Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2rgim-pDS-xTz-PaQ1EK2NW5i84.roa
File: 2rgim-pDS-xTz-PaQ1EK2NW5i84.roa (raw, json)
Hash identifier: 8jOdc8FVF1DZJzj+z2sksVDedYIA/9WgZeZ+2Pbhf7U=
Subject key identifier: DA:B8:22:9B:EA:43:4B:EC:53:CF:E3:DA:43:51:0A:D8:D5:B9:8B:CE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3526
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2rgim-pDS-xTz-PaQ1EK2NW5i84.roa
Signing time: Mon 10 Feb 2025 13:53:04 +0000
ROA not before: Mon 10 Feb 2025 13:53:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.195.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13606 (0x3526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:04 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DAB8229BEA434BEC53CFE3DA43510AD8D5B98BCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:21:35:42:f5:cc:bd:eb:7b:53:6d:b2:07:38:
47:50:2b:80:46:a9:f8:3d:25:3d:46:32:42:51:44:
16:d8:df:b9:c1:ef:a5:e2:d2:f7:59:d6:56:84:c4:
57:e3:67:30:a2:74:a9:60:1c:57:4e:24:0d:da:ed:
02:0e:a1:09:59:c3:2f:a3:29:28:ae:e4:01:04:2c:
64:ee:66:c3:e7:b8:16:42:8d:3d:a0:11:09:f9:39:
1a:4d:7c:d1:a2:96:32:79:12:60:bb:74:c0:9a:78:
0e:ac:a2:bd:4a:69:55:c9:f0:c0:fe:ff:92:ed:04:
3c:91:db:5f:55:62:38:c2:ac:46:b4:64:44:11:02:
8d:47:be:c4:80:71:49:01:cf:78:41:13:66:45:42:
05:3f:53:b8:5e:81:e6:36:3a:ba:4f:23:2e:9b:e8:
e6:53:70:70:fd:75:5b:fb:99:b7:03:14:50:44:1c:
02:28:32:4d:90:4a:cd:05:d3:08:ab:d5:a5:0e:f4:
fc:28:a6:b4:1f:ad:58:c5:1f:83:43:96:e7:bd:91:
06:ca:4d:1f:b8:0e:7f:3f:02:b2:7f:f8:ca:d5:4d:
41:6a:8c:aa:87:22:9f:b9:ad:a2:ca:1e:74:c9:27:
19:e0:10:70:5f:d0:a9:db:ab:72:32:4a:fd:7e:f4:
1d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B8:22:9B:EA:43:4B:EC:53:CF:E3:DA:43:51:0A:D8:D5:B9:8B:CE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2rgim-pDS-xTz-PaQ1EK2NW5i84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.244.0/24
Signature Algorithm: sha256WithRSAEncryption
37:aa:db:08:b8:ab:63:72:38:44:42:05:44:af:49:c6:ef:09:
5e:c3:ae:0a:d2:08:62:de:d6:63:36:2e:a7:42:30:5a:3c:10:
bd:05:f9:0c:50:26:ef:9d:bc:5b:b1:51:d7:7b:c4:c3:83:73:
f5:ae:08:c4:0f:46:00:91:49:55:ce:65:56:15:69:da:8d:b9:
a7:d5:2a:e4:3e:07:53:4e:79:63:19:a9:53:f8:46:dc:25:7d:
c5:2e:e4:23:c0:ba:61:da:c9:d2:49:0c:40:82:7e:ee:69:9e:
14:47:b9:e1:8d:7f:e2:01:45:b9:b9:00:d0:7a:4c:2e:0b:00:
c0:51:2c:40:24:35:5a:80:b0:5d:ad:c4:90:93:eb:a2:20:9d:
b7:7d:6b:a9:0e:5e:39:da:e0:ae:0b:a4:45:53:62:99:fc:fb:
3c:93:62:2f:71:e2:8f:f1:52:50:0a:b2:3b:42:a0:31:25:f3:
13:0a:18:79:08:a7:9f:f2:dd:5b:2a:5a:71:17:45:c7:6b:a9:
65:a3:db:a5:86:24:f9:f3:b9:46:ae:f9:05:c1:df:e2:3c:bb:
be:5d:09:5a:26:d7:9e:0d:a1:da:99:48:de:0c:6d:c0:2d:b7:
36:fc:a6:2a:1f:a7:2a:e9:7f:99:50:e1:8d:04:cb:4d:aa:38:
54:1a:bd:8b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUzMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERBQjgyMjlCRUE0MzRC
RUM1M0NGRTNEQTQzNTEwQUQ4RDVCOThCQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyITVC9cy963tTbbIHOEdQK4BGqfg9JT1GMkJRRBbY37nB76Xi
0vdZ1laExFfjZzCidKlgHFdOJA3a7QIOoQlZwy+jKSiu5AEELGTuZsPnuBZCjT2g
EQn5ORpNfNGiljJ5EmC7dMCaeA6sor1KaVXJ8MD+/5LtBDyR219VYjjCrEa0ZEQR
Ao1HvsSAcUkBz3hBE2ZFQgU/U7hegeY2OrpPIy6b6OZTcHD9dVv7mbcDFFBEHAIo
Mk2QSs0F0wir1aUO9PwoprQfrVjFH4NDlue9kQbKTR+4Dn8/ArJ/+MrVTUFqjKqH
Ip+5raLKHnTJJxngEHBf0Knbq3IySv1+9B0/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2rgim+pDS+xTz+PaQ1EK2NW5i84wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJyZ2ltLXBEUy14VHotUGFR
MUVLMk5XNWk4NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7
w/QwDQYJKoZIhvcNAQELBQADggEBADeq2wi4q2NyOERCBUSvScbvCV7DrgrSCGLe
1mM2LqdCMFo8EL0F+QxQJu+dvFuxUdd7xMODc/WuCMQPRgCRSVXOZVYVadqNuafV
KuQ+B1NOeWMZqVP4RtwlfcUu5CPAumHaydJJDECCfu5pnhRHueGNf+IBRbm5ANB6
TC4LAMBRLEAkNVqAsF2txJCT66Ignbd9a6kOXjna4K4LpEVTYpn8+zyTYi9x4o/x
UlAKsjtCoDEl8xMKGHkIp5/y3VsqWnEXRcdrqWWj26WGJPnzuUau+QXB3+I8u75d
CVom154NodqZSN4MbcAttzb8piofpyrpf5lQ4Y0Ey02qOFQavYs=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:52 2025 by rpki-client