Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uplZIJz1DPFgOHVEiWSKw2ZtPuk.roa
File: uplZIJz1DPFgOHVEiWSKw2ZtPuk.roa (raw, json)
Hash identifier: aTrTKDoLgDPST47yBPqVLCk7S8SCaN86MyCh73vHwfY=
Subject key identifier: BA:99:59:20:9C:F5:0C:F1:60:38:75:44:89:64:8A:C3:66:6D:3E:E9
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 128D
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uplZIJz1DPFgOHVEiWSKw2ZtPuk.roa
Signing time: Mon 10 Feb 2025 14:14:59 +0000
ROA not before: Mon 10 Feb 2025 14:14:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63199
IP address blocks: 203.163.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4749 (0x128d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Feb 10 14:14:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BA9959209CF50CF16038754489648AC3666D3EE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:33:a6:e8:ac:09:f3:54:e1:82:59:52:51:71:
78:13:38:8d:1f:ed:5d:45:fe:23:44:ec:95:cc:45:
02:ba:36:20:a2:75:cf:00:1b:30:6d:4c:9e:f9:aa:
fa:3b:3e:8c:53:c1:13:12:5f:6b:c5:89:c9:4f:3b:
5b:94:a4:e9:f4:be:6c:d2:d4:19:0e:d4:2c:1b:4e:
05:b3:a6:b4:8e:61:5b:9a:7b:bc:6d:e6:83:8b:4d:
d7:2d:65:da:36:d0:5a:6b:4d:62:92:29:d5:83:b5:
87:ea:a6:ff:5b:c8:32:14:f9:3a:5d:29:d4:49:99:
29:4e:1c:75:17:c4:86:0a:13:4b:64:81:d2:85:9d:
f1:20:46:f9:a8:e1:f1:db:6f:bc:04:cb:06:72:9f:
6b:f9:3d:10:90:4c:dc:59:a2:36:89:3c:80:cc:ec:
ae:4b:c5:66:c5:7d:8a:4c:f5:8d:58:be:27:2e:54:
18:b4:61:9e:e1:d9:e8:47:ea:80:86:e4:0d:6b:a7:
59:a3:1f:84:9a:87:97:8f:10:20:5f:43:e5:ee:7f:
1e:44:ff:e7:e4:f5:63:09:80:21:b7:46:52:c4:75:
94:c9:a6:90:83:0f:48:b6:d3:af:ff:48:cc:44:9c:
e3:73:f5:58:7e:60:c7:7d:02:51:b3:0a:c3:5b:4a:
dc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:99:59:20:9C:F5:0C:F1:60:38:75:44:89:64:8A:C3:66:6D:3E:E9
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uplZIJz1DPFgOHVEiWSKw2ZtPuk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.216.0/24
Signature Algorithm: sha256WithRSAEncryption
28:db:c8:a0:ea:8d:c8:97:e3:5b:3e:83:45:00:1f:9f:57:06:
b4:db:20:00:7e:76:4b:ac:7b:58:4f:04:51:46:b3:0f:7b:2e:
45:67:2f:98:6a:2b:80:8e:99:c0:ca:70:5e:f6:a5:85:93:de:
60:8c:20:c6:94:ed:34:7a:87:e6:10:c0:e5:7a:61:5b:27:f9:
d2:e9:ba:3a:ae:b5:4d:c3:05:c1:d2:8c:34:3d:4c:97:b7:90:
af:bc:bf:cb:8d:15:20:f0:f0:15:80:d5:ac:03:bb:4e:1d:20:
cb:e5:a5:31:1a:d4:fa:be:c4:f1:f2:9f:73:64:96:ce:9a:1f:
50:53:98:bd:95:17:ba:be:ef:5a:7e:73:cf:88:ba:96:dd:45:
69:14:94:da:57:fd:e3:b9:d6:d3:70:f1:3e:b7:81:e4:85:b4:
11:14:a6:ac:22:eb:04:cf:4a:6f:02:13:6b:6b:d6:2b:03:a1:
23:f7:d2:5b:34:67:ae:51:57:53:13:49:23:df:04:ec:94:a2:
82:5f:55:11:fd:32:e0:ae:ce:fe:eb:56:6c:9b:72:31:99:b1:
c0:2d:12:92:31:82:33:f6:a4:1e:64:7f:a8:b9:88:5d:53:ae:
48:81:69:c5:83:d8:f4:aa:c9:d2:50:dd:41:63:e9:d8:e8:d6:
a5:97:d6:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:56:49 2025 by rpki-client