Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PIBdmeIic_gjtPeN1QuwMj9hDTw.roa
File: PIBdmeIic_gjtPeN1QuwMj9hDTw.roa (raw, json)
Hash identifier: 3obmOe34y8djm1ll36uPFcQn7Z3lwL7JK0p45tAl57Y=
Subject key identifier: 3C:80:5D:99:E2:22:73:F8:23:B4:F7:8D:D5:0B:B0:32:3F:61:0D:3C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 36B8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PIBdmeIic_gjtPeN1QuwMj9hDTw.roa
Signing time: Mon 10 Feb 2025 13:54:36 +0000
ROA not before: Mon 10 Feb 2025 13:54:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.72.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14008 (0x36b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3C805D99E22273F823B4F78DD50BB0323F610D3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:39:23:2e:35:81:0d:35:ea:c6:7c:ba:65:bf:
86:28:22:48:f9:32:87:54:82:ad:1f:a6:b5:fb:f6:
50:fe:16:5b:4e:42:6b:1e:a9:04:e9:84:51:b3:b6:
e7:3a:bd:f0:74:9f:83:ec:da:8c:90:2b:89:1f:ad:
78:5a:c1:8f:6d:4f:5d:20:78:4a:81:4f:bc:4a:13:
a3:31:33:ea:9c:55:ad:b5:ef:fe:30:7d:a2:ad:08:
d8:17:03:4d:0f:4a:82:99:20:23:8d:ef:9a:67:ca:
a4:45:b6:d4:44:50:66:47:1e:9d:bb:d3:8a:d4:65:
2b:ac:66:ec:00:c6:cc:73:b5:90:66:6e:3a:d3:82:
a9:03:00:8e:2e:43:81:10:e0:c2:a8:1c:18:d6:b1:
44:9d:27:6d:f9:eb:7a:78:c6:78:80:fe:c6:1b:91:
6c:e1:3d:ce:db:a3:78:7e:63:45:3c:97:c2:bc:3e:
4f:5d:bb:ef:68:05:a9:01:f1:a1:9c:bc:64:a2:06:
d0:bd:91:58:db:97:6a:1b:97:b4:7d:74:67:4a:09:
b2:18:8d:fa:bd:d8:4e:bc:2a:88:14:6c:ae:6e:f6:
52:eb:85:45:e9:d6:7d:60:e3:b9:76:35:f7:33:cb:
82:72:a8:f0:c4:84:c7:58:84:bc:0c:f8:a3:4e:fb:
25:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:80:5D:99:E2:22:73:F8:23:B4:F7:8D:D5:0B:B0:32:3F:61:0D:3C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PIBdmeIic_gjtPeN1QuwMj9hDTw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.72.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:1e:45:96:b9:27:38:e0:18:1d:97:ed:a6:e4:42:4c:66:05:
1b:06:fc:a7:f4:61:7c:d6:b1:69:6b:f3:19:97:c2:f4:d4:b3:
33:dc:76:76:99:68:5d:fb:6e:0c:a8:79:b3:37:b0:fe:79:7a:
1a:0a:3c:b1:dc:59:82:0a:3d:51:4b:be:3d:04:3d:f0:a5:d4:
1e:1b:fc:29:4f:e9:ae:b9:45:a4:8b:bf:85:ba:01:e0:3d:86:
14:a4:15:4b:97:2c:29:83:6e:d1:52:3b:ac:94:b6:5a:5c:87:
64:b0:04:55:76:86:42:28:37:50:06:bc:fb:cf:b7:20:8d:2e:
e6:11:9e:b3:39:72:93:bb:29:87:29:a8:f9:40:5b:83:3c:00:
09:f2:9d:43:df:c7:2c:a3:f0:46:87:64:a2:01:40:aa:e5:ab:
4b:84:44:14:42:c1:bd:3d:5c:c0:cc:72:30:4c:12:88:8b:8d:
f0:69:3f:26:30:5e:72:20:fb:0c:8f:0c:f6:d5:70:cf:6e:53:
e9:5f:37:70:e6:3b:3e:f7:a7:c6:84:bb:15:57:d1:a6:81:9d:
fa:c0:2a:10:50:6b:1f:84:61:58:6c:f5:65:3f:cc:e6:27:9b:
59:21:f3:50:8d:db:cd:19:9d:bc:29:ca:36:5b:56:1e:1a:a8:
a2:10:41:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:37 2025 by rpki-client