Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9bFiUHy8y4T4DSYVdI_ETfGdRf0.roa
File: 9bFiUHy8y4T4DSYVdI_ETfGdRf0.roa (raw, json)
Hash identifier: SxyRQA44oJ10OEH2N9bIgfr7J81gxKzpvJmDWUlzUKM=
Subject key identifier: F5:B1:62:50:7C:BC:CB:84:F8:0D:26:15:74:8F:C4:4D:F1:9D:45:FD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 341B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9bFiUHy8y4T4DSYVdI_ETfGdRf0.roa
Signing time: Mon 10 Feb 2025 13:52:05 +0000
ROA not before: Mon 10 Feb 2025 13:52:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.233.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13339 (0x341b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F5B162507CBCCB84F80D2615748FC44DF19D45FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5a:01:fb:d0:2a:7d:bf:1e:47:00:f6:02:77:
b2:b5:88:6c:cf:12:d6:b5:7b:4f:2d:9d:ed:8e:bf:
d9:9b:6f:07:ef:07:f2:b3:c1:7c:12:d0:79:1b:61:
a5:d5:d5:57:14:8f:3d:b9:d7:3b:56:ab:31:21:1c:
b1:ed:5c:88:62:cc:a2:44:aa:eb:60:0a:6a:df:cf:
bd:e1:5b:fb:8c:f0:4c:04:0a:61:28:d7:d0:ae:63:
00:39:6e:e6:61:0a:28:34:4c:da:b4:72:85:76:a0:
59:e8:65:4d:d6:7b:84:ee:e3:84:85:0f:4a:8e:f8:
7f:d6:94:12:f7:1a:93:8d:fc:dc:1e:c8:71:a6:70:
87:af:9b:7b:49:fa:61:e3:c2:ee:f1:7d:4b:6f:81:
f5:88:4d:1f:09:bb:69:e2:b4:e0:56:7f:cb:0d:8d:
7c:26:8e:3c:31:57:e9:33:b3:eb:89:39:97:56:68:
50:8d:e6:62:3e:f9:7a:fd:0c:bf:6b:75:cc:54:b4:
e1:a8:86:9c:61:a8:05:f5:7c:74:2e:6e:e1:c6:b5:
c3:8f:77:17:73:c8:0d:b1:7d:02:81:2c:4d:20:92:
60:bb:62:e0:78:2a:b8:4a:2d:8a:90:fc:7f:68:15:
7d:68:36:99:28:ba:34:f5:83:75:43:30:7e:e3:08:
26:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B1:62:50:7C:BC:CB:84:F8:0D:26:15:74:8F:C4:4D:F1:9D:45:FD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9bFiUHy8y4T4DSYVdI_ETfGdRf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.128.0/22
Signature Algorithm: sha256WithRSAEncryption
87:49:ce:0a:49:d6:a4:9f:fd:a5:7e:1a:d3:a8:3f:32:dd:ae:
39:8f:bb:4a:f3:64:99:ec:de:cd:41:18:f3:bc:af:1f:2e:ef:
11:ff:9e:9f:f3:65:1c:08:9a:7c:62:28:66:20:06:85:61:75:
f5:80:06:f7:2c:98:4d:d9:2e:9f:32:24:c7:e4:55:6a:92:7e:
f5:d4:cc:67:30:4e:af:3f:3d:93:6b:23:78:4b:8b:50:78:3c:
2c:75:dd:f9:33:a7:fe:2a:40:27:ab:3b:fb:8a:3a:11:6f:bb:
07:6d:7d:46:9c:87:58:13:02:fa:fb:16:2e:f2:1c:36:69:58:
b7:ac:8d:c9:9c:1b:51:4b:06:cf:23:00:e7:c0:a1:98:57:1b:
b4:ed:66:06:28:5e:0a:1c:5e:86:1b:24:d1:56:8a:76:f9:1b:
53:85:10:58:4d:b2:26:f9:71:dc:b3:1e:2c:de:0b:e2:54:a7:
c0:12:03:d4:6b:26:9a:bf:d9:e0:8b:7f:30:87:f2:f4:9c:86:
0d:fe:d1:62:e8:88:83:b0:aa:5d:ee:f5:88:b6:34:03:65:cd:
39:6c:fa:59:d8:7f:51:2f:52:0e:b8:cc:1b:d4:09:13:75:43:
84:ef:63:2e:71:6a:93:9b:ca:67:fa:48:89:38:8c:31:2d:12:
89:f3:cc:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:09 2025 by rpki-client