Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/005IaczfKRG8lhAnQASuWhGBKRI.roa
File: 005IaczfKRG8lhAnQASuWhGBKRI.roa (raw, json)
Hash identifier: r69JMC4amcD6VWGEMgGjN+CnqUb/plfGh7actFOjSLA=
Subject key identifier: D3:4E:48:69:CC:DF:29:11:BC:96:10:27:40:04:AE:5A:11:81:29:12
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 340A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/005IaczfKRG8lhAnQASuWhGBKRI.roa
Signing time: Mon 10 Feb 2025 13:52:02 +0000
ROA not before: Mon 10 Feb 2025 13:52:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.194.88.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13322 (0x340a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D34E4869CCDF2911BC9610274004AE5A11812912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9f:93:10:f1:f3:b5:5a:24:d7:53:81:c0:bd:
79:e1:0d:75:5e:29:3f:6f:2d:f9:7f:89:50:1a:80:
25:b1:fa:55:27:39:4a:ff:cc:3c:b1:02:0a:43:51:
74:b0:0c:0c:50:9b:c4:31:8e:91:57:46:50:25:be:
8e:fc:32:7a:2c:9b:9a:1e:13:83:c5:c5:0f:a3:7e:
6a:f1:ef:e3:c1:18:5e:5f:f0:89:f4:f4:a9:85:98:
a3:48:b1:14:ba:e2:6f:e9:52:62:54:5a:bb:dd:0e:
d6:4b:29:f9:8f:f1:f2:76:e7:a9:d1:af:63:99:ae:
bc:c4:17:75:0d:c1:34:96:79:98:9c:0f:2d:01:5d:
6e:5a:3f:53:9f:c9:2d:2f:d0:ed:5b:93:7a:9d:64:
5e:35:33:89:2e:fa:02:fe:7a:d3:d1:92:8b:12:93:
ce:0d:46:b6:a8:6e:ea:4b:2a:7a:3c:a6:6a:88:81:
56:35:48:d9:75:dd:16:e0:f9:06:d4:56:c2:26:dd:
a8:22:83:ad:dd:d2:ca:4d:58:6c:1e:d1:79:9e:a5:
8d:33:84:42:9d:ab:5a:4f:c6:fb:f6:98:86:cb:4c:
e5:9f:b5:5f:eb:65:9f:c4:ea:23:5c:38:49:94:c9:
df:6a:28:9d:36:cf:58:aa:98:5f:f9:6b:93:8d:b5:
69:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4E:48:69:CC:DF:29:11:BC:96:10:27:40:04:AE:5A:11:81:29:12
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/005IaczfKRG8lhAnQASuWhGBKRI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.88.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:89:28:8e:3c:17:d1:24:e2:3d:9b:eb:f8:f8:e8:bb:e7:da:
f4:78:2c:ad:f5:71:47:8e:9f:11:bb:a4:09:f8:65:f4:38:04:
bc:be:04:ce:7f:71:48:52:02:a8:64:17:a1:98:94:92:90:58:
fb:0f:7c:29:af:88:86:a9:b1:17:3d:5b:20:4d:eb:a7:e3:f3:
90:60:30:65:5e:b8:17:5b:9c:a0:61:57:75:3a:d7:64:d5:33:
25:88:4c:13:5a:3f:4e:40:8f:37:d1:55:a7:20:b0:fa:30:68:
a3:d2:a4:ec:82:8d:6b:bb:3b:d7:24:20:45:de:6d:db:3d:ab:
59:5e:25:77:6c:94:3c:37:01:68:84:b2:7e:ce:a3:c3:6e:a5:
3a:e1:cc:6b:50:4a:3b:dc:82:08:05:10:de:f4:b1:95:5f:7c:
eb:ee:c1:0e:52:fe:1d:25:cb:be:f1:27:69:77:3a:16:61:2c:
ff:8e:72:fd:dd:cb:e8:52:ce:b2:46:4b:39:f4:ac:74:61:21:
71:fe:ee:8f:b1:e1:a9:99:70:1d:45:bc:b5:6f:7c:fd:2a:ef:
f9:bb:51:3c:6f:59:3c:ef:2f:bd:fb:76:69:76:fe:fa:f3:c9:
ee:34:98:bb:c9:f3:ab:6c:f7:34:10:ef:5a:77:33:51:c7:d5:
1c:0e:26:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:37 2025 by rpki-client