Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BGdk7CYPiE8EF90VO-pSWHa9Y04.roa
File: BGdk7CYPiE8EF90VO-pSWHa9Y04.roa (raw, json)
Hash identifier: 32gN7d8/xPyuMX6+WWznIiiCAbe0mIOzGgP5z+iRjBs=
Subject key identifier: 04:67:64:EC:26:0F:88:4F:04:17:DD:15:3B:EA:52:58:76:BD:63:4E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 35C8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BGdk7CYPiE8EF90VO-pSWHa9Y04.roa
Signing time: Mon 10 Feb 2025 13:53:41 +0000
ROA not before: Mon 10 Feb 2025 13:53:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 180.176.128.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13768 (0x35c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=046764EC260F884F0417DD153BEA525876BD634E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:75:be:de:94:b1:32:70:99:ad:76:f1:00:1a:
19:17:ad:2c:00:55:47:c5:52:45:95:3a:0f:a5:e2:
0d:e1:44:fc:94:73:b1:74:36:fc:f4:4a:14:aa:f7:
4e:7a:2b:01:cc:81:d6:82:6a:2b:0a:49:73:bd:e9:
d4:79:0f:f6:64:eb:26:cf:06:3a:10:71:32:8a:d2:
3c:17:61:76:da:1d:6b:b9:cb:62:48:8e:83:ef:de:
67:cb:e7:9e:0e:f7:5d:fe:a2:ea:78:8d:c8:d0:1f:
33:85:89:92:b0:dc:fd:c9:1c:f0:0a:1b:f7:ca:98:
a0:21:f5:da:7e:59:e3:84:c9:6d:42:83:1e:89:b8:
46:9d:59:e3:c4:cf:09:94:84:a9:41:ff:f5:12:14:
bb:f8:c7:b3:be:6a:61:83:07:66:37:62:88:af:c9:
9c:cc:eb:db:74:ff:52:33:d2:9d:74:36:54:5c:73:
11:7b:07:33:4b:bb:20:bd:eb:7b:b7:6d:36:a4:a5:
21:28:a7:f3:a7:8f:82:43:8f:dc:c1:3d:60:60:02:
81:55:98:6c:b0:d3:30:1f:60:76:93:4f:54:5b:d2:
19:04:f7:c9:45:e9:fa:af:40:eb:d9:0a:9c:6a:79:
69:c1:c3:70:d3:ef:ee:97:1c:97:14:db:9a:f0:6f:
8f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:67:64:EC:26:0F:88:4F:04:17:DD:15:3B:EA:52:58:76:BD:63:4E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BGdk7CYPiE8EF90VO-pSWHa9Y04.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.128.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:62:64:41:03:a8:1d:85:f6:38:0c:27:e6:1c:57:06:f2:4b:
8d:cd:82:e6:74:49:9e:74:84:4c:7b:0d:53:5d:92:d6:63:af:
23:6f:e8:4b:60:cf:a8:34:3a:91:30:29:0c:33:1d:b9:d3:59:
ec:a5:4d:db:e0:e6:41:b9:6f:fa:b4:f1:a6:15:8f:13:bb:a0:
7d:15:f3:18:16:6b:80:56:6c:66:a2:7e:95:b1:34:a6:29:32:
c4:89:2d:47:44:c3:65:45:86:cd:b2:58:51:da:ef:97:d1:28:
ba:51:c9:a0:16:3d:35:88:ff:30:ec:70:ea:1d:0e:6d:3d:56:
b6:86:a4:3e:42:88:6b:37:68:fa:cd:2d:c9:4d:31:48:2d:37:
4a:47:f3:80:a4:b5:e8:f6:8a:ba:dc:b1:2d:91:ca:5b:a0:b4:
ac:d4:1c:ed:f6:f1:cc:cd:43:88:2d:a4:8f:4a:47:6c:86:95:
e2:51:92:e7:37:a1:42:d0:48:7d:4f:1d:26:d1:b6:fb:36:7b:
54:72:7f:b2:e9:e3:6c:3e:eb:c1:88:57:23:ff:d4:95:86:73:
9d:59:74:1d:c0:67:61:60:4c:31:52:fd:23:3d:f7:4f:a9:a0:
b2:2c:d2:ed:4f:8a:d1:60:c7:c4:08:b3:bc:40:35:e2:1e:ce:
f0:3d:95:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:46 2025 by rpki-client