Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V3thniux8-JV69RGOgwQMN6RIGc.roa
File: V3thniux8-JV69RGOgwQMN6RIGc.roa (raw, json)
Hash identifier: R/qFOgGJG/SGSO6UO3YcISj5nf0Eb3tQ/Cv1KVPCwp4=
Subject key identifier: 57:7B:61:9E:2B:B1:F3:E2:55:EB:D4:46:3A:0C:10:30:DE:91:20:67
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1167
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V3thniux8-JV69RGOgwQMN6RIGc.roa
Signing time: Mon 26 Aug 2024 05:10:45 +0000
ROA not before: Mon 26 Aug 2024 05:10:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4455 (0x1167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=577B619E2BB1F3E255EBD4463A0C1030DE912067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c3:e3:bb:ed:00:2b:f4:eb:7b:20:c0:21:2d:
16:64:f8:b4:82:64:1d:35:29:69:7b:dd:88:a5:6a:
24:81:13:5e:0c:85:9b:b2:c4:62:6e:2a:0a:85:ef:
47:2c:19:b0:fb:f0:f9:4a:28:b6:a4:dc:eb:76:c1:
30:31:2e:1d:33:77:ba:42:59:a3:ef:68:92:7b:1b:
9e:9d:3a:ac:9c:22:81:b0:87:9c:e0:6e:a5:25:91:
fe:75:58:05:ca:d8:80:92:78:b2:4b:04:2d:26:b6:
2e:ee:50:45:a3:ea:5f:3d:7d:1c:b0:f0:e3:18:3b:
3e:28:fa:35:9d:36:4b:2e:45:b4:6b:0c:e1:1e:07:
3f:ef:b4:00:be:90:38:33:f5:09:10:bb:01:9a:21:
05:b5:2c:2c:f2:b6:4e:b5:c7:5d:18:cf:58:a5:64:
03:04:1a:fd:dc:27:7d:07:20:c2:19:44:39:fe:6d:
46:f2:ef:bf:e2:7f:64:04:c5:df:67:e9:aa:ae:af:
bb:f8:1d:e7:0d:70:ce:f6:1e:88:9d:6e:f8:03:62:
a1:45:da:8d:2f:b1:3d:84:f8:9f:17:59:b2:52:96:
53:0a:60:c1:bf:73:93:05:d4:42:6e:a0:95:7c:99:
a4:a6:e2:35:09:bc:45:4f:ba:69:51:1b:db:f2:54:
ac:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:7B:61:9E:2B:B1:F3:E2:55:EB:D4:46:3A:0C:10:30:DE:91:20:67
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V3thniux8-JV69RGOgwQMN6RIGc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.238.0/24
Signature Algorithm: sha256WithRSAEncryption
07:4a:ac:fe:30:52:ac:da:b4:f6:1d:89:83:6a:0c:37:d7:b3:
f1:93:d1:28:5e:16:29:84:59:10:a3:9d:4b:cc:b6:2e:b6:16:
31:23:ad:0a:73:63:53:5a:5d:a8:77:f7:d3:e1:6b:23:a2:fc:
8e:92:02:db:ea:29:ff:cc:55:78:b7:7a:6a:20:d6:25:c8:73:
c7:a0:6f:1e:fb:88:44:f9:74:1b:ca:f3:56:00:cb:6a:91:ab:
57:30:62:cf:0b:73:e0:36:ea:9f:fd:86:54:fb:a1:a8:76:2e:
98:aa:07:62:b8:c7:6b:29:ce:c5:74:4a:46:ac:e6:09:5b:66:
85:8c:35:52:ec:de:c8:ce:4d:09:b8:69:28:be:e7:62:74:bc:
c1:a4:1a:0f:3c:6c:bd:33:fb:2e:8b:95:b7:c4:8d:4a:a2:3e:
18:06:65:8c:02:54:c4:de:6e:fc:4c:70:82:cc:98:f4:fb:be:
56:d2:0d:c4:16:59:45:d0:93:2d:ff:7b:b3:e8:14:ad:90:e3:
28:5d:80:f5:e8:6b:7c:ec:32:0d:51:8e:89:c8:26:85:d1:67:
2b:1a:de:fe:77:e5:70:72:7c:b5:95:d5:33:a2:65:a6:bc:72:
13:2f:78:51:7e:bb:c3:91:3d:9e:79:75:85:65:41:27:48:ca:
dd:71:df:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:46:19 2025 by rpki-client