Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GUPHmTwWDUM_wScIvdcDyyOkGxY.roa
File: GUPHmTwWDUM_wScIvdcDyyOkGxY.roa (raw, json)
Hash identifier: D2m/Qzfo+l3bu7pJs+lYlvJVM40jkKoY+qgoKALDKfE=
Subject key identifier: 19:43:C7:99:3C:16:0D:43:3F:C1:27:08:BD:D7:03:CB:23:A4:1B:16
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11A8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GUPHmTwWDUM_wScIvdcDyyOkGxY.roa
Signing time: Mon 26 Aug 2024 05:11:01 +0000
ROA not before: Mon 26 Aug 2024 05:11:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131600
IP address blocks: 150.117.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4520 (0x11a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1943C7993C160D433FC12708BDD703CB23A41B16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4d:e7:79:b7:1b:4b:87:ff:6b:d7:c1:a4:d9:
23:7e:97:a7:17:b0:08:37:ba:3e:18:36:13:72:d6:
56:38:84:6a:3c:1b:3e:bd:a2:74:16:15:b3:1e:45:
0c:c1:9e:95:0c:4a:b6:8a:83:7a:74:d9:ab:01:0c:
b4:e6:09:25:09:6f:b4:69:02:a1:66:93:b0:09:e7:
a4:5e:d8:c9:c7:00:03:0e:6d:a3:de:0c:3e:a9:d0:
5e:a9:e6:78:98:9c:93:af:c4:56:13:d6:6c:db:34:
b4:2f:5c:f8:c6:11:90:8e:3f:a6:8c:cf:35:07:d5:
f1:29:b6:73:56:13:05:8e:46:35:87:6c:a7:2c:49:
67:60:92:df:14:bb:86:9a:0e:25:07:0a:fc:e6:b9:
c1:16:35:2d:77:47:9e:24:9c:ca:01:59:60:27:38:
ae:8c:18:84:6b:d3:84:74:14:f2:91:d9:a3:02:b5:
1e:1b:68:d1:15:b1:19:36:93:03:ea:4d:60:6f:87:
e0:66:4a:eb:0e:a4:4f:7c:b1:1c:c4:dc:2a:1e:9d:
0e:9f:36:b1:d9:c7:c2:13:3d:90:c5:9a:77:5e:8c:
b5:2c:92:48:54:e1:41:77:4b:cf:ff:04:5a:ca:8b:
08:64:68:cf:be:57:d9:01:e2:9d:62:f4:aa:a5:ea:
cb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:43:C7:99:3C:16:0D:43:3F:C1:27:08:BD:D7:03:CB:23:A4:1B:16
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GUPHmTwWDUM_wScIvdcDyyOkGxY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.120.0/21
Signature Algorithm: sha256WithRSAEncryption
92:02:23:ef:03:29:27:23:d5:1a:0e:4b:2f:da:db:4b:4b:8c:
9d:79:a0:77:48:92:cb:b7:d5:32:35:d7:fa:81:45:1a:da:ff:
dc:82:46:cd:40:aa:02:fe:3f:24:c6:88:20:8a:ab:77:79:46:
ae:b8:b1:0a:b2:3a:74:41:36:0f:59:e0:71:e9:f0:46:84:16:
86:5c:b4:db:90:4a:5f:88:e5:89:3a:f9:e0:0b:1a:b0:49:d7:
1d:e5:81:64:d2:c8:a5:67:d1:55:48:6b:ba:a1:05:06:cd:7f:
e1:8c:37:b0:2b:3d:a3:fd:87:db:34:a4:9f:4e:88:92:e2:f9:
e4:d5:ec:d4:6b:33:ec:67:12:f1:08:7d:72:7d:c0:f9:ee:cb:
f6:68:30:88:5b:63:6c:5c:0f:a7:f4:0c:50:79:fa:23:b4:eb:
53:24:7f:fe:5d:47:57:b8:2b:b6:6a:cd:c0:8a:ce:c7:3b:93:
43:0b:bb:1a:c9:81:2e:85:a8:87:90:81:15:18:1b:8b:fb:5a:
9c:ec:87:6d:2a:ad:bd:2b:80:06:9b:c8:f2:07:76:a3:2d:aa:
9c:b1:d7:8e:ea:8b:fe:4e:40:37:15:25:39:e0:52:b3:a5:9d:
33:82:97:4c:85:7b:01:96:84:aa:df:58:18:68:f8:e3:de:7e:
8e:71:07:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:51:53 2025 by rpki-client