Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JDI4KTOmLUY8sL9OTujImzO6Sq8.roa
File: JDI4KTOmLUY8sL9OTujImzO6Sq8.roa (raw, json)
Hash identifier: WAzOlCo2lwCJViCcrO6DKqMaP5tMQfnI5QcB3aAVmpI=
Subject key identifier: 24:32:38:29:33:A6:2D:46:3C:B0:BF:4E:4E:E8:C8:9B:33:BA:4A:AF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1259
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JDI4KTOmLUY8sL9OTujImzO6Sq8.roa
Signing time: Mon 10 Feb 2025 14:14:45 +0000
ROA not before: Mon 10 Feb 2025 14:14:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10085
IP address blocks: 203.163.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4697 (0x1259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2432382933A62D463CB0BF4E4EE8C89B33BA4AAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:21:b6:8b:65:a9:c2:7d:4d:7c:ff:cb:ca:d7:
21:b0:65:e3:35:29:d3:00:dc:fa:be:56:1e:0e:e8:
98:7e:6a:3e:a9:98:ca:99:7f:51:85:46:75:e4:da:
64:64:b2:22:7e:eb:78:1d:c9:05:10:f0:8d:46:8f:
3d:f4:a2:98:46:cc:62:f3:99:70:d1:6a:e9:3b:cf:
be:1e:9c:96:29:21:25:f2:51:53:69:ba:af:2f:36:
ea:fa:90:6b:5a:48:19:a5:a6:fb:4f:3f:d2:aa:22:
ad:15:bf:46:0d:87:b4:e3:0b:aa:4d:43:49:e6:96:
7b:04:bf:57:55:81:bb:db:82:be:71:97:bc:07:09:
22:17:2c:dc:b3:00:af:80:30:73:d7:8e:b3:6e:e7:
89:89:2d:b6:5b:2b:e1:4a:84:4d:12:c1:ef:74:e9:
64:5c:8c:d6:a4:79:f4:82:c5:70:d2:3d:8e:b4:a1:
8d:4d:2e:db:cd:3b:dd:b1:ce:a5:e1:0c:4e:fc:10:
25:e8:93:1a:37:70:b0:c2:12:27:cb:3e:01:a9:e0:
65:4e:49:0a:8b:33:c1:15:c6:2e:ea:3b:b3:c7:ef:
a2:17:11:53:fb:74:df:7e:03:1b:2c:9a:b5:5b:3f:
44:ef:3a:42:1e:77:4b:ce:b3:c7:8c:1d:62:5a:10:
df:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:32:38:29:33:A6:2D:46:3C:B0:BF:4E:4E:E8:C8:9B:33:BA:4A:AF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JDI4KTOmLUY8sL9OTujImzO6Sq8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.204.0/22
Signature Algorithm: sha256WithRSAEncryption
35:c1:f3:ed:ce:30:14:a6:fa:4a:de:b3:04:89:b4:0e:69:b5:
77:ca:26:cd:3f:25:5c:7f:b1:2e:4f:53:b3:1a:dd:9b:2e:25:
f7:ce:2c:7e:10:9c:ef:2f:dd:d3:42:86:c8:37:67:17:83:75:
da:6f:e3:59:23:13:8a:26:4d:9c:74:c0:db:17:60:7e:12:c3:
e2:28:c3:3f:ff:40:66:99:a6:fc:f3:0c:bd:16:28:f5:e9:0c:
e3:d4:86:46:53:fc:b3:b7:d1:d5:ac:34:f2:99:a1:31:67:86:
83:b7:e0:e9:26:ce:e6:d4:e1:eb:b3:4b:27:26:af:fd:1f:48:
45:6f:6a:10:89:5e:00:cd:73:3a:2f:da:90:85:75:28:72:62:
b4:ed:a5:1c:42:56:e2:e6:84:21:8d:91:28:50:ac:ea:d2:06:
35:fc:b5:6c:71:57:de:df:87:c0:48:54:77:2e:78:a0:b0:53:
e7:0c:e6:b3:c6:c1:07:ed:4b:94:c2:30:be:2b:df:ce:18:0c:
39:a1:29:66:62:33:11:5a:b5:74:3e:25:cd:93:f3:cf:8c:d1:
40:2b:3c:d3:cf:f9:df:61:18:f8:b9:a2:94:58:ff:3c:a6:23:
74:14:c8:3b:8b:f8:52:e4:22:47:d9:4c:37:68:7a:af:23:3d:
ef:5e:b5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:22:44 2025 by rpki-client