Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bLe0LU6X2eEexjr3AuKWknf6bY4.roa
File: bLe0LU6X2eEexjr3AuKWknf6bY4.roa (raw, json)
Hash identifier: G2oMtsatVW3pFd9EmaioStJmmwOUElvOJAw15pLP1bE=
Subject key identifier: 6C:B7:B4:2D:4E:97:D9:E1:1E:C6:3A:F7:02:E2:96:92:77:FA:6D:8E
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1187
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bLe0LU6X2eEexjr3AuKWknf6bY4.roa
Signing time: Mon 26 Aug 2024 05:10:52 +0000
ROA not before: Mon 26 Aug 2024 05:10:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 150.117.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4487 (0x1187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:10:52 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6CB7B42D4E97D9E11EC63AF702E2969277FA6D8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9b:1b:85:42:ed:1e:66:f6:7a:39:3d:e6:f9:
c0:39:e6:63:cc:85:b5:60:e1:2d:62:c7:68:08:f1:
e5:b7:47:b1:8d:8a:e7:b7:eb:93:d0:92:dd:31:81:
40:46:0c:99:93:52:00:c9:70:1d:09:41:36:83:58:
70:24:e3:0a:f8:55:5e:67:30:ef:4f:6f:5d:a9:af:
58:a4:8f:b6:a7:3f:59:1e:b8:9c:ab:6c:7e:91:5b:
a0:3e:33:eb:db:9e:fc:29:de:5d:56:1c:d2:e0:e1:
ef:3c:3f:99:51:44:2f:d5:2b:23:d8:9f:0b:fd:0f:
d6:bd:02:1f:95:26:4e:19:74:2a:18:74:c3:36:63:
b5:ec:59:47:a0:55:96:ef:24:20:8d:cf:c8:21:38:
71:99:2c:0d:b2:2d:51:fd:d6:67:43:cb:91:b0:00:
b1:f0:67:5f:10:46:d2:5f:92:db:bf:88:3c:43:75:
8b:54:d1:d7:f2:55:c0:6f:4b:46:c9:18:f4:ad:86:
c3:28:a3:68:e3:f4:31:c7:5c:e0:82:51:a1:54:db:
40:97:b6:33:4f:2f:ff:96:e3:71:31:cd:9b:0d:4e:
3c:79:34:50:09:a9:99:6a:be:99:21:a3:e5:df:09:
0d:99:61:f6:dd:b6:38:40:43:d4:b9:65:db:0d:f4:
6e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B7:B4:2D:4E:97:D9:E1:1E:C6:3A:F7:02:E2:96:92:77:FA:6D:8E
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bLe0LU6X2eEexjr3AuKWknf6bY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.64.0/20
Signature Algorithm: sha256WithRSAEncryption
11:6e:cf:57:2b:c8:c9:1d:a0:a5:28:01:b8:61:8e:b0:5c:79:
c4:03:96:2f:99:48:88:d3:91:f7:33:02:1d:6e:a2:dd:f7:b8:
6a:fb:6b:05:65:e5:12:43:7c:e6:81:03:9c:39:ba:94:cb:f6:
84:2c:bf:36:a0:06:18:c0:c3:e7:4f:92:16:a5:08:6f:a1:1d:
67:23:a3:7e:de:f3:1a:fb:9f:88:72:04:b8:ba:36:b5:d5:72:
24:20:4c:ea:31:2b:a2:eb:db:42:af:35:0b:13:1f:2e:16:6e:
a9:46:20:29:9b:63:5e:a1:0e:4a:7c:86:44:5e:b4:08:64:01:
43:3e:9f:d7:cc:ad:77:c1:e8:08:6b:35:91:c5:cd:2f:26:68:
f3:59:d4:2d:6a:d0:46:fc:1e:96:b9:ab:f3:3e:49:49:b4:63:
67:ce:2b:52:81:b5:e0:08:82:05:e4:e6:09:44:3d:48:a2:b6:
64:54:47:29:ca:5f:cf:e5:61:92:8a:04:f3:89:2b:40:4a:c6:
a1:73:4f:09:be:f3:f0:2c:4b:72:14:6c:d9:9b:8c:f1:49:78:
f1:a0:47:4a:bf:73:4c:35:4c:06:d8:18:e9:69:f0:6a:2e:d0:
29:9e:ad:fe:00:59:1c:48:f6:5d:d8:85:4f:dc:c8:de:29:f8:
b8:b2:d3:4f
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw
NTEwNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDQjdCNDJENEU5N0Q5
RTExRUM2M0FGNzAyRTI5NjkyNzdGQTZEOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtmxuFQu0eZvZ6OT3m+cA55mPMhbVg4S1ix2gI8eW3R7GNiue3
65PQkt0xgUBGDJmTUgDJcB0JQTaDWHAk4wr4VV5nMO9Pb12pr1ikj7anP1keuJyr
bH6RW6A+M+vbnvwp3l1WHNLg4e88P5lRRC/VKyPYnwv9D9a9Ah+VJk4ZdCoYdMM2
Y7XsWUegVZbvJCCNz8ghOHGZLA2yLVH91mdDy5GwALHwZ18QRtJfktu/iDxDdYtU
0dfyVcBvS0bJGPSthsMoo2jj9DHHXOCCUaFU20CXtjNPL/+W43ExzZsNTjx5NFAJ
qZlqvpkho+XfCQ2ZYfbdtjhAQ9S5ZdsN9G4LAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUbLe0LU6X2eEexjr3AuKWknf6bY4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9iTGUwTFU2WDJlRWV4
anIzQXVLV2tuZjZiWTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQElnVAMA0GCSqGSIb3DQEBCwUAA4IBAQARbs9XK8jJHaClKAG4YY6wXHnEA5Yv
mUiI05H3MwIdbqLd97hq+2sFZeUSQ3zmgQOcObqUy/aELL82oAYYwMPnT5IWpQhv
oR1nI6N+3vMa+5+IcgS4uja11XIkIEzqMSui69tCrzULEx8uFm6pRiApm2NeoQ5K
fIZEXrQIZAFDPp/XzK13wegIazWRxc0vJmjzWdQtatBG/B6WuavzPklJtGNnzitS
gbXgCIIF5OYJRD1IorZkVEcpyl/P5WGSigTziStASsahc08JvvPwLEtyFGzZm4zx
SXjxoEdKv3NMNUwG2BjpafBqLtApnq3+AFkcSPZd2IVP3MjeKfi4stNP
-----END CERTIFICATE-----
Generated at Wed Apr 9 13:39:33 2025 by rpki-client