Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N0M2xzj66UAEXcg-Of-cwcydTdA.roa
File: N0M2xzj66UAEXcg-Of-cwcydTdA.roa (raw, json)
Hash identifier: 9IzaoHWCFlrGr2ACYxyskb2vnWy3rsahCPh1rhQIfQ4=
Subject key identifier: 37:43:36:C7:38:FA:E9:40:04:5D:C8:3E:39:FF:9C:C1:CC:9D:4D:D0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12AD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N0M2xzj66UAEXcg-Of-cwcydTdA.roa
Signing time: Mon 10 Feb 2025 14:15:07 +0000
ROA not before: Mon 10 Feb 2025 14:15:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18186
IP address blocks: 223.26.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4781 (0x12ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=374336C738FAE940045DC83E39FF9CC1CC9D4DD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d3:f3:cb:f7:91:7a:a9:85:8e:53:a2:73:e4:
d9:92:0d:14:93:e4:0d:10:0e:5a:5a:c5:80:f2:cb:
2e:24:2e:d6:7e:06:78:e7:81:9d:a4:18:80:69:64:
0d:4e:52:8e:05:74:36:21:12:32:51:d6:4b:c8:55:
88:ff:92:01:dd:18:05:6c:a2:71:b5:02:02:97:ef:
ac:6f:a5:ec:22:e3:a2:9e:b8:4b:bf:11:e5:9e:44:
69:d5:70:fb:8a:05:a5:3d:7c:a0:1a:27:bf:b2:dd:
15:f9:a3:32:89:6c:d0:12:5f:f5:ae:1b:fa:65:c6:
fc:55:4c:55:94:fb:f9:5f:08:c1:e0:5c:4e:cc:b4:
26:75:5d:26:5d:cb:cb:4b:80:07:2c:e4:9a:c7:eb:
e3:64:b4:33:c0:29:8d:6d:55:c4:06:46:c0:75:44:
07:de:6d:84:56:fa:aa:a1:ff:06:79:65:9c:48:b3:
54:6f:a0:d9:b0:45:e5:0a:13:44:ec:31:1d:da:89:
bf:5c:ed:ea:b4:d6:fa:d4:2e:c1:01:c4:01:72:1f:
39:3b:3f:85:21:58:7a:f8:d7:8a:47:19:ab:76:88:
f9:52:2c:9c:64:23:bc:8c:a4:7d:1d:9d:eb:13:07:
e8:ed:c0:82:58:57:d2:0e:6c:4c:2b:a8:6f:5d:52:
7d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:43:36:C7:38:FA:E9:40:04:5D:C8:3E:39:FF:9C:C1:CC:9D:4D:D0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N0M2xzj66UAEXcg-Of-cwcydTdA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.76.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:b3:f8:62:85:81:3f:75:fb:0a:d1:98:bd:24:f3:11:ae:04:
74:9f:48:00:da:9c:9f:8d:8f:51:7c:a9:42:78:25:80:1f:06:
d2:49:a5:05:34:51:bc:19:7f:cf:90:c2:7a:2a:9d:cb:81:cb:
2c:de:48:d8:ed:fc:85:6c:8e:06:f6:ee:6e:16:a8:e0:92:03:
af:c7:6c:0b:7f:81:d8:96:63:26:a0:17:31:16:0c:fe:e4:17:
23:e3:42:2c:63:7a:0c:57:94:11:a0:06:17:48:bc:ad:0c:5b:
e8:00:e8:c2:8e:24:80:fe:cc:99:1d:52:2f:92:83:bd:f1:4f:
10:b5:af:f7:dd:59:ff:f6:2f:eb:7c:46:88:02:9d:11:25:b7:
47:65:a3:e5:e0:63:6d:d0:19:97:dc:b6:d3:46:fc:d6:6c:36:
73:60:4c:ab:08:83:a6:c6:24:1e:36:a4:65:73:6a:a2:08:79:
bd:70:40:6d:ea:d0:15:9d:f7:b9:ae:a5:35:e7:0f:d0:d2:f5:
0a:92:29:8c:16:63:f1:64:55:10:8e:75:23:ef:76:b8:1e:50:
42:88:6f:5e:de:ae:ef:5b:17:fa:2b:70:eb:0c:52:6a:8a:79:
35:e5:9f:8b:3a:1b:de:ca:fe:79:ff:de:61:9a:c2:b9:cf:4b:
53:6f:28:5e
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEq0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx
NDE1MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NDMzNkM3MzhGQUU5
NDAwNDVEQzgzRTM5RkY5Q0MxQ0M5RDRERDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDH0/PL95F6qYWOU6Jz5NmSDRST5A0QDlpaxYDyyy4kLtZ+Bnjn
gZ2kGIBpZA1OUo4FdDYhEjJR1kvIVYj/kgHdGAVsonG1AgKX76xvpewi46KeuEu/
EeWeRGnVcPuKBaU9fKAaJ7+y3RX5ozKJbNASX/WuG/plxvxVTFWU+/lfCMHgXE7M
tCZ1XSZdy8tLgAcs5JrH6+NktDPAKY1tVcQGRsB1RAfebYRW+qqh/wZ5ZZxIs1Rv
oNmwReUKE0TsMR3aib9c7eq01vrULsEBxAFyHzk7P4UhWHr414pHGat2iPlSLJxk
I7yMpH0dnesTB+jtwIJYV9IObEwrqG9dUn0jAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUN0M2xzj66UAEXcg+Of+cwcydTdAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9OME0yeHpqNjZVQUVY
Y2ctT2YtY3djeWRUZEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQC3xpMMA0GCSqGSIb3DQEBCwUAA4IBAQC4s/hihYE/dfsK0Zi9JPMRrgR0n0gA
2pyfjY9RfKlCeCWAHwbSSaUFNFG8GX/PkMJ6Kp3Lgcss3kjY7fyFbI4G9u5uFqjg
kgOvx2wLf4HYlmMmoBcxFgz+5Bcj40IsY3oMV5QRoAYXSLytDFvoAOjCjiSA/syZ
HVIvkoO98U8Qta/33Vn/9i/rfEaIAp0RJbdHZaPl4GNt0BmX3LbTRvzWbDZzYEyr
CIOmxiQeNqRlc2qiCHm9cEBt6tAVnfe5rqU15w/Q0vUKkimMFmPxZFUQjnUj73a4
HlBCiG9e3q7vWxf6K3DrDFJqink15Z+LOhveyv55/95hmsK5z0tTbyhe
-----END CERTIFICATE-----
Generated at Sun Apr 6 21:20:22 2025 by rpki-client