Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/z-bJ86c9oI1Qzd_TnycxkSFvZIE.roa
File: z-bJ86c9oI1Qzd_TnycxkSFvZIE.roa (raw, json)
Hash identifier: 6bPd7zFmNL0XIKWLUeqjWDFzZwMvvkHNPC/0JuNlekw=
Subject key identifier: CF:E6:C9:F3:A7:3D:A0:8D:50:CD:DF:D3:9F:27:31:91:21:6F:64:81
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 11D4
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/z-bJ86c9oI1Qzd_TnycxkSFvZIE.roa
Signing time: Thu 05 Sep 2024 08:18:51 +0000
ROA not before: Thu 05 Sep 2024 08:18:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 150.116.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4564 (0x11d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 5 08:18:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CFE6C9F3A73DA08D50CDDFD39F273191216F6481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:a4:59:a6:4a:b0:13:4a:57:c5:11:a2:2c:
3c:89:c7:42:38:68:0c:f4:b2:c6:71:5c:bf:b5:2d:
c6:86:80:46:39:61:52:cb:de:6d:37:a1:be:73:02:
31:98:80:27:24:03:db:13:4b:b2:ec:9f:42:67:ca:
f9:9f:47:b9:9f:3e:53:57:bc:7d:5e:ac:15:7b:d4:
0d:4d:33:e1:07:b0:d0:5d:ac:57:31:22:16:f2:da:
25:af:e3:bb:51:c2:65:c4:b9:9b:80:15:76:ab:09:
f7:4d:98:a2:bc:b5:6d:e3:53:ce:3e:03:7f:ec:4c:
c9:4c:72:58:34:6d:f5:99:19:39:9e:09:c1:b3:09:
c1:bc:9c:b9:d1:61:23:18:7d:11:1b:52:5a:c6:a9:
c1:61:41:e0:7b:78:ed:59:c8:b4:5a:4e:77:64:29:
47:1f:34:c2:53:7e:8e:30:53:15:13:35:a4:ea:d1:
f1:93:38:b5:50:b9:5a:40:4a:ea:16:35:dc:1b:7a:
60:9a:8b:b3:ec:42:10:46:9f:cc:2e:b9:49:c4:47:
89:f0:1c:38:94:4e:72:de:f4:d2:a1:84:16:cd:87:
7f:0f:6d:6e:80:97:d4:09:e5:78:8c:4e:9b:77:27:
41:7e:63:1b:03:a6:b2:2a:bf:0b:7a:ee:d9:03:5e:
d4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E6:C9:F3:A7:3D:A0:8D:50:CD:DF:D3:9F:27:31:91:21:6F:64:81
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/z-bJ86c9oI1Qzd_TnycxkSFvZIE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.13.0/24
Signature Algorithm: sha256WithRSAEncryption
41:5d:c9:b0:56:b3:5d:af:eb:7f:42:97:d6:ef:6b:e8:49:5e:
74:84:cf:16:11:0f:fe:96:0f:ef:e2:ee:40:29:e4:4c:b3:d8:
20:09:19:64:66:a7:aa:e5:ec:2a:2d:20:8b:03:6c:a8:83:17:
2e:3a:ac:af:44:b0:a1:7a:d7:f6:b0:56:48:88:d5:1f:2e:06:
dc:ed:f6:7d:e6:47:24:24:ab:0e:e3:77:a7:52:37:97:6b:ae:
de:69:cc:7f:df:12:a8:28:98:32:4b:e0:fd:b0:48:2d:84:88:
53:a9:05:58:c2:13:71:19:cc:dd:a1:ad:65:5b:59:24:d6:e7:
44:50:9b:f2:22:d8:48:12:65:4c:c1:f6:11:79:ff:b1:5c:e0:
80:64:6e:c6:24:ff:09:a9:ba:9f:74:31:6d:49:76:f5:05:fa:
7d:eb:ca:a6:50:36:ba:e8:3d:58:c4:30:15:9b:8d:f7:b2:76:
da:8c:c1:25:88:04:c0:15:20:f9:76:20:ab:50:6d:ca:69:a2:
c3:f1:71:a1:e4:16:53:19:5b:38:fb:fb:c2:2d:74:a4:a8:ee:
06:84:f8:eb:61:b9:1c:3f:10:d8:84:cd:77:54:87:ef:a3:ff:
cd:09:dc:d9:a1:bf:c2:8c:cd:7d:e8:2e:fd:c6:cd:89:cb:bb:
36:e7:69:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 22:55:57 2025 by rpki-client