Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SrPkxGsabvJU2rblQZb5v4sjZn0.roa
File: SrPkxGsabvJU2rblQZb5v4sjZn0.roa (raw, json)
Hash identifier: mpZiUeqS3oSAw7HK5OdflPJs1Vv7F2h5uksSc9PCEdg=
Subject key identifier: 4A:B3:E4:C4:6B:1A:6E:F2:54:DA:B6:E5:41:96:F9:BF:8B:23:66:7D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33E2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SrPkxGsabvJU2rblQZb5v4sjZn0.roa
Signing time: Mon 10 Feb 2025 13:51:52 +0000
ROA not before: Mon 10 Feb 2025 13:51:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.195.224.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13282 (0x33e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4AB3E4C46B1A6EF254DAB6E54196F9BF8B23667D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2d:3b:55:39:6f:78:34:1c:ba:81:3c:5c:7e:
ea:d9:cf:6e:7e:5c:e1:f3:d4:a2:41:cf:dc:56:40:
30:48:ea:4c:92:e7:61:55:77:92:8d:0b:19:72:30:
8d:d2:1d:3d:5f:da:bd:f7:e1:14:06:6f:0f:77:d3:
91:04:a2:f1:88:2a:03:fe:03:53:40:e6:a7:3d:d9:
45:83:79:b4:3c:9f:79:79:05:05:8f:ba:0e:02:c3:
3f:27:ae:82:f4:0d:86:28:45:1a:0b:5c:01:a7:47:
b6:de:7d:f1:f9:bd:ff:cc:4f:08:52:bf:a8:0c:db:
71:f9:ab:ee:ac:d2:4e:e4:ae:64:5c:b2:b7:be:87:
b0:1e:f1:f0:b6:9f:0d:61:54:16:05:69:ed:aa:ec:
7c:a4:d4:61:4c:6b:61:f7:8a:83:04:52:3e:da:46:
83:55:09:7a:ef:dc:f6:e2:4e:d7:7c:77:f1:d6:dd:
5f:68:e6:96:dc:30:8a:c7:03:9d:d0:b8:d4:fa:96:
b9:aa:e2:7a:03:89:20:ad:34:d1:11:dd:17:10:6c:
f5:0c:43:3b:4d:43:55:a6:14:c6:34:d9:04:2b:40:
d4:2d:73:dd:2d:49:5b:2f:29:51:65:a1:aa:22:5c:
4e:70:a8:90:d3:c2:15:3c:5d:7c:ec:15:8b:c1:00:
1f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B3:E4:C4:6B:1A:6E:F2:54:DA:B6:E5:41:96:F9:BF:8B:23:66:7D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SrPkxGsabvJU2rblQZb5v4sjZn0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.224.0/22
Signature Algorithm: sha256WithRSAEncryption
55:05:4c:59:e0:97:37:68:4a:ca:19:be:f9:e4:06:99:98:0c:
3c:1c:5e:12:38:0d:df:e2:79:d6:3e:ce:50:ac:57:b2:f5:4e:
9a:19:a9:ff:b6:16:b4:2d:08:72:9b:01:f9:45:f6:c9:1b:7c:
32:f0:ea:c9:2a:55:fa:e9:cc:8f:a0:9e:30:ae:02:12:a1:d7:
71:3a:e9:77:40:67:78:7e:e1:4e:2d:4b:b4:50:c6:ff:d9:c5:
06:64:5f:49:a7:8d:d4:bb:cc:2b:7c:2f:11:5c:0e:3c:87:69:
08:0f:76:73:f5:27:5c:45:12:9f:fb:d8:a9:ff:37:51:89:2c:
17:80:51:a1:14:30:96:2c:08:04:30:d6:e7:f2:3d:60:e7:f5:
5d:a4:a1:4c:01:87:f4:5a:c7:28:9a:ea:33:fb:22:a9:2a:26:
6d:62:a4:99:b9:1c:4d:e3:a8:d7:81:f0:00:46:d0:0b:a4:37:
13:eb:2d:14:ce:e8:85:76:4b:bc:33:6c:09:3b:e1:c1:37:a4:
0c:26:31:70:c2:0b:51:a9:cb:fe:9b:d4:a8:1d:10:3a:5c:d6:
e2:a1:9a:1f:0e:f1:f8:6a:45:74:c1:21:b2:4c:b2:f3:b6:4d:
f1:3b:50:6a:14:ef:32:26:d0:e4:74:a1:e3:f8:90:fa:eb:06:
58:5a:78:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:43 2025 by rpki-client