Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D_eU8NT_XEIbrm-rCqlXYyUVj4I.roa
File: D_eU8NT_XEIbrm-rCqlXYyUVj4I.roa (raw, json)
Hash identifier: Lb3j07L7h6YW7opS7Z9Ilg8q8LPdUgJniAYCMlY1KIQ=
Subject key identifier: 0F:F7:94:F0:D4:FF:5C:42:1B:AE:6F:AB:0A:A9:57:63:25:15:8F:82
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 34DF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D_eU8NT_XEIbrm-rCqlXYyUVj4I.roa
Signing time: Mon 10 Feb 2025 13:52:46 +0000
ROA not before: Mon 10 Feb 2025 13:52:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.233.234.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13535 (0x34df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0FF794F0D4FF5C421BAE6FAB0AA9576325158F82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:ae:ac:13:85:bf:18:e6:b2:79:c1:48:b1:
60:1d:8e:84:29:44:58:a9:33:b1:fa:d4:4b:54:a9:
03:cf:93:ee:47:1c:bb:7b:de:ab:c6:7c:2f:9b:b3:
78:f8:64:45:fd:07:43:97:16:70:7a:cd:e3:35:78:
9d:d4:6d:80:76:f8:82:34:a1:88:88:5d:cf:27:18:
5c:d9:e7:a1:e1:35:14:48:4b:13:ae:91:75:1a:b5:
f1:ee:9a:9c:a8:f0:2c:95:76:09:ce:ea:b4:cf:92:
e7:10:d5:9e:bc:ba:a2:14:c9:6a:05:54:ed:ed:42:
b7:5b:e1:9b:9b:14:3f:48:f4:14:21:c8:ef:eb:f6:
b7:94:49:15:18:df:be:18:ac:d6:8b:b7:c7:b7:83:
e4:69:c6:8b:48:84:18:9e:35:a5:2d:ce:47:08:b9:
ad:5f:4a:cb:f3:d7:5f:3c:3b:e7:ae:87:38:e4:c6:
da:8a:0c:ad:a2:53:ab:cc:40:74:7f:1d:13:f0:ac:
ca:3a:52:71:fe:77:4d:c7:e8:ad:cf:06:e1:2f:4f:
f7:11:19:f5:1b:33:c8:a2:00:7e:ac:4c:91:29:11:
d3:ec:06:4f:6a:85:7b:18:2c:85:e4:0b:4f:b1:de:
57:ae:2c:6e:ee:81:b8:d9:7b:8a:da:12:54:5d:32:
b4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F7:94:F0:D4:FF:5C:42:1B:AE:6F:AB:0A:A9:57:63:25:15:8F:82
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D_eU8NT_XEIbrm-rCqlXYyUVj4I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.234.0/23
Signature Algorithm: sha256WithRSAEncryption
53:1e:cc:31:f8:0b:0e:06:9a:0f:7d:1e:2f:24:8a:11:2b:11:
03:7c:36:39:d7:ef:f6:f1:59:12:56:8b:ac:38:83:f7:8e:b6:
43:59:d5:60:aa:7f:ca:58:d0:5b:01:99:ce:07:eb:68:18:a6:
ae:3a:52:b8:81:4f:d0:4d:bc:e4:01:2f:2c:e3:88:35:da:2e:
7c:84:24:a3:a0:84:45:8f:39:70:7b:66:a1:b4:59:c8:03:7b:
81:20:d1:9a:1a:c4:09:52:85:23:4f:30:4f:2b:33:73:f2:93:
5c:b3:ad:f3:2b:97:eb:a2:9d:2c:aa:fe:6e:31:3c:af:a9:a1:
58:1b:da:fe:35:15:14:52:86:bd:af:4e:9b:8d:60:3e:8c:d8:
04:2e:02:99:c6:b7:12:1c:d5:fc:91:95:fa:06:18:d7:0c:68:
59:77:bb:94:73:ca:66:f2:cf:39:de:46:7c:55:91:6f:3b:59:
53:e1:14:15:5e:d0:66:12:8d:b3:47:c2:84:71:d7:79:cf:e2:
b8:a7:e4:2a:21:ad:b4:61:4e:25:72:75:61:93:c6:62:97:b1:
10:b9:fd:6b:ca:0d:4d:53:e5:df:85:0a:f7:e7:5c:ab:06:5c:
ed:32:c5:97:fa:26:51:e5:d4:42:37:1f:3e:f8:ad:1b:bb:f1:
95:d5:5d:04
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUyNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGRjc5NEYwRDRGRjVD
NDIxQkFFNkZBQjBBQTk1NzYzMjUxNThGODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCk9K6sE4W/GOayecFIsWAdjoQpRFipM7H61EtUqQPPk+5HHLt7
3qvGfC+bs3j4ZEX9B0OXFnB6zeM1eJ3UbYB2+II0oYiIXc8nGFzZ56HhNRRISxOu
kXUatfHumpyo8CyVdgnO6rTPkucQ1Z68uqIUyWoFVO3tQrdb4ZubFD9I9BQhyO/r
9reUSRUY374YrNaLt8e3g+RpxotIhBieNaUtzkcIua1fSsvz1188O+euhzjkxtqK
DK2iU6vMQHR/HRPwrMo6UnH+d03H6K3PBuEvT/cRGfUbM8iiAH6sTJEpEdPsBk9q
hXsYLIXkC0+x3leuLG7ugbjZe4raElRdMrRvAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUD/eU8NT/XEIbrm+rCqlXYyUVj4IwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RfZVU4TlRfWEVJYnJtLXJD
cWxYWXlVVmo0SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2
6eowDQYJKoZIhvcNAQELBQADggEBAFMezDH4Cw4Gmg99Hi8kihErEQN8NjnX7/bx
WRJWi6w4g/eOtkNZ1WCqf8pY0FsBmc4H62gYpq46UriBT9BNvOQBLyzjiDXaLnyE
JKOghEWPOXB7ZqG0WcgDe4Eg0ZoaxAlShSNPME8rM3Pyk1yzrfMrl+uinSyq/m4x
PK+poVgb2v41FRRShr2vTpuNYD6M2AQuApnGtxIc1fyRlfoGGNcMaFl3u5Rzymby
zzneRnxVkW87WVPhFBVe0GYSjbNHwoRx13nP4rin5CohrbRhTiVydWGTxmKXsRC5
/WvKDU1T5d+FCvfnXKsGXO0yxZf6JlHl1EI3Hz74rRu78ZXVXQQ=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:51 2025 by rpki-client