Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RMCaFSq--eBsWELHz0FpCx9tyUA.roa
File: RMCaFSq--eBsWELHz0FpCx9tyUA.roa (raw, json)
Hash identifier: sq2xsV60e6RKC9gP1uXcvikZHOv4FA6wmteYq4HaVxk=
Subject key identifier: 44:C0:9A:15:2A:BE:F9:E0:6C:58:42:C7:CF:41:69:0B:1F:6D:C9:40
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 126B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RMCaFSq--eBsWELHz0FpCx9tyUA.roa
Signing time: Mon 10 Feb 2025 14:14:50 +0000
ROA not before: Mon 10 Feb 2025 14:14:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63199
IP address blocks: 150.116.4.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4715 (0x126b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=44C09A152ABEF9E06C5842C7CF41690B1F6DC940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4c:3f:46:29:e2:67:8c:fa:04:ce:07:ba:75:
c6:65:90:b8:33:af:c6:32:eb:89:39:94:67:57:51:
83:b9:5a:2a:7a:48:fa:7f:ef:f4:a3:79:7d:73:c1:
d6:5b:aa:53:42:75:ad:04:e7:23:41:0e:62:4e:38:
94:96:a2:ad:fc:6e:c4:07:a7:b0:26:5e:75:57:14:
11:61:77:c4:48:2c:f7:8f:8c:ed:f2:fc:74:d1:89:
9a:90:a1:fc:d6:ad:76:61:2a:3c:83:a6:ea:81:0d:
2d:47:a6:db:ee:13:17:6e:8f:51:1a:89:a3:46:3b:
f2:b7:89:cf:01:60:71:16:0f:f4:fd:08:91:d7:ad:
59:47:86:31:8a:38:1b:d6:5f:16:e4:24:b1:2e:31:
ac:87:a3:22:2e:51:fb:45:9f:83:7e:bc:77:95:e5:
2f:8b:ab:cf:92:82:b0:72:0e:5d:68:ef:2b:c1:35:
18:f1:f9:db:79:3a:52:18:35:2d:63:d5:6a:f3:b0:
8d:d2:8b:55:c1:23:a5:8e:50:40:37:c9:bf:0d:e9:
e4:af:20:0e:a3:53:5c:b5:df:d8:cc:a5:95:3d:73:
74:0b:f5:a0:7a:4f:d2:ec:20:20:71:a2:f9:d3:4c:
f5:88:5d:29:f0:63:11:c3:3c:13:5c:ca:e8:85:34:
18:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C0:9A:15:2A:BE:F9:E0:6C:58:42:C7:CF:41:69:0B:1F:6D:C9:40
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RMCaFSq--eBsWELHz0FpCx9tyUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.4.0/23
Signature Algorithm: sha256WithRSAEncryption
71:88:65:34:4f:0e:5b:f4:f4:dd:5b:09:a9:e1:ed:02:4d:eb:
84:e2:c9:f8:5a:17:36:10:1a:c1:d9:52:e0:a1:61:84:b3:35:
91:ed:fd:a0:80:13:f3:c9:55:23:f6:2d:99:27:35:27:2a:0b:
a5:85:fa:f4:13:ae:9e:a6:4f:a8:31:32:5a:9b:a2:69:bc:ed:
4b:be:d7:0c:05:2f:df:1c:44:7e:7d:39:f2:cf:61:1e:e0:5e:
c2:fd:cc:42:ba:86:2a:57:2d:26:d6:e1:98:89:80:a4:9d:33:
16:9e:6e:a3:d7:63:4b:b8:75:7f:6b:97:40:ad:d0:8a:e4:17:
89:f8:c0:24:d3:6a:ad:df:a4:c6:f8:0a:8d:92:ac:12:8a:40:
7c:11:b3:38:70:f7:61:37:c7:34:09:99:22:16:49:92:0c:a2:
9e:1a:e2:93:f4:47:e7:10:bd:7b:42:e3:98:69:c4:70:1a:6c:
e3:16:db:0f:fb:c1:f3:80:43:c0:10:07:5d:fa:52:98:7a:02:
bd:d3:a0:c3:c3:bd:b7:37:ff:8f:8c:51:13:f0:61:a1:fa:1f:
61:cb:55:36:c8:8b:e9:0c:8d:23:d7:15:fe:ba:32:8b:88:37:
e6:34:0b:9b:c7:25:76:e7:eb:5a:e3:86:dd:35:5b:54:c8:7a:
7b:76:56:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:54:43 2025 by rpki-client