Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Hezp6XbEoWmy0eCA_GC8fx84Rg.roa
File: 6Hezp6XbEoWmy0eCA_GC8fx84Rg.roa (raw, json)
Hash identifier: M+rDu5f6jGjf0o66+44aNWgTx/yTk/DjWFwhaqUsWv4=
Subject key identifier: E8:77:B3:A7:A5:DB:12:85:A6:CB:47:82:03:F1:82:F1:FC:7C:E1:18
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 36B6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Hezp6XbEoWmy0eCA_GC8fx84Rg.roa
Signing time: Mon 10 Feb 2025 13:54:36 +0000
ROA not before: Mon 10 Feb 2025 13:54:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.194.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14006 (0x36b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E877B3A7A5DB1285A6CB478203F182F1FC7CE118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6b:df:9d:73:5b:db:5a:ba:31:75:3d:89:5a:
70:f1:79:e3:c0:93:d3:85:61:3a:72:c3:51:0d:6b:
dd:84:9f:48:4c:98:eb:fa:42:63:cd:2a:16:7b:64:
ae:dc:ec:2f:ee:ee:0a:b1:66:58:c4:4e:bb:97:6c:
42:2e:ce:22:75:2e:b6:6b:44:6d:20:45:30:82:77:
06:fa:4a:a8:32:c8:d8:f9:ba:66:6c:21:d6:b9:47:
b9:2f:85:73:81:21:46:3a:4f:09:a7:e4:47:2d:7d:
ea:99:e6:1d:d0:31:68:ae:3d:eb:70:d0:2c:3e:f7:
6c:c8:2d:dd:73:dc:c9:e4:58:0e:01:a2:98:f1:ec:
7c:c5:1b:11:94:21:07:03:59:d5:e8:f5:8c:ab:42:
54:08:f3:2f:f3:8f:85:ab:ef:c2:ff:d1:21:24:97:
41:14:aa:7f:fe:df:54:ac:8e:ad:49:54:30:49:a9:
3a:98:83:75:4d:fc:24:38:03:26:10:11:a5:65:2f:
d1:3b:49:88:e8:40:a0:c5:1c:9c:bb:01:d5:f1:14:
20:6b:6b:ae:74:10:82:62:5e:60:90:02:a1:d8:bb:
4f:ea:cb:ce:c8:fe:66:6a:ce:00:fd:c5:a0:80:ca:
ff:48:41:58:8f:ab:b7:be:1e:fd:4d:d8:e6:c5:96:
f8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:77:B3:A7:A5:DB:12:85:A6:CB:47:82:03:F1:82:F1:FC:7C:E1:18
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Hezp6XbEoWmy0eCA_GC8fx84Rg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.24.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:3d:c0:e6:b0:c3:39:d9:11:d9:dd:ca:3c:c0:90:23:73:50:
b9:f5:1f:77:2a:0d:3c:14:44:3f:e9:45:8b:d2:ee:c9:f6:80:
f6:15:74:1e:eb:7a:1a:7c:bc:3e:b1:4c:89:60:67:03:33:b8:
1d:78:59:a9:f9:63:ee:dd:fd:da:c5:61:a9:20:e8:c4:c1:50:
1d:17:c0:15:f3:f0:22:60:fa:5f:c1:81:23:4f:f4:82:1e:3f:
06:53:18:95:fc:cc:b2:21:18:cb:3e:6f:6f:d8:0b:bb:a4:0f:
a3:8a:91:df:89:bd:00:66:c4:15:90:c6:08:5d:5f:d1:6a:5a:
66:6a:51:ca:bd:88:ee:c5:11:32:eb:50:58:16:ed:f6:98:f4:
da:cc:96:07:31:c7:ff:ef:b2:c1:2b:72:4c:78:ee:e4:a9:e0:
b0:61:6c:3e:83:02:45:a6:54:b7:fe:8f:24:6e:e2:ef:00:04:
5d:9d:f8:c6:30:44:1f:2f:d8:7e:31:03:15:d1:83:5f:bf:9d:
87:57:78:1c:e0:56:f1:f8:d5:aa:1b:1e:62:93:cb:b1:56:d8:
9c:05:01:3a:b4:82:98:15:0a:b2:45:84:a4:c6:c5:32:83:e9:
4f:96:67:19:f2:5f:3a:33:93:4a:23:5d:ca:36:7c:b7:a8:9a:
ad:81:d0:8e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNrYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzU0MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4NzdCM0E3QTVEQjEy
ODVBNkNCNDc4MjAzRjE4MkYxRkM3Q0UxMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOa9+dc1vbWroxdT2JWnDxeePAk9OFYTpyw1ENa92En0hMmOv6
QmPNKhZ7ZK7c7C/u7gqxZljETruXbEIuziJ1LrZrRG0gRTCCdwb6SqgyyNj5umZs
Ida5R7kvhXOBIUY6Twmn5EctfeqZ5h3QMWiuPetw0Cw+92zILd1z3MnkWA4Bopjx
7HzFGxGUIQcDWdXo9YyrQlQI8y/zj4Wr78L/0SEkl0EUqn/+31Ssjq1JVDBJqTqY
g3VN/CQ4AyYQEaVlL9E7SYjoQKDFHJy7AdXxFCBra650EIJiXmCQAqHYu0/qy87I
/mZqzgD9xaCAyv9IQViPq7e+Hv1N2ObFlvi5AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU6Hezp6XbEoWmy0eCA/GC8fx84RgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZIZXpwNlhiRW9XbXkwZUNB
X0dDOGZ4ODRSZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
whgwDQYJKoZIhvcNAQELBQADggEBAJ09wOawwznZEdndyjzAkCNzULn1H3cqDTwU
RD/pRYvS7sn2gPYVdB7rehp8vD6xTIlgZwMzuB14Wan5Y+7d/drFYakg6MTBUB0X
wBXz8CJg+l/BgSNP9IIePwZTGJX8zLIhGMs+b2/YC7ukD6OKkd+JvQBmxBWQxghd
X9FqWmZqUcq9iO7FETLrUFgW7faY9NrMlgcxx//vssErckx47uSp4LBhbD6DAkWm
VLf+jyRu4u8ABF2d+MYwRB8v2H4xAxXRg1+/nYdXeBzgVvH41aobHmKTy7FW2JwF
ATq0gpgVCrJFhKTGxTKD6U+WZxnyXzozk0ojXco2fLeomq2B0I4=
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:11 2025 by rpki-client