Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZuAskEM7sFNF5IvOxcMolV8vZRQ.roa
File: ZuAskEM7sFNF5IvOxcMolV8vZRQ.roa (raw, json)
Hash identifier: iEMJ2iptATvQfh21kuFeR+fTkah8uFCBSNLeR4oTYY4=
Subject key identifier: 66:E0:2C:90:43:3B:B0:53:45:E4:8B:CE:C5:C3:28:95:5F:2F:65:14
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12AA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZuAskEM7sFNF5IvOxcMolV8vZRQ.roa
Signing time: Mon 10 Feb 2025 14:15:06 +0000
ROA not before: Mon 10 Feb 2025 14:15:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 57976
IP address blocks: 150.116.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4778 (0x12aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=66E02C90433BB05345E48BCEC5C328955F2F6514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:75:65:d1:0b:32:e1:7e:d4:d1:a6:18:50:9c:
cc:95:23:c8:1f:9a:68:f4:2c:ef:14:47:4a:59:83:
81:bb:f6:5c:18:c3:86:bc:51:94:31:e5:9a:f1:0b:
6c:24:28:22:4f:2c:50:f6:6a:ac:e2:81:28:39:f2:
c2:93:cd:de:53:7b:7b:1a:85:92:12:69:72:ca:cb:
54:ee:79:7c:7d:bd:81:a1:42:38:10:26:7d:84:bf:
79:f6:41:89:a8:44:c7:6e:05:6a:cd:23:0c:fd:03:
ed:a5:25:e5:de:fd:7e:80:38:69:c8:2e:10:0e:49:
b6:8d:8a:9a:d4:76:cc:e6:2a:f1:63:1d:51:24:6f:
64:be:b5:be:05:16:b9:e5:40:4b:0b:ec:13:cf:f3:
9f:2d:e1:89:f0:c1:78:03:4c:66:8f:9a:13:f7:d5:
b3:ae:91:42:99:ae:7a:97:7b:52:b7:90:c4:e9:50:
1f:32:ac:54:dd:52:35:20:b7:28:3e:04:27:1d:2c:
b9:74:4c:f3:fe:2a:2e:3c:67:28:2e:ca:1a:47:7a:
52:f1:82:46:c4:6c:44:0a:3c:84:3f:44:1d:49:1f:
93:5d:d9:32:0b:35:47:1c:9e:00:10:d1:cc:55:c2:
fc:9f:f3:d7:a0:70:ff:f0:22:4a:00:89:29:88:fb:
12:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E0:2C:90:43:3B:B0:53:45:E4:8B:CE:C5:C3:28:95:5F:2F:65:14
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZuAskEM7sFNF5IvOxcMolV8vZRQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.9.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:93:cd:90:0c:59:fe:b9:60:88:d6:19:80:73:6c:8d:91:cc:
94:76:ba:e1:69:52:90:51:63:b0:56:90:ef:ea:74:55:60:1e:
97:0d:00:8f:2d:1f:be:ba:fb:58:fe:73:fc:9d:cd:43:8a:e1:
11:a2:3a:03:1d:17:31:ee:f5:7e:43:2c:9c:69:5b:57:dd:2f:
53:e8:7c:9a:9d:70:c2:e6:ca:6b:29:5f:ff:78:33:10:c3:09:
a5:e4:4e:e2:cd:48:8b:cb:cc:73:f7:be:90:4a:6e:91:53:e8:
70:c9:de:19:87:cd:07:3c:34:33:3f:b9:76:f3:a7:10:5b:06:
b9:df:3a:31:1d:f0:1d:07:0e:42:1b:1c:49:be:b9:34:f0:a9:
3c:7b:a2:cf:f1:5d:ae:53:df:05:7c:76:6e:c5:cc:1c:cc:3c:
b1:2d:7f:2e:cf:f3:8d:3e:2c:9c:7b:57:fb:2b:45:da:6e:70:
bc:36:26:9e:c2:24:32:f1:d7:08:00:46:3a:2f:51:65:51:e1:
99:2d:a8:88:7f:df:45:48:59:e7:93:ba:f2:cc:3f:52:ea:32:
b8:1c:c4:69:dc:c0:4c:7a:6f:90:a1:22:ca:67:c2:61:5c:91:
4f:b8:2e:f4:28:17:0b:c7:e5:06:82:dc:8b:e4:ab:1f:dc:7f:
ac:99:2b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:54:32 2025 by rpki-client