Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HYeOn0k0jmi4p4CMwwDzz4MMZEw.roa
File: HYeOn0k0jmi4p4CMwwDzz4MMZEw.roa (raw, json)
Hash identifier: Tw6ZCAZaJjXgFGhzmxnryfRbpjb0+Ft6SZZyvnXiJiw=
Subject key identifier: 1D:87:8E:9F:49:34:8E:68:B8:A7:80:8C:C3:00:F3:CF:83:0C:64:4C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3384
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HYeOn0k0jmi4p4CMwwDzz4MMZEw.roa
Signing time: Mon 10 Feb 2025 13:51:30 +0000
ROA not before: Mon 10 Feb 2025 13:51:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 180.177.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13188 (0x3384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1D878E9F49348E68B8A7808CC300F3CF830C644C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:36:1d:9c:30:4b:c9:52:1d:df:12:af:a6:a6:
05:ed:51:7a:c6:32:08:88:13:58:c2:bd:e7:db:89:
e7:c1:ea:ea:6b:21:ac:00:f1:ff:fb:c7:05:c4:59:
67:a9:1f:98:38:f1:40:71:e5:b1:30:8e:38:40:29:
d6:91:33:1c:19:d0:1a:e5:e1:16:fb:25:67:e4:5d:
b5:a8:c8:fd:5d:f7:7b:0d:eb:a7:e1:23:85:40:1c:
23:50:28:f2:ac:a1:9e:92:df:ed:93:29:2d:51:65:
73:6a:45:71:c0:e1:70:83:c6:5c:da:8d:26:1d:2d:
12:50:af:af:5e:72:91:b0:fc:94:3c:c4:e1:9f:31:
48:cc:1b:dd:cf:e8:7f:61:b1:87:f0:19:bb:fb:7e:
2b:43:fb:88:39:1f:6b:ae:fa:90:1c:3d:8a:f5:97:
d6:3f:5e:dd:9a:98:28:ed:77:f7:75:24:9f:44:47:
60:9a:00:00:a1:e2:df:5e:c8:15:94:0a:3b:65:53:
95:50:1a:5b:84:85:cb:5f:41:39:44:f9:08:19:09:
0e:42:9f:92:23:12:df:19:4c:92:da:56:61:1c:65:
12:ed:81:a4:af:42:df:ef:7b:78:23:ec:31:1a:4a:
38:2d:08:32:3e:14:3c:92:a2:49:c6:e9:58:54:8a:
7b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:87:8E:9F:49:34:8E:68:B8:A7:80:8C:C3:00:F3:CF:83:0C:64:4C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HYeOn0k0jmi4p4CMwwDzz4MMZEw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.52.0/22
Signature Algorithm: sha256WithRSAEncryption
91:ee:22:78:9a:4e:db:b6:98:9a:b0:f2:5f:e0:cd:5d:b0:b5:
9b:80:a4:15:1b:38:fb:02:db:11:ca:9f:da:d4:f8:bc:83:94:
8e:21:41:c7:f5:f2:30:7f:7a:95:9f:68:a1:d1:39:ef:64:8d:
9d:e3:c1:f5:60:77:72:46:64:6b:6e:99:16:f0:4f:4c:ae:d0:
42:93:a4:1d:4e:c5:ae:17:7d:a1:0b:3c:42:15:d2:a9:18:d0:
57:cd:db:0b:ea:bb:7b:8d:3b:ed:ed:ab:f7:15:08:a1:60:b0:
55:24:52:ab:8c:a1:9d:8c:53:05:2f:fd:e5:8c:a3:8b:5c:ba:
74:21:0d:0d:b1:36:be:9f:37:17:cd:aa:dc:56:6e:6a:1b:1a:
3c:7a:24:40:de:fd:5d:ae:3c:6f:c3:36:e1:e8:55:33:ff:84:
a8:76:78:b5:52:c8:66:a1:1e:bc:6e:c6:2a:be:d3:ed:38:c4:
c6:a8:ba:80:48:31:aa:a1:6c:70:10:f2:1a:ee:4a:ae:16:0b:
5e:b3:f4:9b:17:a9:4d:ac:84:be:b3:13:71:d4:1e:6f:f7:f8:
d8:aa:0d:19:f5:ed:70:fb:06:19:c1:eb:5d:48:8e:8c:7a:ce:
c1:65:c7:e3:1b:f9:39:24:8d:7a:20:62:22:f6:46:5d:86:55:
27:bc:f4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:15 2025 by rpki-client