Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RSXhUYcP96Ro1zl-UyTNBAoPgLs.roa
File: RSXhUYcP96Ro1zl-UyTNBAoPgLs.roa (raw, json)
Hash identifier: mp7SPj1yVjLyReLt5h2no61vasx9cv5200x0eYfi3BE=
Subject key identifier: 45:25:E1:51:87:0F:F7:A4:68:D7:39:7E:53:24:CD:04:0A:0F:80:BB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33EA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RSXhUYcP96Ro1zl-UyTNBAoPgLs.roa
Signing time: Mon 10 Feb 2025 13:51:53 +0000
ROA not before: Mon 10 Feb 2025 13:51:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.195.9.0/26 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13290 (0x33ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4525E151870FF7A468D7397E5324CD040A0F80BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ad:09:29:ef:8c:e0:f2:33:57:59:2c:32:6c:
f4:2b:a5:04:51:92:b5:df:46:39:c4:46:3a:c3:08:
78:25:72:e9:94:45:0a:e1:ba:3c:12:bd:7b:f5:9e:
03:97:63:92:b6:e8:68:50:c5:7e:de:b0:7b:76:8f:
2f:f8:5f:20:ba:27:2b:bb:71:f6:bb:77:b3:04:5b:
42:b1:fc:81:6c:af:0b:89:bc:ba:d0:0c:b4:b5:83:
53:8e:62:5a:a8:c9:75:a9:a3:e7:0c:7e:b0:af:a4:
bd:e2:aa:bc:8a:60:76:c2:5b:31:7e:df:b3:d6:48:
b9:49:c5:06:54:76:6c:71:85:a4:90:97:91:93:b5:
3b:3c:5a:1d:a4:b1:da:44:48:3e:38:34:97:09:68:
8a:f6:34:df:6f:a6:81:e2:26:0f:41:7a:a8:0c:6c:
49:33:88:6c:9e:2c:db:ac:2c:40:b7:34:8d:f5:73:
c4:19:ce:96:bf:04:af:55:85:ec:a2:d5:e0:1f:a1:
52:8f:ef:84:00:34:68:4f:64:89:d7:5b:c2:a6:50:
d7:fc:54:1d:0a:aa:ad:b1:4f:71:80:cf:1d:7e:72:
e7:dd:7c:c0:ed:b8:0b:3a:dd:6b:61:27:ed:6f:4e:
15:f4:04:b1:4a:21:2d:8d:08:8f:50:69:d1:bb:21:
57:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:25:E1:51:87:0F:F7:A4:68:D7:39:7E:53:24:CD:04:0A:0F:80:BB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RSXhUYcP96Ro1zl-UyTNBAoPgLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.9.0/26
Signature Algorithm: sha256WithRSAEncryption
b7:71:5d:a5:8b:bb:80:b5:41:60:07:90:6b:b9:64:46:1a:f2:
0d:fb:0e:21:7b:15:6f:5c:cf:da:9e:bd:81:9d:95:43:1e:25:
39:b0:77:7f:f5:ac:f8:47:e9:4c:1d:10:c3:7d:de:23:75:19:
ea:cd:29:91:6b:03:01:17:db:07:d6:cd:cf:6c:9d:55:58:96:
16:ec:a0:41:69:4e:99:3d:21:c4:9e:37:85:e6:c5:11:02:fe:
dd:41:78:dc:48:74:33:f1:cd:77:40:a7:22:54:aa:6d:05:dd:
af:29:a7:ed:11:2b:48:dc:6b:cd:45:1e:6f:8c:ca:26:b0:a0:
3f:d2:72:28:6d:bf:1c:46:7e:72:94:1b:29:3b:1f:7d:28:90:
8c:dd:63:00:13:74:87:a4:8e:8a:66:eb:d6:03:51:52:2c:a2:
1a:f0:f5:45:d3:46:56:db:9c:06:d2:3c:3e:ef:aa:ac:0b:45:
86:e7:52:53:00:9a:0a:c9:63:f3:e7:e3:b0:ba:08:9a:ac:41:
30:61:bc:4e:c9:fe:da:ba:ce:10:6d:50:01:b8:32:0a:b1:f5:
a1:60:60:d8:5b:80:43:0c:87:bc:04:47:f5:aa:7d:47:86:dd:
f1:0e:4d:ec:50:1e:f1:44:3b:21:3c:ab:75:62:95:82:ca:93:
29:4a:68:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:48 2025 by rpki-client