Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iJUbvL3iifu82jU5MeaAmLpyuvM.roa
File: iJUbvL3iifu82jU5MeaAmLpyuvM.roa (raw, json)
Hash identifier: 6pH9TgpHR7Ss+DNPVy63pjFs0CzzQDx5aKYfmFO8Avc=
Subject key identifier: 88:95:1B:BC:BD:E2:89:FB:BC:DA:35:39:31:E6:80:98:BA:72:BA:F3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 12B3
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iJUbvL3iifu82jU5MeaAmLpyuvM.roa
Signing time: Mon 10 Feb 2025 14:15:08 +0000
ROA not before: Mon 10 Feb 2025 14:15:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131273
IP address blocks: 150.116.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4787 (0x12b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:15:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=88951BBCBDE289FBBCDA353931E68098BA72BAF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ee:16:07:e6:e1:cc:56:12:a0:55:a3:ef:0e:
7f:97:16:5c:f6:6f:04:da:01:b2:36:a0:c3:dd:c1:
67:a2:f4:61:1e:91:2d:13:c3:8e:40:fc:22:b4:70:
76:d1:62:97:9a:a9:39:86:16:63:e7:63:70:9c:d3:
dd:16:b4:8a:61:b0:af:6a:06:10:5c:9d:7a:bd:ee:
21:63:ba:08:d2:02:ad:5b:a8:47:bd:16:f8:2a:7e:
ac:d9:17:b4:5c:e5:91:0b:be:4f:ee:be:14:a0:e4:
67:83:98:fb:49:7b:08:e0:b0:5c:da:9a:56:9e:1f:
ee:59:d1:96:71:0e:d9:78:70:96:c8:3c:89:4a:f5:
0d:35:44:73:51:7c:85:80:26:93:8a:bd:3f:c0:a3:
ed:ca:61:cd:35:8b:bc:a3:e0:13:ce:90:b1:1b:7a:
d2:44:70:8a:9d:55:91:5a:4b:8a:7e:f1:93:6f:3b:
33:f0:26:92:2e:0d:87:75:a3:b8:f6:77:3a:4d:e2:
1d:ee:2c:b6:a2:40:33:dc:0d:ab:0b:3b:65:e2:0b:
39:14:da:00:f3:07:7e:c4:cb:bb:76:e2:53:8a:42:
04:32:64:ce:82:be:22:82:1d:54:fd:da:7f:e1:6c:
ad:19:a9:7d:1b:86:bb:f8:11:8c:73:ff:4f:fc:31:
3a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:95:1B:BC:BD:E2:89:FB:BC:DA:35:39:31:E6:80:98:BA:72:BA:F3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iJUbvL3iifu82jU5MeaAmLpyuvM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.80.0/24
Signature Algorithm: sha256WithRSAEncryption
40:8e:d6:91:48:ae:2c:15:fb:38:d4:c6:67:5a:ec:0a:a3:05:
1e:e6:47:e9:a5:b4:60:99:91:23:2e:65:4d:24:2e:08:b0:5a:
21:93:f6:29:bf:5a:87:8d:cc:64:39:31:d1:f0:08:a0:2d:f7:
2e:19:f5:51:4a:b7:8f:67:00:f3:0c:69:07:e0:47:7d:2f:a5:
72:60:ad:92:67:ba:b7:5f:f9:90:5f:bc:10:41:bd:96:59:f8:
69:1f:57:47:8a:97:46:1a:b1:ba:81:a3:a3:67:f9:24:c7:66:
bc:0f:ef:cc:81:6a:33:b3:69:2e:c5:18:97:5c:d2:bc:89:00:
2f:96:5c:80:66:85:31:74:2e:a2:c6:ce:df:9e:9b:9b:99:0d:
de:4a:a5:1c:5c:75:50:b4:56:f3:59:93:05:1d:14:c4:91:74:
0d:3f:30:0c:6c:f6:c1:b4:ae:eb:1d:d6:35:7d:d3:eb:2a:64:
07:b0:b6:83:80:0a:96:30:a5:97:20:bd:79:0b:69:ed:8d:09:
c7:a9:45:94:e7:b2:5c:06:a9:50:7d:08:00:c2:25:08:2d:89:
a6:5d:eb:49:98:82:47:0e:f0:9e:80:84:62:9a:04:a6:16:26:
b9:2f:ed:d1:84:a6:6f:3a:fd:7f:6f:c6:4a:95:a2:26:9d:2b:
cd:bd:a0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 03:09:50 2025 by rpki-client