Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/USix6dB3wEu-umER2Smd6g2FbsE.roa
File: USix6dB3wEu-umER2Smd6g2FbsE.roa (raw, json)
Hash identifier: ToLDX+nxyVycIo6j5rESIrPv+eVEMNRs6bSIYUh06Qc=
Subject key identifier: 51:28:B1:E9:D0:77:C0:4B:BE:BA:61:11:D9:29:9D:EA:0D:85:6E:C1
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1257
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/USix6dB3wEu-umER2Smd6g2FbsE.roa
Signing time: Mon 10 Feb 2025 14:14:44 +0000
ROA not before: Mon 10 Feb 2025 14:14:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 203.163.220.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4695 (0x1257)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5128B1E9D077C04BBEBA6111D9299DEA0D856EC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5f:96:0d:e9:b6:07:b1:f9:17:bc:76:5d:da:
55:b5:37:27:93:b1:78:d5:28:bb:f9:0e:e4:31:7d:
0a:e1:ea:44:d1:22:a1:6e:ea:87:7b:5f:f7:30:fa:
fd:92:88:b3:38:fc:e4:0c:9d:e7:ba:6e:6d:15:0e:
bd:f4:42:97:9b:d3:62:07:5b:f5:c6:e6:4e:0b:73:
af:91:3c:4a:77:16:c7:40:6f:93:6e:a1:9a:89:0b:
f3:46:f2:d0:af:b3:1a:c7:67:00:1f:ae:6c:f4:95:
60:d5:71:3d:2f:ef:8f:47:e1:cb:48:14:d3:1a:b5:
d1:fd:6a:e4:57:91:85:44:22:be:12:8a:2b:fe:b3:
55:21:c3:66:ae:47:e4:ab:52:c4:58:ed:88:0e:70:
71:5e:31:0d:c8:01:cb:9b:6c:ae:2e:18:53:d6:68:
da:18:3f:02:61:31:4e:89:66:52:bd:8e:05:49:37:
19:15:02:e5:80:40:85:53:56:2d:d5:29:e9:ef:91:
a6:35:d8:03:3a:b3:ff:8b:88:38:b2:9f:c5:6f:2d:
53:79:4d:cd:9b:a7:9c:0d:a8:d8:f5:93:67:e2:58:
bd:0d:c5:e6:9b:6c:1e:9f:d9:38:d8:10:74:f9:0c:
78:d1:22:c2:39:a2:1d:7f:15:76:fe:48:da:9b:77:
e2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:28:B1:E9:D0:77:C0:4B:BE:BA:61:11:D9:29:9D:EA:0D:85:6E:C1
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/USix6dB3wEu-umER2Smd6g2FbsE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.220.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:4e:63:59:8d:4a:ef:8f:78:89:55:63:54:a3:c1:b3:50:6e:
73:d5:b7:43:56:62:82:ef:c2:1a:dd:c3:70:8b:40:70:7d:65:
eb:d4:da:5d:8f:16:cf:51:32:b5:0f:66:b8:3a:fc:d9:a5:a0:
14:b9:80:50:a3:f9:d9:49:5e:74:75:53:44:d0:4d:98:f4:6b:
7e:90:da:7c:75:d9:7d:32:09:a7:4b:21:4b:39:33:96:94:e8:
7b:e1:bb:3c:e5:4b:99:8b:97:83:43:d4:bb:4c:d2:f3:8b:f4:
73:da:d9:fa:8f:65:64:3b:39:73:a0:2d:c3:93:5d:ac:ab:91:
28:f6:0f:de:0b:75:ff:61:eb:75:62:72:20:53:1a:c5:8c:9d:
9e:07:75:37:e8:a6:79:ae:aa:b6:ef:99:24:74:7b:9a:5d:48:
80:25:53:91:06:98:50:1e:90:68:a8:35:40:be:66:50:f4:9a:
cc:31:72:c7:1f:34:ec:19:9a:77:38:fd:bc:21:31:29:ac:74:
3a:7d:63:6f:d6:bc:ea:04:6d:24:93:8b:30:9a:63:11:38:48:
50:14:ac:f7:af:d9:89:44:c3:c5:79:4a:dd:ce:a4:55:18:a0:
59:6c:ac:c6:ef:6f:81:a0:7e:9d:f1:27:f1:38:29:d4:29:b8:
da:09:46:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:38:07 2025 by rpki-client