Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hfWDWcS-YhQYzQU8GYev_jJZ_sc.roa
File: hfWDWcS-YhQYzQU8GYev_jJZ_sc.roa (raw, json)
Hash identifier: 05/NAEd2X37n81Hgi2s8TXall/tMaVAczDqQJCbYN1I=
Subject key identifier: 85:F5:83:59:C4:BE:62:14:18:CD:05:3C:19:87:AF:FE:32:59:FE:C7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 34B1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hfWDWcS-YhQYzQU8GYev_jJZ_sc.roa
Signing time: Mon 10 Feb 2025 13:52:37 +0000
ROA not before: Mon 10 Feb 2025 13:52:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 106.1.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13489 (0x34b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=85F58359C4BE621418CD053C1987AFFE3259FEC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:02:4f:1a:88:79:bb:5e:f5:ee:cd:56:ba:dc:
f8:4d:6f:2b:1d:8c:2c:a1:e2:22:47:32:c6:5f:9a:
08:9f:7b:fd:0a:5f:87:ea:d8:ad:18:51:d5:c1:7b:
8c:53:6d:d7:f0:62:4a:93:95:3f:0e:5b:39:b3:4f:
26:55:30:45:ed:6e:ee:48:89:6f:13:ca:3e:26:9e:
0c:cc:01:e9:60:9b:dc:e0:5b:87:47:ff:dc:b9:8b:
66:e1:28:72:c2:59:ea:45:52:a8:bb:0a:fe:87:e3:
29:76:e9:89:e2:d9:29:a9:5f:06:07:bf:4f:91:9c:
bc:43:be:ba:3c:9f:ca:09:4c:8b:93:af:a8:c1:b4:
e2:8b:1d:31:0d:b2:d5:a9:a5:2c:95:2d:1a:cb:38:
6c:7e:51:5e:7d:a0:30:56:03:1c:a0:e2:34:a4:4b:
03:80:ec:1b:35:5e:b3:61:a3:ef:16:46:5e:f0:19:
f0:1e:25:a3:90:21:37:f7:76:81:23:2d:7d:a6:58:
9e:2b:c2:53:43:19:2d:fe:b9:62:58:af:a2:c9:6c:
1f:f7:24:3a:b5:f0:07:c4:06:82:8a:96:d7:48:51:
50:25:87:43:f1:d5:86:43:f6:92:7f:68:ca:f1:35:
24:46:88:0c:72:5f:1d:9d:f8:eb:27:27:b7:97:95:
d5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F5:83:59:C4:BE:62:14:18:CD:05:3C:19:87:AF:FE:32:59:FE:C7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hfWDWcS-YhQYzQU8GYev_jJZ_sc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.13.0/24
Signature Algorithm: sha256WithRSAEncryption
18:89:ac:d0:c8:ee:f2:d7:f3:69:b7:bd:2d:2a:9c:3f:c0:c5:
cd:12:00:06:b0:47:4f:ca:99:d1:dd:d7:13:26:68:40:be:44:
d1:0d:23:61:68:db:0a:96:a1:38:4f:ea:58:23:c3:3a:e5:fd:
37:af:f1:d9:08:43:71:ce:37:35:b4:9c:18:72:9c:b0:95:2b:
a2:82:3c:c9:2b:09:e0:fa:cd:b4:ee:7d:94:ba:d6:c1:30:19:
61:a2:03:aa:65:3f:ca:74:82:27:03:97:0e:b3:2b:68:71:de:
90:0c:0a:c3:92:2f:10:a1:c2:0e:d0:d6:92:45:05:89:52:65:
ec:be:a2:4f:1c:cf:53:7b:a6:dd:07:ce:88:ac:16:c9:48:f0:
9b:6d:a4:0a:88:20:e0:b9:cb:06:16:7f:d3:61:e3:8b:4c:f8:
36:c6:ba:60:f1:11:c6:46:90:c3:63:e5:84:40:f4:b2:36:f6:
d9:5e:a0:ad:9c:53:87:d8:a0:d9:e3:29:88:b1:a4:72:41:75:
52:a9:4a:f8:4b:45:fb:da:1f:0e:8e:c6:a4:31:eb:9a:63:d9:
80:e7:16:d8:b7:e9:33:3a:fc:96:5c:22:29:ab:ac:3d:1c:47:
bd:b7:15:ed:7a:c8:84:0b:f2:2b:50:b7:7e:31:41:eb:ad:1b:
39:8a:39:62
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUyMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1RjU4MzU5QzRCRTYy
MTQxOENEMDUzQzE5ODdBRkZFMzI1OUZFQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCAk8aiHm7XvXuzVa63PhNbysdjCyh4iJHMsZfmgife/0KX4fq
2K0YUdXBe4xTbdfwYkqTlT8OWzmzTyZVMEXtbu5IiW8Tyj4mngzMAelgm9zgW4dH
/9y5i2bhKHLCWepFUqi7Cv6H4yl26Yni2SmpXwYHv0+RnLxDvro8n8oJTIuTr6jB
tOKLHTENstWppSyVLRrLOGx+UV59oDBWAxyg4jSkSwOA7Bs1XrNho+8WRl7wGfAe
JaOQITf3doEjLX2mWJ4rwlNDGS3+uWJYr6LJbB/3JDq18AfEBoKKltdIUVAlh0Px
1YZD9pJ/aMrxNSRGiAxyXx2d+OsnJ7eXldXzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUhfWDWcS+YhQYzQU8GYev/jJZ/scwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2hmV0RXY1MtWWhRWXpRVThH
WWV2X2pKWl9zYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq
AQ0wDQYJKoZIhvcNAQELBQADggEBABiJrNDI7vLX82m3vS0qnD/Axc0SAAawR0/K
mdHd1xMmaEC+RNENI2Fo2wqWoThP6lgjwzrl/Tev8dkIQ3HONzW0nBhynLCVK6KC
PMkrCeD6zbTufZS61sEwGWGiA6plP8p0gicDlw6zK2hx3pAMCsOSLxChwg7Q1pJF
BYlSZey+ok8cz1N7pt0HzoisFslI8JttpAqIIOC5ywYWf9Nh44tM+DbGumDxEcZG
kMNj5YRA9LI29tleoK2cU4fYoNnjKYixpHJBdVKpSvhLRfvaHw6OxqQx65pj2YDn
Fti36TM6/JZcIimrrD0cR723Fe16yIQL8itQt34xQeutGzmKOWI=
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:55:40 2025 by rpki-client