Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kbiymP3R-83wyFaK4NO7Sjn5Oig.roa
File: kbiymP3R-83wyFaK4NO7Sjn5Oig.roa (raw, json)
Hash identifier: d3DHcdTHPFGUJ15C+LXlqFbu01YpM/dqPsuJsXLDfmo=
Subject key identifier: 91:B8:B2:98:FD:D1:FB:CD:F0:C8:56:8A:E0:D3:BB:4A:39:F9:3A:28
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11BD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kbiymP3R-83wyFaK4NO7Sjn5Oig.roa
Signing time: Mon 26 Aug 2024 05:11:05 +0000
ROA not before: Mon 26 Aug 2024 05:11:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.48.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4541 (0x11bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 26 05:11:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=91B8B298FDD1FBCDF0C8568AE0D3BB4A39F93A28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a5:eb:cc:43:91:cc:21:35:c2:9b:a5:13:46:
81:cc:5f:f0:0f:46:8b:11:10:76:d3:b9:2e:13:5d:
27:1f:c9:18:ea:3a:45:74:9a:44:fe:08:f3:96:ee:
ea:b5:82:9f:3f:47:cf:a2:5b:7f:94:80:9d:b9:fb:
09:eb:63:41:76:ee:d5:59:e7:f5:a2:81:73:3b:11:
f6:af:48:1d:be:9d:fb:8f:0a:50:60:b4:ef:1b:92:
7a:13:b2:93:39:39:22:b3:b0:ba:71:9f:d0:11:ee:
a7:93:f4:09:6f:10:40:7c:08:7c:1c:fc:98:a2:91:
bb:4f:a3:48:1f:5d:f5:8b:1e:07:1f:22:03:27:29:
90:df:a2:77:fe:bf:ff:00:cb:bb:f0:b7:f0:f7:89:
50:4d:39:eb:7b:cb:fe:dd:d8:0b:c1:45:3f:9d:02:
64:4a:6f:8e:0d:ea:6b:39:87:4f:99:4c:f0:c0:f7:
d9:d1:05:be:d9:f2:c3:eb:31:24:06:f7:30:86:2c:
d3:9c:61:2f:0c:09:3d:46:a1:a9:50:8c:a8:6a:d1:
9d:e1:e8:84:9c:9f:83:4b:bf:db:c4:dd:f4:1e:49:
09:35:97:e0:52:4c:e7:24:50:e4:ce:e5:47:82:91:
3f:ad:61:41:c8:a2:0e:b8:a6:6a:30:57:90:36:5f:
f4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B8:B2:98:FD:D1:FB:CD:F0:C8:56:8A:E0:D3:BB:4A:39:F9:3A:28
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kbiymP3R-83wyFaK4NO7Sjn5Oig.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.48.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:59:c0:72:8d:9b:e3:56:df:64:98:d3:2f:65:50:36:37:7f:
ef:2b:0d:b9:2d:93:51:a0:f9:4f:f0:95:42:15:b2:d7:ad:5c:
a3:df:99:85:5a:c8:10:c4:d9:63:1c:5d:5c:18:20:e3:9c:28:
57:b3:1c:60:50:20:82:62:3e:13:a4:46:b1:cd:5e:38:cf:31:
f3:c3:b8:32:40:41:6a:ab:9f:99:6a:84:04:5f:c8:a1:bc:e6:
69:ae:07:9f:8a:69:4f:e2:6e:72:3a:d8:80:4f:a1:0b:e0:cf:
87:d4:78:f5:18:27:c8:b4:93:c2:b1:71:b5:d6:4a:76:94:6c:
5d:1e:1c:26:0d:9a:a0:2a:05:bb:30:9a:67:aa:47:60:f3:0d:
e3:79:45:1f:08:fe:28:a9:d9:17:2e:d5:19:b8:a7:d6:6f:be:
d1:d4:bd:7b:f2:d0:a1:85:51:47:56:bf:21:6c:82:e3:fb:1b:
52:99:54:7d:59:dd:c5:6c:c7:fe:62:27:fc:3b:21:27:51:ac:
11:bb:e1:47:34:d2:c9:6b:b7:30:9c:ec:ac:67:6e:5e:e3:53:
af:0f:1c:02:69:de:c8:0f:b2:e8:06:88:f1:38:ae:d0:1f:b7:
27:f0:ba:8f:82:b8:1b:cf:20:33:82:e9:0f:bb:86:b1:40:9d:
48:56:55:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:51:25 2025 by rpki-client