Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2_2cUWI9d65EC4FurMIHRlO_QS0.roa
File: 2_2cUWI9d65EC4FurMIHRlO_QS0.roa (raw, json)
Hash identifier: HjEvh2j1Fha80PX0DxmZBJtR4nGtlwWVtxPG2wY5z+A=
Subject key identifier: DB:FD:9C:51:62:3D:77:AE:44:0B:81:6E:AC:C2:07:46:53:BF:41:2D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 34E1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2_2cUWI9d65EC4FurMIHRlO_QS0.roa
Signing time: Mon 10 Feb 2025 13:52:47 +0000
ROA not before: Mon 10 Feb 2025 13:52:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.136.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13537 (0x34e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DBFD9C51623D77AE440B816EACC2074653BF412D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:61:e0:23:7c:bc:96:39:07:f1:0f:df:6d:8d:
c7:f9:cf:7d:8a:4c:67:5f:5b:8d:0a:55:13:0c:4d:
e4:4c:e0:6c:9b:1d:6a:d0:4e:6f:27:68:ae:79:0f:
5c:c9:4c:a1:7a:02:c3:14:cb:f3:e3:a3:ed:5d:cb:
f1:93:ed:d6:5f:02:5b:78:d9:73:22:a4:ef:eb:87:
2a:90:c7:de:31:93:cb:c1:ed:87:ed:9a:be:f8:09:
e6:04:af:c1:76:0a:59:4f:72:f9:4f:58:1a:ee:df:
17:83:9f:0c:3c:b2:8d:ae:bc:f9:b5:17:59:7c:92:
b6:ca:93:29:7a:e2:3a:a1:c3:c5:ac:0e:64:4b:c8:
c4:5b:37:15:34:48:89:54:8e:f5:79:25:3b:00:46:
81:b6:b2:43:fb:18:1b:d5:00:d9:92:19:19:7f:29:
ee:0f:80:b0:7d:d9:92:8f:e6:04:bf:34:25:6e:5c:
f5:30:b5:83:81:1a:44:99:1b:bf:ef:de:db:d8:f6:
c8:39:58:63:49:d9:e2:e6:dc:aa:78:47:bf:a9:ee:
df:36:3b:e8:7c:37:02:87:09:ee:b0:bc:25:ef:be:
93:cb:55:3d:07:e4:01:70:e3:76:b1:99:dd:47:8d:
04:7a:ea:51:51:4a:80:71:37:9e:43:c3:5f:f0:bd:
0a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FD:9C:51:62:3D:77:AE:44:0B:81:6E:AC:C2:07:46:53:BF:41:2D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2_2cUWI9d65EC4FurMIHRlO_QS0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.136.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:19:6b:71:2d:ea:81:4e:11:d7:7a:47:ca:14:d3:94:74:56:
4f:6b:23:e3:68:cf:b3:c8:ad:ef:89:bd:7f:5e:61:19:14:da:
91:1a:80:6c:15:07:0f:d7:a2:cb:38:75:ce:28:87:d5:86:61:
75:cf:16:17:1c:80:76:fc:79:95:98:62:a8:cc:a9:a5:ac:65:
0a:aa:9c:54:f8:d3:30:32:7e:81:ca:e9:3b:c7:dd:bf:b6:43:
f3:bc:eb:53:20:50:19:f1:16:c7:6a:fc:ea:8b:a2:db:84:e5:
4a:df:f7:1e:da:8c:45:ce:76:43:fe:28:05:6f:b5:1e:d4:69:
89:88:cb:a3:73:20:15:c1:1a:82:57:aa:5b:71:a4:29:09:69:
f4:cc:69:f4:11:a8:23:af:bf:da:1a:fd:9e:68:79:79:7c:d6:
50:0f:88:f6:a4:e2:00:6f:cd:2c:52:10:7f:78:a3:02:81:4e:
47:d5:85:aa:93:da:57:7a:e9:76:c2:bd:12:96:ec:62:86:71:
11:27:17:1b:09:33:98:e0:60:b1:7f:c5:4d:43:12:71:31:11:
ff:21:a2:cf:2d:59:fd:ce:d0:fb:0e:62:63:6d:dc:da:6d:79:
a0:2b:c8:34:ce:6b:f0:ac:2f:7d:0b:47:b4:5f:fa:20:4d:01:
96:80:e3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:12 2025 by rpki-client