Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GkfoFo7DB89ZE9qWmlBwCMcoeFE.roa
File: GkfoFo7DB89ZE9qWmlBwCMcoeFE.roa (raw, json)
Hash identifier: dKhCY9XHpcubsrWlo5XAjS36A24L3h5pSWMLBL4Y1Iw=
Subject key identifier: 1A:47:E8:16:8E:C3:07:CF:59:13:DA:96:9A:50:70:08:C7:28:78:51
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3421
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GkfoFo7DB89ZE9qWmlBwCMcoeFE.roa
Signing time: Mon 10 Feb 2025 13:52:06 +0000
ROA not before: Mon 10 Feb 2025 13:52:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.193.252.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13345 (0x3421)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1A47E8168EC307CF5913DA969A507008C7287851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:57:90:5a:cb:3d:c3:39:63:dd:73:c7:13:d6:
47:56:69:fb:98:d2:1e:7f:b9:db:dd:8c:33:5d:3c:
95:45:4e:57:69:ec:f2:cb:ca:0a:f3:78:8a:5b:97:
2d:fd:27:8b:f3:d7:0d:7d:38:c0:3c:76:2c:dc:00:
fb:12:30:48:d5:68:75:a6:e9:24:17:f5:27:04:31:
bc:44:ef:79:9b:07:8b:bb:ee:b6:1e:b5:10:2d:16:
4f:a2:e0:12:ba:84:4d:00:0a:43:d3:a9:8d:7c:e3:
b6:5f:bd:e4:af:ae:60:8f:a2:66:e9:72:15:23:8f:
56:fa:bb:48:03:23:69:fe:b9:c6:0b:19:44:38:74:
91:d2:2c:70:a7:dd:b5:a0:37:18:2d:3d:85:b4:d3:
8b:25:48:4c:a8:01:36:50:53:c0:0c:79:d9:88:81:
e2:9f:d3:f0:c1:60:9a:d8:77:e5:da:90:38:db:61:
67:79:0c:ca:23:04:57:fe:57:93:49:47:17:2d:30:
05:39:1a:10:2d:9e:b3:7f:c6:64:18:90:c8:3e:7f:
5c:54:f8:a8:29:fc:43:af:49:b6:0f:82:6e:79:94:
a3:da:04:1c:84:59:bd:3c:5e:1a:fa:ea:52:84:7f:
9d:da:a8:53:90:4b:64:c9:89:08:74:46:cd:a2:b4:
cd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:47:E8:16:8E:C3:07:CF:59:13:DA:96:9A:50:70:08:C7:28:78:51
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GkfoFo7DB89ZE9qWmlBwCMcoeFE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.252.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:f8:9e:c9:ce:87:04:94:a0:b8:71:99:13:7e:44:66:12:dc:
d1:26:e0:26:e5:e5:84:0c:69:5f:35:60:f5:43:01:9d:4b:17:
d0:4f:80:9a:28:dc:9f:a4:6b:33:5c:2e:6f:69:24:23:7c:60:
e2:c6:14:3f:03:d1:30:43:db:d9:9b:b7:29:29:45:03:5a:5c:
7e:0e:70:2a:88:4d:4f:da:56:19:ac:d2:1e:d1:47:81:fb:d3:
29:bb:21:99:74:e2:25:0b:48:a6:67:88:ba:fb:b3:e2:7d:ee:
28:85:e2:c9:1a:de:ad:4b:e0:87:19:9c:e7:40:56:b6:2b:3e:
8b:71:5a:74:c6:88:97:27:c0:21:0e:33:2d:d4:6f:e1:f1:ef:
34:dd:6e:7a:11:c4:99:1a:b7:e7:24:e4:73:ae:b1:d8:07:90:
f6:51:22:bd:52:76:0a:21:43:de:f7:7e:ee:6a:d0:21:9e:cc:
70:6a:9a:da:f9:fb:58:cd:79:6a:67:8b:e9:45:9e:7f:68:f2:
82:ba:28:4c:03:58:54:2f:7b:57:bf:1d:b0:2d:5e:a0:b5:df:
9a:14:04:fe:bb:e1:55:a4:81:dc:3e:fb:a8:8c:57:b7:88:e6:
85:37:ee:58:39:78:03:ae:43:bc:84:b8:dd:72:59:7e:d6:f1:
a1:e5:e2:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:31 2025 by rpki-client