Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/21uW5L0msSaXo7sfaBxursGWOv8.roa
File: 21uW5L0msSaXo7sfaBxursGWOv8.roa (raw, json)
Hash identifier: KMk8qSPvmg3P7H/j7XDXgWaJqF8TF0Vt7f9zeQSl0Cc=
Subject key identifier: DB:5B:96:E4:BD:26:B1:26:97:A3:BB:1F:68:1C:6E:AE:C1:96:3A:FF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3565
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/21uW5L0msSaXo7sfaBxursGWOv8.roa
Signing time: Mon 10 Feb 2025 13:53:18 +0000
ROA not before: Mon 10 Feb 2025 13:53:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 180.176.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13669 (0x3565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DB5B96E4BD26B12697A3BB1F681C6EAEC1963AFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f2:ab:6a:a0:88:b7:86:95:f0:34:4d:f1:be:
ee:c9:8e:9f:f4:07:f6:5c:a4:d2:72:6c:de:b6:e3:
f5:cf:85:02:e7:0e:92:2d:d9:95:59:69:37:a1:32:
b7:7e:4a:a8:2b:8c:f5:28:e6:b2:90:d3:4a:a2:ce:
fd:b0:e6:16:fe:f5:58:99:97:3b:9f:bf:d0:e6:08:
c8:9e:a3:4a:d3:48:21:47:6d:a2:3e:07:32:03:32:
a2:82:fd:92:87:34:59:43:29:46:4f:a1:9f:14:c4:
d9:6f:0f:2d:4f:13:20:8b:84:07:e7:10:8a:8f:6e:
5b:db:32:2c:11:01:a9:b6:c3:f7:ce:e9:18:ca:53:
1f:7e:9a:9f:b3:aa:3b:f2:49:ef:dd:a4:1c:2d:a2:
f2:6a:64:b3:59:cc:b8:5a:86:9d:ec:ad:7d:66:65:
08:1d:48:e6:80:b5:b2:a9:c9:a7:d8:87:ca:dc:61:
4d:e1:2a:a7:a5:55:d7:8c:0a:09:80:5f:9a:7e:40:
16:6f:92:f9:70:27:78:24:ea:16:21:b8:16:97:33:
c9:aa:88:18:e2:32:da:72:a5:11:23:b0:34:03:73:
91:d9:6f:d3:df:ae:89:d8:8c:58:17:d6:00:b9:d9:
49:5d:4f:99:93:19:21:7a:97:67:a6:23:48:bd:5e:
b6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5B:96:E4:BD:26:B1:26:97:A3:BB:1F:68:1C:6E:AE:C1:96:3A:FF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/21uW5L0msSaXo7sfaBxursGWOv8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.172.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:da:dc:47:2b:f9:df:3e:e7:c5:e9:e2:c3:ee:0e:94:9a:56:
e4:35:1e:79:9e:4b:52:45:ba:a4:77:a4:94:53:7c:e4:7b:28:
fd:15:ba:85:08:b1:e4:50:fb:d4:2b:cb:34:06:50:31:4b:65:
98:fc:45:88:ae:38:1f:ea:2c:c3:0b:7f:3e:0b:88:91:4b:60:
16:8a:1b:3d:c2:d3:d8:52:6a:c7:41:8c:79:63:51:2d:41:4e:
a3:2f:99:d7:c8:50:ff:0e:58:4a:fa:67:21:ac:d7:c3:b5:1a:
f2:cc:5f:d8:f4:7d:ab:22:7b:35:89:06:17:bb:73:48:0d:26:
23:e2:f8:4b:2c:2a:8f:23:75:72:21:70:ad:ec:5d:4f:8c:be:
4f:22:50:d0:cb:34:6e:cc:ac:86:94:e4:fc:12:f8:46:f2:84:
0f:a5:c3:24:95:8f:36:84:66:f8:c6:19:c9:4d:88:83:ea:e3:
6d:39:b0:ea:c6:b1:1a:7b:e9:92:ce:fb:90:ed:92:1e:ad:ca:
83:2c:eb:1a:2d:a6:2d:2e:ff:4d:2f:f2:f2:d9:d0:4b:b2:64:
0e:5b:9a:4f:45:63:dc:17:5b:dd:32:d5:e0:48:1b:29:3d:de:
79:53:1c:d6:bd:a0:4b:2d:f3:13:cb:b5:92:ee:84:4a:4c:76:
c7:a5:50:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:13 2025 by rpki-client