Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fyTO74ruF03mHa25DuEkvPvyQ1U.roa
File: fyTO74ruF03mHa25DuEkvPvyQ1U.roa (raw, json)
Hash identifier: 2I9jpX7DvunLNDTsb2aS9OAqk+KKnIpAg2auLDXsCiA=
Subject key identifier: 7F:24:CE:EF:8A:EE:17:4D:E6:1D:AD:B9:0E:E1:24:BC:FB:F2:43:55
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11BC
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fyTO74ruF03mHa25DuEkvPvyQ1U.roa
Signing time: Mon 26 Aug 2024 05:11:05 +0000
ROA not before: Mon 26 Aug 2024 05:11:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 118.150.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4540 (0x11bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7F24CEEF8AEE174DE61DADB90EE124BCFBF24355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:34:15:d0:38:34:28:16:e7:e2:89:47:e7:cf:
c1:3b:58:81:6c:99:5a:29:2f:49:79:48:5e:8a:49:
fa:2f:12:e6:ad:ef:1e:92:b8:26:70:42:11:da:86:
95:57:a0:90:3e:0f:17:0d:42:c7:c9:ed:a6:08:4d:
28:a1:29:ad:ed:71:79:d5:7d:b0:2e:e4:6a:d6:13:
6a:66:99:62:fa:4b:45:ab:95:a3:05:83:2a:f0:22:
f3:8b:92:28:83:9f:1b:cd:50:80:7a:50:c6:2c:a5:
0b:7e:99:05:69:2a:20:bf:80:29:df:53:73:66:be:
4a:19:09:ae:15:a6:39:b0:e4:c5:41:8d:f1:10:18:
6e:84:d5:f7:37:c7:85:8d:e4:35:69:d1:25:a4:7c:
5e:a4:fe:7a:0d:dd:46:b5:a8:96:eb:41:07:36:e2:
70:ae:fe:5c:55:53:ca:fa:51:42:d8:74:00:4d:6d:
a3:ca:d8:c4:f5:00:bb:1a:7d:85:13:a7:11:27:12:
f5:18:cc:ab:09:f8:46:af:36:7e:37:76:5e:13:85:
1e:59:f1:d8:38:ef:c5:1e:1e:cc:37:cc:8a:a2:d5:
12:ad:2f:2a:7e:c5:7a:81:7c:73:3b:97:75:0b:44:
3a:c9:bb:41:c8:d8:d2:65:28:36:99:3c:ea:71:28:
30:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:24:CE:EF:8A:EE:17:4D:E6:1D:AD:B9:0E:E1:24:BC:FB:F2:43:55
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fyTO74ruF03mHa25DuEkvPvyQ1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.252.0/22
Signature Algorithm: sha256WithRSAEncryption
37:d3:86:d9:0b:a2:37:94:7c:e5:ff:e1:3b:57:00:eb:56:70:
17:cd:3b:48:6c:3f:aa:a1:f0:d9:1b:26:a9:1d:7d:ca:fd:ba:
de:c3:b7:fc:17:7e:5b:91:86:61:6f:73:29:69:1f:ad:52:68:
9b:b9:3b:33:13:91:0c:f7:cf:cb:44:5f:42:01:9d:25:75:68:
62:f4:02:f1:cc:ff:80:f5:cc:45:38:10:2c:97:49:68:7b:9e:
f2:1c:01:d7:e8:46:8a:0a:f5:b7:42:09:a5:15:48:03:b5:2e:
0e:a9:01:1c:f2:b7:b3:21:28:72:62:9c:46:eb:8c:3d:14:fc:
dd:c2:9d:b9:32:17:4a:09:ae:8b:21:33:79:a6:07:c3:51:30:
5d:a8:00:94:4b:e8:21:cd:41:dd:c3:12:6d:eb:2a:3f:ce:bf:
e5:87:48:3e:d6:a7:a1:6d:ca:c6:40:d1:90:ea:16:d5:d7:79:
e0:66:13:5a:97:5e:74:42:ea:a9:5a:93:b7:bf:69:b4:fc:89:
bd:95:50:49:22:18:65:ee:5e:7d:34:ee:0f:b6:ee:20:8c:f1:
e4:da:17:9e:b5:37:c5:04:c4:e9:02:ee:82:ce:30:e5:d1:13:
d1:05:b8:80:cd:f5:ca:67:bc:df:cd:05:33:62:db:aa:33:eb:
92:86:f3:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:57:44 2025 by rpki-client