Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LlDcgrDtOg8s6bumvZ0vcrLHiXE.roa
File: LlDcgrDtOg8s6bumvZ0vcrLHiXE.roa (raw, json)
Hash identifier: R/vIMhpX8MZ5mhgQeLGIvaARW0TPUi8D018YfD6zSbY=
Subject key identifier: 2E:50:DC:82:B0:ED:3A:0F:2C:E9:BB:A6:BD:9D:2F:72:B2:C7:89:71
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 34D2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LlDcgrDtOg8s6bumvZ0vcrLHiXE.roa
Signing time: Mon 10 Feb 2025 13:52:43 +0000
ROA not before: Mon 10 Feb 2025 13:52:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.193.32.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13522 (0x34d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2E50DC82B0ED3A0F2CE9BBA6BD9D2F72B2C78971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d1:3c:68:a8:d6:86:81:3b:32:bc:38:d1:0a:
c3:87:05:38:30:b5:b2:c8:79:e9:0f:a5:93:ec:d2:
86:dc:c3:1a:45:06:4b:49:c0:87:0c:cf:06:88:eb:
c9:54:4c:1e:85:a1:0e:90:4a:90:bc:5e:82:65:6e:
2b:6b:34:0f:68:26:8e:f3:54:92:06:0a:98:76:98:
75:6f:62:63:fe:c1:7c:39:0a:19:11:56:19:bc:ea:
64:9f:e3:8f:58:95:34:5a:5b:f5:8a:66:11:e2:a3:
73:09:0f:45:fc:dd:30:a8:3a:05:99:c7:75:8c:32:
62:14:b4:78:1a:9e:95:a5:c8:c0:30:18:02:ae:ee:
1f:c3:75:ae:d1:c0:a7:c2:f0:0c:3b:92:21:c6:0a:
4c:5c:30:e8:9f:01:d2:14:43:9a:7f:fb:f2:e1:3a:
27:49:17:92:42:76:03:9b:5d:25:54:03:ca:17:63:
a2:5d:83:db:5f:cb:49:bf:42:93:d7:5f:4e:8f:74:
c6:87:46:42:6e:fa:b0:d9:c6:35:a5:2a:03:e4:17:
60:cf:44:91:26:69:6f:c9:b2:41:1f:b8:7c:a2:30:
be:fc:eb:d3:b4:2a:8d:4b:04:bb:33:92:ea:5f:b7:
a9:28:bc:0b:c8:63:85:9a:2f:64:77:4d:e7:b4:3e:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:50:DC:82:B0:ED:3A:0F:2C:E9:BB:A6:BD:9D:2F:72:B2:C7:89:71
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LlDcgrDtOg8s6bumvZ0vcrLHiXE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:f6:dd:39:98:9f:3b:7d:56:bd:a0:9a:d6:bf:40:4b:7f:22:
78:76:d5:9c:ea:0c:19:c9:72:60:46:bc:91:76:69:57:02:29:
aa:04:79:78:ba:87:27:d8:a5:0e:5d:cd:e9:89:16:b9:88:fe:
56:9a:29:14:f1:84:ce:1c:4d:60:c1:38:02:81:be:97:df:64:
71:f1:42:68:95:03:ef:46:6a:2d:47:9e:04:c2:23:ba:7f:37:
d9:33:27:f0:7f:fc:e8:f4:4d:16:2e:ef:2d:ce:36:4a:e2:1d:
17:0f:81:a8:23:99:6b:c4:ba:49:db:64:ad:37:03:ed:3e:78:
85:94:de:dc:e1:e4:d9:14:9a:33:c9:4e:d0:f7:54:74:a7:f4:
a4:c7:75:bc:ef:28:a9:7e:c5:53:3e:02:1a:ff:8a:c4:1b:b9:
8c:91:2a:a5:4b:e2:f6:7d:ba:b0:27:bc:92:6b:5d:08:d1:0b:
55:cc:40:6f:6b:ff:ce:a0:8c:cb:ec:e7:9e:dd:da:35:f8:b8:
fd:2d:55:e7:c9:17:c0:05:85:f3:eb:4d:51:d1:bc:b1:1f:9b:
1e:45:24:c7:db:bc:ca:9b:4b:dc:15:99:48:05:8d:05:6f:f1:
5e:13:12:7a:da:f9:2b:7a:84:ed:cf:8a:d1:af:b5:7b:8f:c8:
ac:95:a8:e8
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUyNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFNTBEQzgyQjBFRDNB
MEYyQ0U5QkJBNkJEOUQyRjcyQjJDNzg5NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/0TxoqNaGgTsyvDjRCsOHBTgwtbLIeekPpZPs0obcwxpFBktJ
wIcMzwaI68lUTB6FoQ6QSpC8XoJlbitrNA9oJo7zVJIGCph2mHVvYmP+wXw5ChkR
Vhm86mSf449YlTRaW/WKZhHio3MJD0X83TCoOgWZx3WMMmIUtHganpWlyMAwGAKu
7h/Dda7RwKfC8Aw7kiHGCkxcMOifAdIUQ5p/+/LhOidJF5JCdgObXSVUA8oXY6Jd
g9tfy0m/QpPXX06PdMaHRkJu+rDZxjWlKgPkF2DPRJEmaW/JskEfuHyiML7869O0
Ko1LBLszkupft6kovAvIY4WaL2R3Tee0PkivAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQULlDcgrDtOg8s6bumvZ0vcrLHiXEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xsRGNnckR0T2c4czZidW12
WjB2Y3JMSGlYRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
wSAwDQYJKoZIhvcNAQELBQADggEBAC/23TmYnzt9Vr2gmta/QEt/Inh21ZzqDBnJ
cmBGvJF2aVcCKaoEeXi6hyfYpQ5dzemJFrmI/laaKRTxhM4cTWDBOAKBvpffZHHx
QmiVA+9Gai1HngTCI7p/N9kzJ/B//Oj0TRYu7y3ONkriHRcPgagjmWvEuknbZK03
A+0+eIWU3tzh5NkUmjPJTtD3VHSn9KTHdbzvKKl+xVM+Ahr/isQbuYyRKqVL4vZ9
urAnvJJrXQjRC1XMQG9r/86gjMvs557d2jX4uP0tVefJF8AFhfPrTVHRvLEfmx5F
JMfbvMqbS9wVmUgFjQVv8V4TEnra+St6hO3PitGvtXuPyKyVqOg=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:07 2025 by rpki-client