Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5C3hv3flULVdlxF_n0m882Cgdzs.roa
File: 5C3hv3flULVdlxF_n0m882Cgdzs.roa (raw, json)
Hash identifier: 1mb8GI638V29wLaT5u9k/Xwi7yzuqVoPLtshw3L+nMo=
Subject key identifier: E4:2D:E1:BF:77:E5:50:B5:5D:97:11:7F:9F:49:BC:F3:60:A0:77:3B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33C9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5C3hv3flULVdlxF_n0m882Cgdzs.roa
Signing time: Mon 10 Feb 2025 13:51:46 +0000
ROA not before: Mon 10 Feb 2025 13:51:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.88.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13257 (0x33c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E42DE1BF77E550B55D97117F9F49BCF360A0773B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e8:08:92:2a:8f:fd:67:d0:a6:81:76:9b:d4:
e9:c8:c1:7a:d8:e4:9f:33:1c:86:db:aa:64:31:9d:
4a:1d:21:50:97:2a:06:b4:26:93:a7:ef:1b:67:5f:
a0:14:1e:5d:bc:0b:e7:d4:db:33:9f:35:3d:7f:13:
f0:a0:de:ad:9b:bc:1b:37:4f:a1:54:35:cc:27:ed:
11:a3:aa:e2:b1:a7:8f:9a:15:08:68:eb:b1:33:52:
11:86:e6:ef:ee:3e:b0:4e:a1:68:64:a7:f5:c5:56:
b4:42:e7:64:9f:a8:47:03:44:51:c4:81:77:e8:10:
c7:52:1a:88:0e:51:df:37:16:14:1e:4c:de:6b:7c:
62:6b:f1:55:82:4b:72:40:e5:41:34:9f:22:ae:04:
88:c7:50:44:9c:14:79:9d:38:e4:66:d0:27:cc:85:
cf:cb:06:27:2e:fc:af:b5:d6:75:12:cd:4d:63:ba:
4c:05:9d:b7:f8:70:7c:c1:40:ae:58:13:67:ef:77:
ed:21:a2:8b:c2:ad:8c:1d:12:76:56:22:46:d8:ee:
24:29:bb:f8:51:2e:21:ee:42:00:79:c5:ed:11:4f:
39:68:fa:b8:03:b9:b2:e9:13:37:6e:b6:45:0f:c9:
19:c1:56:f1:9b:65:c7:c0:01:81:94:3a:bf:59:5e:
15:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2D:E1:BF:77:E5:50:B5:5D:97:11:7F:9F:49:BC:F3:60:A0:77:3B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5C3hv3flULVdlxF_n0m882Cgdzs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.88.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:c2:73:cf:3c:82:54:43:20:6e:49:6f:9f:97:03:2c:b3:3c:
bf:56:6f:00:78:e8:0f:57:55:e3:0b:c8:af:23:1e:c3:d5:8e:
f3:28:a5:a8:09:e3:a8:46:29:cf:ba:52:c8:3b:82:b2:54:ac:
70:19:f3:0c:e7:f9:1c:58:99:42:6f:10:b8:24:56:af:c3:3a:
b3:2b:83:a1:23:87:e0:f4:fe:16:bf:ef:f4:b5:e1:91:d0:ae:
cf:d7:92:21:9a:e6:a6:95:65:30:a8:b6:19:3a:c9:89:33:09:
cc:75:eb:a6:80:e4:88:2f:25:4e:c5:ab:4b:92:91:36:4c:03:
ac:a2:03:10:39:67:01:3a:cc:aa:0e:8d:56:4c:4c:c6:b7:22:
7b:2f:cb:9c:8b:ba:9c:2c:06:77:66:e9:25:2a:2d:c9:72:43:
bd:ed:b1:f0:e4:28:69:c3:00:b7:1b:91:9d:25:76:4c:7f:13:
eb:26:b1:b7:ee:a3:92:5f:8c:a3:f5:aa:b4:d8:64:75:a9:45:
a4:d1:a3:59:f1:0b:17:e4:cd:3d:37:51:77:97:7e:39:56:aa:
db:c2:9a:d9:3c:97:4d:5d:ab:ce:64:5f:2c:99:82:33:81:c2:
48:ba:2b:79:b1:98:f6:ef:54:f1:32:58:cf:2c:c9:0a:97:34:
40:d7:fe:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:56 2025 by rpki-client