Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/er_o0cgQzCMX2W1HLbt49gVZVTQ.roa
File: er_o0cgQzCMX2W1HLbt49gVZVTQ.roa (raw, json)
Hash identifier: 8Md5rCaPO6FwvovSLKhOPCksdyeKT1nE6X/535J1aGI=
Subject key identifier: 7A:BF:E8:D1:C8:10:CC:23:17:D9:6D:47:2D:BB:78:F6:05:59:55:34
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1411
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/er_o0cgQzCMX2W1HLbt49gVZVTQ.roa
Signing time: Fri 22 Aug 2025 08:57:31 +0000
ROA not before: Fri 22 Aug 2025 08:57:31 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 118.150.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5137 (0x1411)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 22 08:57:31 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=7ABFE8D1C810CC2317D96D472DBB78F605595534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f7:81:01:6a:3c:30:3a:0e:44:fd:97:cf:53:
c6:c5:d6:08:ef:68:a7:3c:d6:21:0f:cf:3a:e6:1e:
d8:01:01:d5:c5:19:67:63:99:49:bf:6e:fc:91:db:
df:d4:ef:1e:99:f2:3d:ce:c3:56:49:85:e0:4c:51:
26:32:31:68:5f:b1:f0:f9:dd:48:f8:8e:ce:95:b0:
cc:40:ac:14:e8:38:8d:d3:c3:bd:2a:1c:93:78:63:
7a:6d:62:0f:36:66:36:c9:b0:67:da:61:c3:ef:d0:
da:d2:1a:dd:41:d2:c5:cb:48:72:16:83:99:36:df:
6e:39:8e:0d:89:b8:84:d9:1f:f2:4f:7c:10:2a:87:
b9:28:01:df:1c:13:b5:54:33:e9:5a:ae:e0:cf:a8:
f8:60:8a:14:eb:7e:8e:41:40:85:56:c9:4d:2e:40:
0d:27:34:78:b1:9d:90:3f:71:e9:07:18:be:e1:0f:
0c:e8:a6:bf:6e:71:ec:c7:ca:88:ca:bc:c7:d5:25:
6b:56:95:ae:60:b8:82:12:d8:9b:b3:84:af:4b:b4:
41:e4:2b:e5:0d:f1:76:44:b3:84:7c:70:2f:7f:a7:
40:a5:28:07:d7:a8:77:b4:d2:a3:85:58:47:32:dd:
ea:57:64:fd:51:b4:26:e8:30:4f:c9:48:81:bb:7a:
76:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BF:E8:D1:C8:10:CC:23:17:D9:6D:47:2D:BB:78:F6:05:59:55:34
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/er_o0cgQzCMX2W1HLbt49gVZVTQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.128.0/18
Signature Algorithm: sha256WithRSAEncryption
40:67:41:67:fb:48:91:11:6e:a2:1e:18:75:2b:f3:8b:71:28:
a3:e0:9e:de:28:03:93:f3:5a:37:ac:2e:f2:20:40:8e:73:45:
7f:fe:42:8d:c3:90:7d:53:a7:be:43:78:89:d5:12:ed:b3:9f:
c3:be:e8:42:c7:31:0a:3c:9e:8c:4d:06:9e:2c:66:ab:61:82:
40:46:19:3f:a2:bd:ab:2a:fb:a2:ab:80:90:97:40:8c:fd:a6:
fb:b1:e9:59:a8:01:b7:f4:c2:13:8a:f8:09:c8:a1:78:46:96:
91:75:dc:31:4c:3e:f9:cd:4c:eb:b9:9e:ea:07:93:61:ab:8b:
a9:96:19:da:cb:32:a9:31:c3:54:f6:9a:a7:26:29:70:de:dd:
63:d2:38:a7:86:47:60:2d:07:84:dd:8e:a2:e2:bf:4b:5c:83:
4d:c5:b4:d2:28:ea:01:06:f7:ff:8b:bb:10:41:c9:cf:ec:99:
fe:03:8a:57:c5:32:8e:c2:f8:01:4f:f0:48:95:d3:21:62:9e:
8e:3f:8c:95:bf:20:a8:65:1a:0c:29:0c:a7:12:6a:45:bd:d9:
d4:20:a6:4f:72:01:7f:0c:62:80:37:fc:4d:d0:b6:7e:58:ca:
7a:60:99:62:ce:dc:cd:47:1c:a4:8a:7d:ab:6d:fe:25:95:15:
a6:5c:7c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:03 2025 by rpki-client