Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FsRttKXsjOCnu-JPF_XZHsX1byc.roa
File: FsRttKXsjOCnu-JPF_XZHsX1byc.roa (raw, json)
Hash identifier: 7kje5giQVzezMu66/6GS3Qw/oqchztaNsJAXpUr/efs=
Subject key identifier: 16:C4:6D:B4:A5:EC:8C:E0:A7:BB:E2:4F:17:F5:D9:1E:C5:F5:6F:27
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 128F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FsRttKXsjOCnu-JPF_XZHsX1byc.roa
Signing time: Mon 10 Feb 2025 14:15:00 +0000
ROA not before: Mon 10 Feb 2025 14:15:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 150.117.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4751 (0x128f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=16C46DB4A5EC8CE0A7BBE24F17F5D91EC5F56F27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cc:ed:2b:a8:21:bb:6d:3f:ed:68:57:01:a5:
bf:15:55:88:f0:7d:f7:0b:28:eb:9b:c1:c2:a0:04:
26:8b:67:49:42:aa:d0:ef:50:a3:a4:95:55:75:59:
b2:6e:4c:af:15:8c:e7:bd:54:24:32:73:cf:62:00:
d6:ff:f4:49:b5:3f:b0:73:15:53:cf:a1:6a:c0:7a:
3b:b6:60:a9:f8:d7:27:9c:e1:da:53:e3:0e:75:e0:
b6:df:f8:34:51:76:e0:c6:85:36:87:15:1b:36:55:
63:76:b7:eb:1e:cd:5c:6f:47:cb:d5:20:1d:0f:ab:
a3:4a:15:e0:d9:48:0a:2c:13:41:52:d3:d8:c5:b2:
a8:bc:20:9c:cc:ad:96:40:79:f3:f5:b8:71:be:1d:
51:6a:78:85:98:22:c7:c1:95:63:f2:9b:d7:fd:5f:
46:4b:a3:03:3e:74:15:f5:e9:f2:b9:e1:02:68:37:
da:3f:1d:c5:dd:d9:57:d5:14:2c:2e:fb:39:1c:b2:
18:31:97:49:2c:4f:15:c6:c6:21:15:07:8f:ab:a1:
11:54:4c:36:e6:99:43:5a:26:0a:94:a6:ff:33:32:
7c:f0:2f:77:86:df:4d:43:01:43:3e:52:16:37:23:
f2:f5:01:14:be:7f:6d:c6:7e:3c:71:67:2c:43:c7:
f7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C4:6D:B4:A5:EC:8C:E0:A7:BB:E2:4F:17:F5:D9:1E:C5:F5:6F:27
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/FsRttKXsjOCnu-JPF_XZHsX1byc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.128.0/19
Signature Algorithm: sha256WithRSAEncryption
09:79:63:1f:a0:c5:c7:13:bd:cf:52:a5:22:93:b7:e1:c9:1f:
59:40:73:6c:ad:18:69:7d:e8:09:0b:53:e6:79:4d:56:25:ca:
33:38:f6:28:fb:bd:d5:3a:bc:57:46:6b:65:0d:93:24:36:25:
17:67:6d:6a:a7:4f:91:49:d6:31:b4:75:b3:65:2d:91:45:fe:
9e:1b:99:45:88:30:93:98:45:1e:74:d5:9e:62:c0:43:63:43:
5c:e8:71:f2:92:09:a9:44:cc:d1:c6:03:81:3f:a9:7b:26:ca:
fe:0a:17:27:63:49:ff:0c:92:2f:c8:6e:e3:7b:74:d7:91:f1:
69:7a:4a:33:fa:89:14:3e:f0:4e:58:ab:77:57:b7:d5:9c:8b:
e1:28:11:d6:e8:ab:6e:a5:8f:70:bb:08:b4:df:84:e8:f8:e9:
f4:39:04:7b:79:39:1d:b7:bd:70:96:e4:a7:d3:22:99:f7:2f:
b9:56:47:ef:28:0a:06:be:73:76:10:7c:c8:a1:83:76:3f:67:
0d:ed:78:1d:f3:62:dc:50:5e:c5:bc:6d:13:85:db:25:32:d1:
d0:c5:ee:0a:9c:e1:81:a6:2f:8a:54:d6:a7:c4:e3:7c:48:b4:
be:2f:1b:3b:44:4e:be:ab:eb:14:da:62:5e:58:96:d9:c0:c9:
57:fd:cd:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 01:28:52 2025 by rpki-client