Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NujsmfuMA108wcchTu9ItDYMqEQ.roa
File: NujsmfuMA108wcchTu9ItDYMqEQ.roa (raw, json)
Hash identifier: P0vYRfsd3EqIEhePvmPdjFHMUwEGqMjr1SmDewAwMQ4=
Subject key identifier: 36:E8:EC:99:FB:8C:03:5D:3C:C1:C7:21:4E:EF:48:B4:36:0C:A8:44
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1210
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NujsmfuMA108wcchTu9ItDYMqEQ.roa
Signing time: Mon 25 Nov 2024 08:26:44 +0000
ROA not before: Mon 25 Nov 2024 08:26:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142142
IP address blocks: 150.116.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4624 (0x1210)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Nov 25 08:26:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=36E8EC99FB8C035D3CC1C7214EEF48B4360CA844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:0e:13:34:23:d8:cb:4c:f8:3b:be:cd:ec:
81:1c:77:59:93:c7:42:e9:ea:0f:e5:38:02:bb:ed:
0f:67:8f:cc:9f:88:00:da:80:0a:5b:ef:82:a3:84:
fc:d2:9b:c5:b9:f5:d4:fe:dc:2e:6a:a9:a4:56:60:
00:b7:67:8f:8b:89:4c:28:57:4a:87:c2:ef:96:76:
f5:92:80:0f:47:83:2c:43:fe:11:85:a9:b2:4d:a6:
e7:14:4f:85:4c:83:d7:1b:95:d9:c8:22:f0:7f:ec:
4d:a7:cc:48:e1:3e:35:02:80:de:3d:02:dd:77:0f:
da:4c:e7:62:4f:a9:78:ca:a7:dd:77:0b:a5:57:f2:
5e:72:93:17:10:86:32:15:8a:32:36:da:7e:35:48:
60:d9:11:a9:f2:47:8a:1b:ff:37:30:1c:a3:59:18:
3b:73:eb:2f:09:f9:e9:1f:37:d5:3c:d6:5b:3b:bd:
7d:d8:b2:2c:c8:f4:20:4f:c0:8a:78:9a:a9:c1:1f:
d7:95:9e:4f:13:c6:d4:9c:f5:b2:d7:b9:df:e3:e3:
e3:cd:97:b1:eb:b8:05:4f:fa:42:26:72:b2:ef:be:
19:f0:f2:d5:fa:50:bf:18:7e:c8:20:b2:82:e6:54:
4b:d4:1a:9c:43:7d:c6:2d:d3:08:b4:c6:ff:8a:37:
df:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E8:EC:99:FB:8C:03:5D:3C:C1:C7:21:4E:EF:48:B4:36:0C:A8:44
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/NujsmfuMA108wcchTu9ItDYMqEQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.14.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c9:3d:00:e2:ef:a5:50:06:a1:b0:3e:b5:72:6a:83:b8:19:
a8:32:d8:39:81:e8:7e:84:fd:59:87:9c:f3:c2:b6:71:f8:63:
ae:ab:4e:15:77:51:c4:fa:9a:38:79:e0:82:20:04:5f:38:eb:
6a:7f:fc:54:86:86:f2:1a:f8:59:62:c0:ff:c0:aa:b7:bb:5a:
ce:d1:75:5f:3e:2c:9c:90:c0:57:bf:a3:6b:92:f7:e9:da:15:
18:68:97:90:e9:b5:9d:15:ed:da:7f:01:d6:bf:83:20:9e:42:
71:1c:89:55:d7:c5:93:9f:ee:62:a2:44:49:80:ae:75:ed:4e:
91:ed:9d:8d:2f:47:fe:a2:39:c1:d4:b4:ad:88:42:96:68:db:
36:a2:0b:95:9c:a0:38:62:49:cc:cd:a7:83:ac:43:a8:47:3a:
9d:b8:7f:33:75:67:77:a0:e5:ab:88:19:84:2e:7f:52:63:11:
60:db:30:a3:e5:db:90:af:dd:30:90:02:fb:67:46:e3:ac:8b:
c1:5c:58:83:f0:a2:d4:a7:02:be:8b:57:58:2b:e3:f7:1b:5b:
06:69:5b:ae:b5:d8:e7:f9:b7:83:4d:97:14:f9:25:3f:67:62:
40:25:c9:33:b3:2b:34:7e:e0:3e:13:d6:c4:80:18:7e:65:ed:
b3:d2:04:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:56:59 2025 by rpki-client