Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z6nAAumQraq1eYrV_42OCZMvAMk.roa
File: Z6nAAumQraq1eYrV_42OCZMvAMk.roa (raw, json)
Hash identifier: UIlDfgZhdKn1ui93L1J0F9rZXho1JNoynC93oWMucg4=
Subject key identifier: 67:A9:C0:02:E9:90:AD:AA:B5:79:8A:D5:FF:8D:8E:09:93:2F:00:C9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11BB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z6nAAumQraq1eYrV_42OCZMvAMk.roa
Signing time: Mon 26 Aug 2024 05:11:05 +0000
ROA not before: Mon 26 Aug 2024 05:11:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63199
IP address blocks: 150.116.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4539 (0x11bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=67A9C002E990ADAAB5798AD5FF8D8E09932F00C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ef:c7:cb:d7:fa:48:96:7a:2b:62:61:59:4c:
dc:44:0a:e8:46:e1:d6:7e:2b:01:b2:1d:e0:e0:26:
c0:0c:53:85:09:4f:ca:10:87:06:91:8a:a3:2d:67:
5e:d4:54:e3:ed:91:6e:2a:4b:08:de:64:f6:75:b5:
47:00:93:e7:c3:39:92:6f:d4:c9:4c:98:28:85:91:
aa:fe:32:03:9a:ca:89:bc:20:1c:c7:4d:82:e2:4d:
68:4d:a0:18:79:53:d0:75:79:d7:8b:b9:a4:67:fe:
e3:a3:15:f2:6f:6f:e3:a3:b0:19:44:57:5e:c9:b7:
ac:86:b9:2d:8d:ad:64:9c:86:22:86:cf:9a:40:b8:
f3:90:5a:16:74:36:b5:9f:9e:d4:f1:c9:ca:7e:93:
92:1a:11:e0:8a:7a:cb:f6:a9:41:a7:12:97:f6:65:
23:39:8f:f3:c0:66:dc:49:78:df:01:c0:39:19:51:
4d:b2:c6:ae:60:be:f1:5c:a4:6c:e2:67:9e:df:f8:
ea:8f:12:55:8a:c8:dc:c5:c8:43:b6:a0:ef:d6:bc:
17:dc:8b:d2:b2:b5:4d:8f:03:de:39:04:c5:d1:84:
4f:dd:35:bc:b3:ba:6b:70:3e:6b:15:e4:43:3c:6d:
e1:ef:56:8c:da:de:62:fb:ad:9a:56:bb:5d:16:34:
af:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A9:C0:02:E9:90:AD:AA:B5:79:8A:D5:FF:8D:8E:09:93:2F:00:C9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z6nAAumQraq1eYrV_42OCZMvAMk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.12.0/24
Signature Algorithm: sha256WithRSAEncryption
49:b8:df:a2:66:09:d0:57:20:cd:20:f2:87:bc:39:06:56:43:
d0:cc:07:f3:ad:d4:90:a6:87:fd:f6:55:cf:79:90:62:bd:ef:
47:a3:60:ac:0f:6f:1b:f3:c1:ae:db:2d:f9:ad:b2:5b:94:e3:
46:25:73:32:f5:e7:84:75:f8:9c:13:a7:e9:f5:fb:b7:b3:83:
0c:ba:07:d6:0b:07:f3:5f:7f:ec:61:72:0d:6b:bb:8b:13:39:
84:bf:56:07:e6:97:6b:0f:77:c5:14:ef:9d:d2:5d:e2:f7:4b:
2f:a2:ed:4b:f7:2d:93:02:87:b8:29:a9:a1:20:09:7d:57:fb:
f9:63:2a:9a:ce:c9:e1:27:45:70:f2:a8:21:bd:4a:60:42:85:
e9:3e:90:aa:a9:fd:67:18:34:27:85:0e:7f:da:30:19:7d:f5:
d0:3b:68:e4:11:4e:81:af:a9:3c:52:72:eb:ff:e2:92:57:b2:
90:88:09:bd:63:f4:9a:ef:8b:2f:0d:b3:38:68:9e:29:a6:8f:
20:24:3a:65:de:f6:c8:73:db:ee:74:57:ba:6c:b6:45:4a:54:
d1:cd:24:fc:79:3d:88:27:b2:2f:f9:1d:f8:a8:1d:80:29:3e:
cf:bc:a5:ac:1e:4e:89:70:1a:74:e3:d8:67:59:78:25:4d:69:
11:ea:e8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:41:46 2025 by rpki-client