Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KSV3nRo9f3Loy03-c68_t5mZnD8.roa
File: KSV3nRo9f3Loy03-c68_t5mZnD8.roa (raw, json)
Hash identifier: zMvkj3ueFZdjIQiOaL2YHkDvk/xjfiUYwx1exm4kkmw=
Subject key identifier: 29:25:77:9D:1A:3D:7F:72:E8:CB:4D:FE:73:AF:3F:B7:99:99:9C:3F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3523
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KSV3nRo9f3Loy03-c68_t5mZnD8.roa
Signing time: Mon 10 Feb 2025 13:53:02 +0000
ROA not before: Mon 10 Feb 2025 13:53:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.195.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13603 (0x3523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2925779D1A3D7F72E8CB4DFE73AF3FB799999C3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9b:99:fe:54:95:0d:7e:87:a0:61:27:92:3d:
de:19:0e:85:b5:96:5e:01:5f:6f:6a:a8:0e:a2:52:
7d:21:30:2e:74:39:33:42:07:09:89:24:68:9f:08:
b1:df:b7:f3:a6:bb:28:71:63:18:f0:5f:c1:87:0e:
50:ca:10:f5:1a:84:15:ce:81:72:09:74:1f:91:33:
ed:67:15:71:31:6d:5f:d2:a3:08:04:d5:9b:2e:3f:
48:d4:97:90:13:de:58:54:aa:0b:88:eb:64:2a:07:
08:c4:10:71:13:16:18:b4:10:c7:50:57:04:9e:c9:
05:a3:44:02:e6:2c:d0:94:6e:2f:db:d5:4e:52:3a:
a5:44:65:c5:c6:03:d6:a8:61:bb:a3:67:ac:62:eb:
23:f3:5e:ee:4e:d7:f8:3a:f8:a2:b4:61:6d:4d:15:
14:fc:2d:e2:81:ce:e8:46:29:dc:07:88:c2:74:40:
c5:7c:17:60:4b:32:04:9b:e3:0b:1a:33:47:5a:d3:
89:f3:bf:c8:a8:69:9b:42:8a:77:b1:61:87:03:9b:
a7:ef:fd:8f:af:30:3a:c4:75:39:70:13:d6:b6:28:
15:1f:94:de:3f:c3:f5:b2:fd:8a:19:e4:b7:27:28:
6b:65:4d:2e:c6:f1:c4:26:f6:98:fd:4e:1d:ef:8e:
3b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:25:77:9D:1A:3D:7F:72:E8:CB:4D:FE:73:AF:3F:B7:99:99:9C:3F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KSV3nRo9f3Loy03-c68_t5mZnD8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.72.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:dc:6d:02:22:4e:7c:11:09:87:40:e2:55:8f:4e:5e:0f:02:
98:8a:cf:94:55:c0:4d:fa:b8:4f:78:c8:00:25:4c:f1:ce:3c:
c0:23:c3:bf:08:ed:32:5b:f6:a4:10:95:2a:d4:74:0d:45:1e:
65:37:bd:c4:16:f5:43:23:b7:7c:7b:c8:3e:12:4f:0e:41:a3:
b6:10:b2:b9:88:22:23:d7:36:ff:e2:19:5d:bc:b0:dd:aa:6d:
d7:11:e4:ba:9f:c0:a3:92:68:d7:14:da:0e:2d:2e:6f:7e:02:
6a:26:5f:f6:9e:b0:9c:57:31:61:cb:66:99:29:5d:3b:66:05:
5a:85:4a:16:04:8d:43:d1:f5:95:cf:8b:cd:94:20:ed:af:32:
b4:d8:5e:47:df:0b:9c:4a:fa:43:b5:4d:eb:a6:9e:e6:4d:16:
8d:09:12:24:79:09:a9:83:89:49:67:db:2f:87:16:d7:ba:24:
87:4f:cd:a4:0e:33:d1:09:79:cc:b6:e0:e5:2b:26:ba:db:c0:
58:8a:1c:9e:b9:78:15:3f:77:14:12:ba:cf:77:cc:59:72:50:
54:5d:9d:aa:05:79:3a:f4:73:f2:09:ca:ca:46:8f:a9:10:71:
29:50:8e:b6:fb:56:15:15:6a:60:e0:ec:cc:8b:6f:cc:1e:05:
3d:a7:4f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:23 2025 by rpki-client