Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LWVD0JZztz2mpAxgny16UO0qufw.roa
File: LWVD0JZztz2mpAxgny16UO0qufw.roa (raw, json)
Hash identifier: ZCf2l5Yn8vEpEXUKL7o04NMVyu5nuEQMz40UynS/wDY=
Subject key identifier: 2D:65:43:D0:96:73:B7:3D:A6:A4:0C:60:9F:2D:7A:50:ED:2A:B9:FC
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12BD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LWVD0JZztz2mpAxgny16UO0qufw.roa
Signing time: Mon 10 Feb 2025 14:15:11 +0000
ROA not before: Mon 10 Feb 2025 14:15:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10085
IP address blocks: 223.26.92.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4797 (0x12bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2D6543D09673B73DA6A40C609F2D7A50ED2AB9FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:04:b0:1c:64:78:ab:33:ae:30:b5:46:2d:14:
d5:ce:e2:7b:a9:91:23:5a:d2:61:cc:2e:c7:c5:8d:
09:04:34:53:51:41:9c:ef:04:67:ac:bd:67:13:de:
4f:37:38:79:f3:43:9e:24:cc:8b:e1:85:38:ab:d9:
4e:46:8d:dc:87:e8:8b:87:32:e5:61:24:37:29:75:
a6:a6:41:6d:81:95:b5:23:04:ca:c7:01:84:8f:d2:
b0:91:88:53:f1:b0:84:28:65:0a:2e:b6:5f:ea:ba:
51:9e:91:05:9a:90:0f:27:d6:e2:b5:b6:c1:f2:6b:
5b:bd:7e:e2:9a:53:d7:8d:d4:06:2a:a9:c6:6a:f7:
ea:dd:c0:44:32:02:1f:c5:24:86:8e:3b:2d:2b:af:
11:63:45:be:a0:71:18:d0:38:e2:44:41:a1:83:8a:
09:51:b7:ec:50:00:7e:99:27:8f:f2:dc:51:2d:ce:
2e:d8:7c:eb:ca:e5:08:e9:13:35:6a:79:79:9b:6f:
43:9d:14:ed:88:e7:9a:25:c5:1c:1d:9c:67:d7:09:
e7:9d:a4:a0:ed:f6:4a:e4:05:89:9d:5b:c3:74:be:
e3:af:d9:90:a7:3d:42:8c:37:91:21:08:01:de:2a:
f3:24:bf:3a:bd:57:80:73:9c:f3:2d:79:14:00:10:
c6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:65:43:D0:96:73:B7:3D:A6:A4:0C:60:9F:2D:7A:50:ED:2A:B9:FC
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LWVD0JZztz2mpAxgny16UO0qufw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.92.0/22
Signature Algorithm: sha256WithRSAEncryption
63:2c:45:42:8d:32:80:84:98:c7:f1:8e:6b:6c:52:7e:27:21:
0c:02:76:89:36:5c:b0:70:2d:26:b8:08:76:c2:43:68:02:42:
64:9e:36:10:4a:ea:de:f3:55:dd:ab:72:7b:3d:85:ca:a9:eb:
46:7b:83:83:05:e9:c6:1a:08:ff:6f:07:14:ce:5b:b3:4e:fd:
e8:6a:17:cb:a9:4d:21:f2:6c:07:ce:57:48:d8:c3:f2:73:b0:
a8:1d:bb:9a:89:e4:5a:ac:e9:b9:cb:69:c2:34:ea:5b:a5:c5:
16:66:ea:cc:ba:12:79:13:b1:02:47:65:13:01:78:db:2b:a8:
4c:8d:1b:e9:26:03:ac:42:6a:f2:30:78:bd:41:5e:0e:f3:68:
bc:d1:83:77:ad:6e:4a:a3:cf:dd:15:16:b2:c0:25:2f:c0:23:
c3:f5:b0:be:88:d9:6d:eb:73:da:f6:3c:d6:4f:7a:f0:45:a1:
4a:71:8e:84:42:31:73:0d:6c:9f:76:00:f4:6c:91:2e:4f:87:
25:ee:c4:0f:3e:b2:51:0f:3b:a8:f2:52:68:c8:5c:28:4f:e9:
e8:bf:cf:54:e4:b0:76:31:ae:93:53:ec:a7:f1:85:e2:19:12:
ce:7d:d1:11:9c:17:f3:d1:19:24:8a:40:3c:c2:a5:0e:4f:0b:
7d:ff:81:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:01:37 2025 by rpki-client