Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2hqLw9f5jkQOacBd9NgZEK5G8WA.roa
File: 2hqLw9f5jkQOacBd9NgZEK5G8WA.roa (raw, json)
Hash identifier: FGP4k3CnsLqIuu+tkysu1EJHCiLiysEkOXIFCrIOH7g=
Subject key identifier: DA:1A:8B:C3:D7:F9:8E:44:0E:69:C0:5D:F4:D8:19:10:AE:46:F1:60
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33E0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2hqLw9f5jkQOacBd9NgZEK5G8WA.roa
Signing time: Mon 10 Feb 2025 13:51:52 +0000
ROA not before: Mon 10 Feb 2025 13:51:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.193.96.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13280 (0x33e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DA1A8BC3D7F98E440E69C05DF4D81910AE46F160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:eb:3c:a6:21:86:48:4d:0e:5f:2f:42:02:a0:
a6:58:ae:68:56:dc:a8:18:22:6d:89:7f:12:74:de:
4c:4e:3d:b2:9d:e8:22:94:e0:0c:1b:19:41:e8:e9:
4c:39:1f:e4:4f:dd:6d:53:03:6e:87:b8:4c:66:0d:
ea:b1:cc:d8:06:6c:bf:bd:bd:e4:8f:52:45:0e:bd:
75:06:2b:8f:b9:11:1c:14:e3:2a:a8:09:ec:0a:81:
00:f1:6f:a1:29:3b:88:b8:62:c9:18:16:7b:91:34:
1a:a2:16:67:30:b9:e9:20:68:7a:cd:d2:f9:52:3c:
69:c4:30:c8:ed:26:4f:2a:e0:df:0c:86:85:cc:30:
23:38:f4:89:d1:16:cb:f2:08:da:a8:b8:d7:87:31:
2c:33:b3:aa:4b:96:dc:49:23:9a:62:6c:98:78:c0:
5c:c3:bd:d6:ca:a7:56:f4:d6:c3:22:47:db:f8:20:
42:d1:4f:5f:3c:81:54:41:89:83:66:07:12:3a:6d:
55:ca:e1:ec:bd:8d:14:da:ad:a5:76:a9:ef:24:5d:
76:34:36:48:f7:f6:c0:14:df:36:44:78:1d:b2:cc:
73:00:65:95:5f:8c:08:ec:12:d5:2c:bb:05:b2:13:
25:31:4e:1e:e1:1c:8f:83:5f:f5:27:0d:69:e5:e8:
a0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:1A:8B:C3:D7:F9:8E:44:0E:69:C0:5D:F4:D8:19:10:AE:46:F1:60
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2hqLw9f5jkQOacBd9NgZEK5G8WA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.96.0/21
Signature Algorithm: sha256WithRSAEncryption
7b:7e:f7:9d:9d:df:af:79:42:34:fb:d2:bb:49:0e:dd:89:5f:
95:b2:2a:93:11:6e:5a:34:8d:cc:ce:14:de:6e:cb:cf:38:ad:
37:72:f8:18:d9:a0:fd:73:5c:4f:ce:cc:d5:9d:27:7a:a4:d0:
d6:64:a5:2a:d8:a0:44:91:f5:85:0a:5a:86:dd:e1:86:78:41:
1a:0d:39:5b:9d:dd:01:66:70:18:14:46:c3:77:b1:a1:b5:6a:
42:ea:dc:56:4c:86:7a:f7:03:60:67:87:2a:98:ff:7f:c4:fe:
00:0e:02:86:fc:eb:85:10:e1:50:d4:ee:14:4a:82:a9:30:24:
02:63:93:db:3b:e6:50:5a:df:85:4c:50:bc:39:58:be:a3:bd:
a7:24:3a:30:70:5b:8e:8e:43:22:6c:54:49:e8:99:ae:a9:56:
d6:4a:83:5f:54:b9:29:5b:ec:e3:31:69:cf:92:d4:55:91:4d:
f2:cf:c0:35:02:27:89:3d:1e:3f:4b:e9:c5:60:b4:28:48:bc:
11:3a:5d:e0:4c:a4:20:39:fa:1d:3f:22:c3:36:1c:2e:e8:55:
79:b7:e4:63:88:35:4f:f7:1a:2d:9a:ba:89:3f:0c:a8:89:88:
38:25:3a:94:58:ff:aa:de:19:b2:32:b3:d2:9c:fa:22:cb:b5:
0c:c3:c0:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:31 2025 by rpki-client