Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/R1_CmO1gqyXImb_FjCFIwNfOJHU.roa
File: R1_CmO1gqyXImb_FjCFIwNfOJHU.roa (raw, json)
Hash identifier: xt/OSbwL7qEQUtNdZX37VQNAILYgdSzCWNhpznik//4=
Subject key identifier: 47:5F:C2:98:ED:60:AB:25:C8:99:BF:C5:8C:21:48:C0:D7:CE:24:75
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1194
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/R1_CmO1gqyXImb_FjCFIwNfOJHU.roa
Signing time: Mon 26 Aug 2024 05:10:55 +0000
ROA not before: Mon 26 Aug 2024 05:10:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 150.116.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4500 (0x1194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=475FC298ED60AB25C899BFC58C2148C0D7CE2475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:64:7a:58:cc:2b:1b:6c:e3:ad:09:6c:f0:f3:
77:9b:ac:ad:4e:2a:b8:fe:34:e8:cb:1b:92:d9:37:
9d:54:55:1d:b4:5f:b6:19:81:87:a8:45:0b:00:44:
b1:02:60:a2:02:00:f0:08:51:42:2a:35:26:de:cd:
fa:83:19:32:56:5c:bc:81:96:cf:36:7a:1e:ba:0b:
7d:b0:1e:32:e8:60:da:3d:6f:be:b3:42:ab:07:ad:
26:30:22:3d:53:7f:49:20:56:25:ee:7a:d7:d7:a4:
86:0f:a9:e7:6b:c2:f9:c6:3c:72:01:7c:68:78:7c:
43:67:b1:8c:ae:25:1e:2e:ce:f7:c7:93:4b:d2:f4:
18:c4:2f:33:38:01:69:1c:62:83:49:f7:9c:ce:5a:
28:e3:da:78:af:46:60:c1:7d:6a:24:26:ec:27:84:
44:77:8d:e8:7a:f0:9b:66:55:fe:63:bd:46:6a:fe:
ec:93:30:b1:45:53:0a:cb:fb:0c:01:a4:31:c4:e5:
0c:3d:d7:c8:55:e3:19:08:95:c9:52:bf:f4:e6:a7:
13:97:8a:58:bd:04:9e:8d:c6:31:b1:1e:bc:10:62:
15:ca:37:19:e4:58:66:26:7a:c8:95:f3:a1:a0:7d:
f6:74:32:c8:5c:32:5e:f2:47:ea:7f:d3:3c:45:c1:
ed:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5F:C2:98:ED:60:AB:25:C8:99:BF:C5:8C:21:48:C0:D7:CE:24:75
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/R1_CmO1gqyXImb_FjCFIwNfOJHU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.112.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:cd:ba:ea:29:f5:d3:84:2a:52:a5:dc:42:18:e8:65:a2:7b:
6d:2e:8d:91:25:58:07:30:84:c4:1e:87:69:52:3f:8c:e3:18:
e0:b6:cb:52:c9:5e:25:5a:cc:4e:65:b3:34:32:60:17:a5:f8:
e9:21:31:77:68:5b:7d:39:a8:94:ec:b0:33:81:33:ee:f7:a8:
d6:3e:d4:c0:59:46:19:39:a6:ba:ab:b2:3d:c8:3b:80:89:9b:
a9:f7:73:9f:19:e4:c0:29:1f:8a:5b:fc:d3:4c:cd:cf:9e:22:
cf:d0:25:5c:ef:4d:78:92:49:07:e4:98:12:dc:0f:71:b7:a7:
4c:1a:6b:1e:dd:2c:8f:fd:92:71:70:cd:ca:70:41:ba:18:43:
10:cf:ef:cf:b5:4e:82:21:fd:79:cc:e4:02:21:91:00:c3:f0:
c7:a1:c1:58:68:99:1f:7d:31:18:0d:83:45:53:39:23:af:70:
54:17:09:3b:e7:51:c8:be:5e:86:d6:7f:98:82:3e:a7:27:a3:
c7:5f:20:57:28:43:ae:98:8c:97:5c:af:60:e0:6d:27:27:1f:
73:fe:25:a2:08:29:1b:c9:27:5d:3b:c4:3e:41:5a:bf:e7:fb:
e5:62:0f:ef:9a:95:01:4d:0b:2c:f3:db:d5:34:0d:d4:1d:a6:
10:6d:e1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:35:43 2025 by rpki-client