Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PHHgdoAfSJVK_kLwmZ9sh2ilNyw.roa
File: PHHgdoAfSJVK_kLwmZ9sh2ilNyw.roa (raw, json)
Hash identifier: 2KDf5C1+KKD8BZuIw52oFBY2PjmCdXFL6P5n8N2PYW0=
Subject key identifier: 3C:71:E0:76:80:1F:48:95:4A:FE:42:F0:99:9F:6C:87:68:A5:37:2C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 345A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PHHgdoAfSJVK_kLwmZ9sh2ilNyw.roa
Signing time: Mon 10 Feb 2025 13:52:18 +0000
ROA not before: Mon 10 Feb 2025 13:52:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.192.48.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13402 (0x345a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3C71E076801F48954AFE42F0999F6C8768A5372C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ab:e3:97:e6:a4:34:8d:c5:5b:73:5c:5a:f8:
0d:46:4a:20:8a:0b:54:c2:2e:8f:82:64:0a:a9:e8:
2e:9d:23:28:c1:32:66:22:c2:45:b7:db:67:74:1e:
68:33:30:a3:74:26:39:fe:78:da:6c:c9:7b:e7:18:
81:26:f9:2e:e0:78:4a:07:b8:1a:02:ad:34:91:1d:
c8:12:3b:4a:d3:79:83:bc:f9:58:9b:77:45:1b:de:
67:7b:b1:9e:af:ed:8b:e9:f8:e3:13:27:76:40:b2:
0c:4f:19:5d:9f:22:ca:65:cd:b8:92:39:e7:02:6f:
11:d5:e8:fa:80:a8:fe:70:e9:19:a1:69:d6:65:ed:
9e:af:bf:60:a6:df:ce:fb:26:8b:a8:46:2b:31:ca:
3d:9d:ea:04:01:38:6e:d3:0c:bb:21:9a:9c:6e:94:
b7:36:07:a6:10:91:f9:05:13:cb:6d:18:79:b3:6a:
38:23:ec:99:f8:db:cf:f3:e2:09:29:f4:0b:a0:3a:
96:e8:33:a9:c6:5a:dc:a4:01:bd:5c:03:39:cc:e5:
f3:49:cb:32:be:64:f1:4b:e2:38:48:23:86:63:33:
aa:3c:e2:b9:f1:89:35:0d:e1:03:ee:4a:72:16:04:
9b:01:2d:7a:80:d2:7e:7c:7d:db:a8:26:b6:9c:95:
ca:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:71:E0:76:80:1F:48:95:4A:FE:42:F0:99:9F:6C:87:68:A5:37:2C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PHHgdoAfSJVK_kLwmZ9sh2ilNyw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.48.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:2c:c5:94:b8:4e:b5:50:ef:7d:77:2f:18:64:65:f0:1e:19:
83:8d:28:16:72:03:55:1f:00:1f:c0:0d:0d:5f:3c:57:ca:c5:
9e:57:6b:17:f0:3f:8c:ae:2d:2d:ba:df:65:4e:5d:94:9d:de:
6f:54:78:93:30:39:62:4b:ae:23:23:6e:f3:db:27:f0:9e:33:
46:8f:20:eb:dd:0f:28:70:1e:25:ae:b0:4a:86:6f:d9:c3:02:
3f:db:28:13:96:8a:e5:c2:f7:7e:b0:b5:3e:52:67:89:0f:7a:
e8:f2:e7:33:d4:8d:b1:dd:f1:79:d4:94:9d:a8:48:6a:dc:e5:
c4:1e:65:41:eb:44:ab:f7:5a:8a:ac:0a:18:85:99:21:13:1b:
17:71:e3:ca:22:b3:1d:d7:ec:39:2e:d7:2d:22:b0:49:53:f6:
f7:6d:d0:d6:40:67:dd:6a:a9:7a:14:d5:13:b2:fb:fa:9f:d1:
36:82:46:ef:dd:fd:37:60:08:50:ec:8d:ec:97:6a:2c:03:3c:
f2:04:9f:5c:96:7c:e0:31:4c:5f:5d:0a:12:7c:10:87:bf:3f:
cf:14:6b:aa:96:12:c0:e2:2c:73:60:12:90:28:99:49:2a:63:
d9:43:ac:c2:f0:9f:49:43:05:bd:f9:fa:9d:dc:0a:f6:e3:54:
fc:95:dc:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:51 2025 by rpki-client