Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XNwOCoqgnnxYS9EIHG0n5g3zUtI.roa
File: XNwOCoqgnnxYS9EIHG0n5g3zUtI.roa (raw, json)
Hash identifier: Wws58PlzG+ufVwlmUj/Tqc1vfTVQ+dIAUKlwwL14iY0=
Subject key identifier: 5C:DC:0E:0A:8A:A0:9E:7C:58:4B:D1:08:1C:6D:27:E6:0D:F3:52:D2
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1216
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XNwOCoqgnnxYS9EIHG0n5g3zUtI.roa
Signing time: Mon 02 Dec 2024 06:56:52 +0000
ROA not before: Mon 02 Dec 2024 06:56:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142142
IP address blocks: 150.116.14.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4630 (0x1216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 2 06:56:52 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5CDC0E0A8AA09E7C584BD1081C6D27E60DF352D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0a:84:ef:1f:d3:d8:53:70:44:0f:6e:ec:80:
cc:fa:33:c4:05:df:b5:db:60:5a:65:35:f7:65:db:
44:a6:d2:5c:f0:56:fe:70:42:d4:cc:df:41:2d:ac:
c3:7a:80:da:36:4d:89:43:78:89:f5:55:a7:e1:cb:
4c:be:d6:5a:a8:03:10:95:88:24:aa:70:92:9c:fc:
35:55:35:1a:f5:58:bd:e9:96:83:7e:c1:22:f8:df:
c0:72:7f:4d:9f:c5:3d:ef:6c:be:7e:3c:70:60:72:
b1:08:6a:2e:89:aa:f4:9a:a8:23:1b:84:01:4e:5f:
23:5e:c1:17:e8:38:9b:4b:c8:d6:4e:0d:99:e4:b5:
b8:82:c4:1f:db:90:ce:60:26:c0:b2:7e:60:9d:da:
5c:07:03:65:e0:4c:49:6c:c5:f1:cf:35:6f:4b:da:
cc:27:53:9b:ce:d4:58:63:9d:ec:4d:a6:da:79:ed:
69:25:d8:d4:35:ce:22:5c:8c:2f:e4:ae:fd:27:79:
fd:ea:3d:22:34:1e:2e:18:1a:8c:31:dc:ac:9b:32:
21:38:d4:a6:b7:e1:01:35:30:04:5a:37:39:16:5d:
4d:fa:d1:2a:b1:6e:a6:03:77:55:e0:ee:62:ff:84:
e7:e2:04:f5:97:9d:ac:1d:ed:1d:d3:40:65:16:51:
b2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:DC:0E:0A:8A:A0:9E:7C:58:4B:D1:08:1C:6D:27:E6:0D:F3:52:D2
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XNwOCoqgnnxYS9EIHG0n5g3zUtI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.14.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:ee:98:ab:1c:66:15:6f:d5:68:8a:39:db:12:3b:92:f8:9c:
89:70:8f:49:95:43:e1:44:05:53:4f:8d:9c:32:67:2b:bf:b3:
04:3f:ca:c2:bf:f2:0a:72:6d:51:26:f4:77:31:58:1e:30:37:
7b:1c:0a:61:bf:3c:f3:d2:52:90:13:0b:d8:bf:21:bc:17:fe:
3a:cd:30:9a:8b:fc:a9:4b:09:8f:51:6b:27:8c:73:d0:6b:06:
0e:05:6f:f9:88:1a:8c:af:47:11:53:24:bf:3f:ce:a2:6b:75:
f9:f0:15:46:a6:97:d9:72:72:8f:a5:16:22:30:b9:de:eb:8c:
5c:e2:a7:4d:e6:fd:25:e1:fb:72:f1:a7:d6:12:d2:dd:2b:be:
75:d9:f4:02:63:91:e4:b3:df:44:db:0b:d1:58:fb:a0:34:99:
0e:8b:8f:c9:25:f8:41:c0:ad:35:32:fc:0f:8e:27:ba:d4:db:
cf:f1:88:de:f1:70:7d:9b:d6:cb:e1:1a:88:d6:5f:06:71:29:
f2:14:65:f0:53:9f:1b:8f:db:5a:97:66:68:07:9b:be:fa:c9:
ed:5d:26:08:0e:ba:d0:4e:58:92:ff:63:b2:c7:8e:73:f4:81:
4f:28:9a:67:5a:6b:d2:eb:90:1b:09:51:a1:49:c4:98:fb:00:
47:4e:a0:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:44:09 2025 by rpki-client