Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8IJfP8QBPPpMWGytsp2cWy0Iv1M.roa
File: 8IJfP8QBPPpMWGytsp2cWy0Iv1M.roa (raw, json)
Hash identifier: /L2M5gyL1m4YPMpO/d4hM32wmupaVawdrjKsEGCiTMw=
Subject key identifier: F0:82:5F:3F:C4:01:3C:FA:4C:58:6C:AD:B2:9D:9C:5B:2D:08:BF:53
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3489
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8IJfP8QBPPpMWGytsp2cWy0Iv1M.roa
Signing time: Mon 10 Feb 2025 13:52:28 +0000
ROA not before: Mon 10 Feb 2025 13:52:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.216.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13449 (0x3489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F0825F3FC4013CFA4C586CADB29D9C5B2D08BF53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4a:a4:13:dc:8b:17:6e:36:16:67:a2:e9:7e:
df:d6:1d:7f:a5:b1:ec:58:99:71:60:3c:f9:c4:ea:
6b:1e:96:71:53:ca:c4:be:cb:68:97:03:34:39:42:
14:80:96:9e:27:bc:01:72:e5:2f:00:40:a1:91:88:
1f:87:cd:46:2b:bf:eb:70:cc:33:a6:56:34:0f:24:
a7:72:bf:f9:6f:57:40:75:1d:4f:92:8b:c7:17:52:
af:16:3a:72:50:35:61:34:93:0c:62:a9:87:6c:04:
aa:f5:a0:28:6a:55:84:25:a0:fd:a7:d0:5c:2b:a1:
f2:05:ff:f3:bc:60:a0:fc:60:b0:63:64:2e:21:43:
2b:a3:9f:4f:00:46:02:ca:49:5b:02:69:0c:a7:1a:
5a:d1:42:25:cf:0b:55:a9:9e:31:a0:9d:30:53:a3:
90:67:9f:fb:55:11:83:d2:79:43:be:52:37:89:b6:
3a:3f:04:c8:5c:a6:31:1e:76:22:45:b1:84:36:9c:
46:3e:92:86:2a:78:6a:e2:23:9b:57:41:65:f1:6d:
a7:e4:12:32:22:9a:64:9c:d0:ba:63:00:c3:3a:2c:
32:85:a0:60:66:c9:90:de:60:41:ad:6d:bb:06:44:
c7:3b:3b:5b:32:c2:b0:04:7f:f5:61:89:0b:24:95:
56:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:82:5F:3F:C4:01:3C:FA:4C:58:6C:AD:B2:9D:9C:5B:2D:08:BF:53
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8IJfP8QBPPpMWGytsp2cWy0Iv1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.216.0/21
Signature Algorithm: sha256WithRSAEncryption
63:9a:8c:a8:f1:f2:e4:b2:9b:fd:8a:f8:b7:55:f0:b8:51:4f:
d6:f5:be:db:09:9d:cd:58:14:6b:35:c0:21:07:58:8f:22:04:
0d:ca:f9:e0:5a:56:f0:7a:65:cc:1d:d5:8c:0b:85:bf:7f:93:
47:aa:06:52:2f:c8:f6:d8:65:18:10:bb:90:9a:d1:d9:60:5b:
ac:3c:c2:3c:95:57:16:db:6f:f8:4d:24:a4:41:6e:02:9a:20:
90:34:bb:e0:10:f0:83:3f:f2:f1:d9:90:d1:d6:e3:b0:92:ba:
19:43:95:fa:05:75:62:d9:61:35:e4:dd:e0:91:82:67:c0:a9:
8b:3a:ee:fe:37:28:7d:d8:a4:cd:9a:af:f8:ac:14:71:1c:ad:
ba:7b:06:49:4d:ff:b1:e9:e8:66:24:88:6d:99:0d:17:1e:62:
5f:7d:75:05:51:99:d6:c2:c8:8d:8b:b1:1e:ea:65:22:18:dd:
69:4d:3f:d4:95:5d:dc:a6:ac:68:20:dd:b9:52:63:e4:f0:b4:
d3:71:99:b4:64:77:0a:6d:6a:6c:31:e3:ad:a6:cc:f7:1d:d7:
64:60:7b:73:86:bd:ea:9e:cb:f8:c6:da:f7:80:8d:d9:81:92:
eb:72:a6:e7:38:35:25:dd:31:5f:56:31:99:1a:7f:38:32:fc:
9d:b4:b1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:56 2025 by rpki-client