Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ohy_o4QrdJywTxGEgfOFlLykQPg.roa
File: Ohy_o4QrdJywTxGEgfOFlLykQPg.roa (raw, json)
Hash identifier: u5hvMbfVrnHJACoCJT9mtBDAi2o/oWfZ1HtLVjeNT/E=
Subject key identifier: 3A:1C:BF:A3:84:2B:74:9C:B0:4F:11:84:81:F3:85:94:BC:A4:40:F8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3453
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ohy_o4QrdJywTxGEgfOFlLykQPg.roa
Signing time: Mon 10 Feb 2025 13:52:16 +0000
ROA not before: Mon 10 Feb 2025 13:52:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 118.232.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13395 (0x3453)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3A1CBFA3842B749CB04F118481F38594BCA440F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0e:44:a5:dd:19:56:ec:db:5d:03:29:3b:ec:
ce:7f:2d:c1:86:63:02:f8:e0:e5:6a:ee:1d:17:b0:
b0:29:fd:6b:0b:64:30:fa:0c:fe:ea:52:d8:52:81:
2f:58:c4:c2:55:2b:f6:e7:81:15:24:36:9e:83:e3:
60:57:7d:71:8a:c7:d2:7c:0b:92:dc:de:e9:8c:5b:
23:12:ac:23:03:55:61:02:ae:6c:15:96:f0:8c:8d:
8a:d8:38:b2:b3:bb:ae:6a:44:c4:63:60:23:2b:8c:
6e:37:0d:fc:2e:4b:7c:c9:71:f9:aa:35:37:03:8d:
f6:66:68:2b:2e:8f:e9:82:c1:f4:45:4c:7d:be:2b:
ea:24:36:2a:3e:19:90:5d:f2:9d:32:18:14:99:9c:
91:74:d6:dc:e9:3f:9b:19:d1:bf:5b:c1:a3:20:d3:
9d:68:01:d7:99:5e:c1:9d:f3:38:6d:f6:d2:67:66:
1a:f4:fa:f6:68:19:37:08:1c:3b:82:f3:66:23:5d:
61:4d:fc:3a:83:8a:05:7d:52:33:e2:51:d6:cd:04:
51:24:c7:e9:5e:bd:55:43:40:9a:1f:03:e0:5a:95:
1f:50:b0:9b:2a:af:ce:b1:41:6e:e0:83:bf:87:a3:
18:39:28:75:b8:a9:59:df:c2:dd:bc:f7:a3:7b:fb:
35:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1C:BF:A3:84:2B:74:9C:B0:4F:11:84:81:F3:85:94:BC:A4:40:F8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ohy_o4QrdJywTxGEgfOFlLykQPg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.220.0/22
Signature Algorithm: sha256WithRSAEncryption
33:b6:47:e6:a8:30:5e:2e:33:11:37:db:fa:c1:f6:fc:8d:76:
a0:2f:18:1c:3f:9c:81:b3:25:d4:85:02:b4:f3:76:cd:d2:73:
2f:6c:51:74:ee:8d:b5:98:66:cc:46:e2:10:fe:46:2c:25:43:
66:a8:0d:7b:eb:0d:d9:88:db:dc:be:c3:18:8f:62:ed:22:14:
74:74:fc:ac:52:aa:a9:58:76:ce:20:89:f9:65:e4:e5:a5:e9:
d0:69:17:9f:0f:35:b3:82:aa:e5:a0:55:74:59:30:22:6b:1e:
85:ea:10:10:bc:dd:0a:9b:54:70:4c:b5:60:db:87:1b:55:51:
4e:08:4c:6a:b9:1f:0e:16:1a:81:7a:9d:f9:fe:2a:90:b5:d9:
bc:61:3b:32:79:e8:ac:4d:b4:14:b6:5e:eb:63:74:6f:ee:bb:
c6:03:b6:76:3d:a3:77:6b:20:94:90:aa:78:f5:cd:94:32:3d:
4d:ed:f4:32:30:62:19:26:68:0e:1e:0c:d4:e8:31:e5:cb:8d:
34:03:94:28:51:30:f3:df:72:b7:2c:4c:c6:93:1d:8d:6a:56:
b7:14:27:70:b0:d8:df:e0:31:c3:5d:74:36:70:d4:1e:8c:7e:
58:1b:cf:31:e1:77:19:ce:6c:1f:bd:4c:ca:a5:3b:8c:eb:07:
c0:58:85:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:23 2025 by rpki-client