ef:fa:65:41:71:0f:e9:
a6:69:75:29:4a:1b:cf:4b:5d:98:98:26:46:38:08:86:28:18:
1e:e1:ab:42:60:3c:12:9f:c8:98:20:04:84:be:a8:fa:39:c3:
06:10:5a:bd:15:97:ad:2f:0a:30:99:30:70:ae:4b:2b:65:8f:
83:ed:da:3c:c4:d8:e8:94:fc:4a:16:53:5d:3a:6e:9c:41:c3:
d4:26:8a:36:aa:ab:b6:12:2b:db:64:7e:5f:b5:f3:17:96:c0:
53:67:ec:a0:c3:f5:b1:91:9a:3d:42:da:6d:f6:03:26:39:4b:
ee:af:6d:aa:a6:ae:c9:b3:34:6c:66:39:04:c0:04:ed:79:ab:
0f:cd:fc:7b:3e:d1:6b:b3:ac:7b:86:42:56:8a:05:b1:33:1c:
80:49:fb:ed:91:e9:0c:0b:3f:4c:0d:97:1d:db:e1:0d:e2:b1:
0a:c5:4e:2f:d1:2d:2b:bf:d9:fa:6a:32:1d:9b:ba:b0:5c:e6:
90:04:b3:6f:51:45:f8:03:36:72:1e:c2:2c:a4:1b:94:f2:00:
16:f5:bb:47:40:b2:33:f2:46:3c:51:59:3a:12:65:c0:74:e9:
0f:97:5d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:27:11 2025 by rpki-client