Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Oh4z7UJCIvqGvFJajPA_foRwFTI.roa
File: Oh4z7UJCIvqGvFJajPA_foRwFTI.roa (raw, json)
Hash identifier: fe9noCLanMTuuZ1LMFXbia548TeC/MVU8EScnZTnCJo=
Subject key identifier: 3A:1E:33:ED:42:42:22:FA:86:BC:52:5A:8C:F0:3F:7E:84:70:15:32
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33A7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Oh4z7UJCIvqGvFJajPA_foRwFTI.roa
Signing time: Mon 10 Feb 2025 13:51:38 +0000
ROA not before: Mon 10 Feb 2025 13:51:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.195.192.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13223 (0x33a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3A1E33ED424222FA86BC525A8CF03F7E84701532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:13:dd:a9:91:5a:b1:66:02:92:54:95:6b:da:
bb:25:47:51:ae:1e:9e:e9:7a:19:20:34:90:0c:52:
65:40:1d:a4:61:04:8f:42:30:aa:25:b6:09:60:33:
0f:97:aa:96:c7:54:6e:27:9e:12:e2:cc:83:d2:82:
1a:f3:8c:56:83:1b:26:9b:d2:4b:a2:51:6f:f9:e4:
d3:ef:00:9e:8c:27:8b:59:1f:68:df:cd:5a:34:ac:
3d:f2:52:e1:c2:41:99:14:14:71:66:63:a3:39:22:
ff:42:80:4b:4f:77:70:65:c4:7e:9a:86:92:fd:63:
7e:24:c4:86:df:fc:5c:22:f1:1c:d7:4a:a5:ba:85:
c7:e9:ce:95:22:f2:32:70:94:5a:7a:2c:8f:9a:f3:
04:ce:32:86:18:6a:26:62:aa:fb:00:8e:1a:d1:7e:
c0:a5:e2:bf:82:75:e4:4b:be:3c:8c:c5:8c:8a:e7:
5e:b0:e7:eb:57:b7:bd:e0:a6:df:94:9b:ed:90:d1:
1b:55:dd:ed:83:96:dd:d4:5e:a9:3c:17:9b:51:bc:
dd:3c:bd:00:2e:62:83:56:2d:04:27:b8:a4:00:b7:
50:4f:da:d4:c1:8b:6d:9c:f1:4d:61:2e:c3:f9:84:
51:42:69:fa:b1:3f:03:43:4a:14:31:81:6c:8b:55:
52:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1E:33:ED:42:42:22:FA:86:BC:52:5A:8C:F0:3F:7E:84:70:15:32
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Oh4z7UJCIvqGvFJajPA_foRwFTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.192.0/20
Signature Algorithm: sha256WithRSAEncryption
53:53:bd:72:4c:1b:41:48:90:c8:b8:23:4c:b9:18:14:b5:92:
04:8c:b2:c2:59:27:e4:98:d4:d1:5f:c8:2a:a3:8c:b4:52:43:
e4:eb:64:35:7a:2e:dd:33:60:3a:b5:a6:32:5e:27:2c:70:e4:
53:f1:66:d6:82:15:8c:91:4f:02:c9:82:81:ac:ee:64:1b:61:
90:42:db:b2:a6:34:d6:55:5c:9b:c6:5f:a6:09:72:7b:5d:44:
6b:91:b9:58:7e:b2:fb:10:31:02:06:bf:d1:5d:6c:5c:e7:79:
73:5c:e3:5d:d4:19:ac:cf:ee:5a:2d:da:8e:d9:5f:47:31:58:
a0:68:90:33:90:54:51:67:cf:4d:95:82:be:92:a4:28:a7:92:
ac:40:01:a5:7b:a7:6c:3e:45:3b:6a:b3:7f:e3:00:ce:4e:a5:
74:bc:eb:37:9c:c7:a3:93:a2:87:72:9b:65:a4:4f:0b:d1:08:
64:62:95:b3:64:dc:52:84:df:f3:14:3f:92:ac:8d:d9:f0:7f:
ed:ff:e5:01:e9:18:ee:12:db:2d:b2:23:13:cf:d4:0d:f7:33:
93:9d:0c:37:16:f3:36:2d:1f:15:29:dd:07:95:8d:50:5f:cf:
aa:32:b5:73:4a:ca:ae:4f:6c:b6:40:f3:1d:60:28:eb:21:89:
33:12:a7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:57 2025 by rpki-client