Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GqODvK7QsN2ziIXbSMMeXlhcC6o.roa
File: GqODvK7QsN2ziIXbSMMeXlhcC6o.roa (raw, json)
Hash identifier: sFNzbHAuc1k8svn0t9tl2uz/KHLPpQea6Xd1oXhk39o=
Subject key identifier: 1A:A3:83:BC:AE:D0:B0:DD:B3:88:85:DB:48:C3:1E:5E:58:5C:0B:AA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 355C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GqODvK7QsN2ziIXbSMMeXlhcC6o.roa
Signing time: Mon 10 Feb 2025 13:53:16 +0000
ROA not before: Mon 10 Feb 2025 13:53:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.192.104.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13660 (0x355c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1AA383BCAED0B0DDB38885DB48C31E5E585C0BAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e5:6b:9a:6e:d1:3b:48:fc:4d:c3:c5:b9:20:
2e:d1:27:ab:dc:91:46:69:55:f9:18:da:3e:51:7f:
0a:b5:e6:71:93:50:68:a3:5c:62:8c:51:2f:08:f1:
49:5c:8d:f8:1f:c3:8e:78:6f:10:8b:5a:e8:e9:7b:
a4:a2:02:83:61:c8:b7:95:86:b4:1e:5c:4c:ab:d4:
74:7a:aa:21:08:a7:88:26:69:5d:db:c2:7c:bc:af:
65:15:ba:b5:28:e1:a8:86:bc:61:19:55:fa:60:87:
54:dc:05:88:6f:86:05:7a:ca:1c:0f:59:5a:fb:61:
ed:54:82:55:e5:5e:01:eb:8f:5f:ee:9e:68:e2:f8:
23:b0:df:96:80:bf:0e:f7:00:fe:36:76:f4:b6:0b:
93:da:74:ae:5d:55:17:24:85:b4:37:b9:80:bb:94:
82:73:d2:44:2d:bf:6e:be:4e:b4:e0:a8:9a:e0:50:
fc:04:e8:0f:f5:f0:bf:a2:98:14:06:84:b8:ee:bb:
06:5f:bb:4a:83:f8:63:f3:44:a8:fc:1d:a0:1b:81:
ea:03:19:33:53:83:9d:2b:51:77:14:57:82:a4:26:
97:7e:e7:7a:3a:d4:c8:e8:44:ed:0d:87:06:f0:62:
3d:f2:99:e2:1b:96:27:38:4c:68:d8:88:a5:b6:0f:
19:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A3:83:BC:AE:D0:B0:DD:B3:88:85:DB:48:C3:1E:5E:58:5C:0B:AA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GqODvK7QsN2ziIXbSMMeXlhcC6o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.104.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:19:60:e2:ee:b7:00:86:e8:8d:1e:74:38:e5:f0:a4:2b:a0:
8e:c1:57:04:d0:e6:fb:1e:7d:bd:3b:9e:ce:df:42:d6:be:ea:
f0:12:d7:b8:09:9f:2a:80:74:fd:52:27:a4:ee:7f:ed:b4:d0:
42:3c:db:d2:b8:56:38:38:65:62:9d:69:71:27:1f:a9:de:7a:
fa:d5:2a:55:e6:87:dc:b0:95:56:8d:a2:5b:bf:cb:b6:c2:88:
62:e1:32:a3:c5:26:be:de:6e:8a:c5:cf:ee:f2:7e:4e:91:83:
b9:4f:a8:73:28:f1:9a:97:44:58:fe:b5:fc:f0:bf:e7:7a:92:
ee:79:d2:81:48:20:4e:d3:99:44:2c:12:a0:f1:f2:35:b3:f3:
9c:be:40:b5:11:45:0d:ed:b3:e0:a7:32:c3:b6:80:89:c7:90:
4d:1f:ae:c4:c6:0e:e0:eb:a8:cd:13:8f:e0:c8:83:af:5d:c1:
8b:94:bf:c8:ed:28:f4:42:a0:ec:81:b5:9e:cb:e3:5b:65:33:
7c:f5:a9:89:e7:d0:b1:d7:20:e6:3b:f2:8d:5b:e2:b2:9a:68:
cf:6b:e2:ad:5e:5a:66:78:a7:c9:a3:3b:d6:e0:a7:2d:b3:a8:
ad:49:79:1a:2a:29:b1:48:d4:b5:ea:35:21:f9:4e:e5:8f:66:
aa:ed:17:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:31 2025 by rpki-client