Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q32gMzzZfFjs3NQptFVDp0XozN0.roa
File: Q32gMzzZfFjs3NQptFVDp0XozN0.roa (raw, json)
Hash identifier: PmQeOq+jewfo6rWwDuKtdmN0QBrmAYyGcFO3QPX8ik8=
Subject key identifier: 43:7D:A0:33:3C:D9:7C:58:EC:DC:D4:29:B4:55:43:A7:45:E8:CC:DD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3583
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q32gMzzZfFjs3NQptFVDp0XozN0.roa
Signing time: Mon 10 Feb 2025 13:53:25 +0000
ROA not before: Mon 10 Feb 2025 13:53:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.195.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13699 (0x3583)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=437DA0333CD97C58ECDCD429B45543A745E8CCDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:70:c9:eb:7e:0e:88:63:cb:4b:1a:82:64:13:
77:01:da:7e:da:c8:57:f3:8b:71:94:21:cf:99:76:
13:91:46:89:70:2e:0e:40:fe:46:4a:79:f3:c8:eb:
18:36:d7:d3:02:cf:65:86:44:7b:a8:3f:ad:21:06:
20:14:16:80:b3:3a:74:69:ea:b6:61:1c:89:10:88:
fa:f9:d3:f0:0a:e5:1a:3b:09:29:f4:3a:82:8a:1a:
81:6d:31:c1:aa:b9:99:ca:7b:d7:66:11:4a:12:dd:
2e:c9:da:de:59:2c:68:c4:b7:5f:ea:15:48:be:f9:
a5:f0:91:79:a0:70:2a:5a:b2:4c:b0:30:d1:15:17:
8a:ce:c6:a4:41:f1:73:63:03:70:f4:98:0d:3e:83:
a8:f7:c3:87:a6:4c:a0:09:26:8e:a8:bf:30:c9:da:
e1:ee:7e:98:84:69:c6:b0:e8:76:b5:05:12:a6:4e:
90:74:94:0d:6d:f3:59:29:eb:fa:b7:a0:f1:c8:1b:
1f:43:93:55:93:d1:69:93:50:6b:08:78:29:e5:60:
86:91:6b:3f:f8:95:20:f3:b1:6a:b4:0b:84:38:14:
69:48:6b:6a:b7:84:91:85:5f:35:1a:dd:d7:86:13:
a0:55:a7:47:39:f9:4e:67:f0:9a:30:64:e9:de:80:
f5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7D:A0:33:3C:D9:7C:58:EC:DC:D4:29:B4:55:43:A7:45:E8:CC:DD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q32gMzzZfFjs3NQptFVDp0XozN0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.160.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:a8:7e:50:4b:ba:86:f7:b6:a8:34:7c:d4:fc:4b:bc:63:b5:
c6:0f:ad:e3:d2:3e:a9:db:2a:99:bb:8e:28:be:7a:f1:39:82:
36:d5:c7:93:0e:98:70:15:67:07:fb:1d:e2:3b:35:06:77:8b:
c2:d0:a7:fb:10:60:46:6a:07:98:09:d2:71:af:a3:3e:f1:7d:
e9:f4:94:79:f4:e7:8d:ec:09:39:d8:b9:6a:ae:90:ae:42:f3:
e8:32:64:42:16:21:2b:a9:52:80:a3:f5:d3:fb:a3:db:76:3d:
13:7d:f7:39:73:4e:92:52:b1:78:6e:07:43:6e:6e:7a:33:49:
f4:85:30:61:39:6e:89:8d:a4:8a:22:b2:2b:93:3b:89:c8:04:
a5:e6:37:f3:a2:2a:da:d1:dd:9d:b5:7d:4c:e0:24:37:04:4a:
f5:3c:97:7a:89:83:5b:77:6c:35:a9:e5:50:61:97:11:fd:49:
96:3f:40:2d:7b:f5:ba:73:9e:24:2d:74:99:22:96:f8:1c:58:
d2:53:5f:72:f1:8f:03:b9:37:64:89:2b:be:26:2f:48:2c:37:
80:9f:71:32:5e:1d:d4:13:63:66:d5:55:3a:89:ec:f3:29:30:
4b:56:df:3f:bc:b1:33:85:21:a1:f6:30:c4:ad:16:7c:46:ec:
88:31:50:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:46 2025 by rpki-client