Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ugm-_kl-AFRNAgccx70VWOVkKrY.roa
File: Ugm-_kl-AFRNAgccx70VWOVkKrY.roa (raw, json)
Hash identifier: 7FU4C9YhDNZCs34vCr/CdbPmY6XwJFgK51m3IkGTtaM=
Subject key identifier: 52:09:BE:FE:49:7E:00:54:4D:02:07:1C:C7:BD:15:58:E5:64:2A:B6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 34D5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ugm-_kl-AFRNAgccx70VWOVkKrY.roa
Signing time: Mon 10 Feb 2025 13:52:43 +0000
ROA not before: Mon 10 Feb 2025 13:52:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13525 (0x34d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5209BEFE497E00544D02071CC7BD1558E5642AB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a5:82:93:87:16:bb:dd:5d:94:88:56:fe:1b:
14:e1:00:ae:c8:dc:9c:72:59:9d:4c:87:27:d4:52:
bb:ed:35:dd:94:6a:d6:4d:24:50:92:d5:8f:6e:45:
45:41:d6:de:01:2e:11:17:92:ff:47:cd:53:62:88:
2c:d3:be:9b:a2:3a:97:68:4d:3b:c5:4a:4a:03:f6:
c1:36:42:d1:9e:6e:30:c3:34:f2:a8:7f:29:6d:8c:
40:1e:93:84:a5:a1:4f:1a:81:db:21:01:e0:41:82:
30:3e:11:d5:83:85:66:d3:42:8f:a4:69:c7:cb:df:
ce:c2:f7:24:a8:21:f7:d3:e6:d6:c3:3b:87:7f:f4:
c5:1d:55:9d:b9:ae:f1:9b:43:32:55:58:82:83:53:
f8:11:cd:a5:1d:ab:5e:84:c6:98:38:62:d1:85:56:
ea:17:31:45:5f:35:a3:7c:d0:d2:39:d9:87:0a:7d:
e1:7d:ab:3c:39:b3:5c:61:6b:57:0f:7b:41:f5:ee:
77:f4:07:35:73:a3:ba:ad:fb:25:69:03:43:73:14:
ee:25:53:a9:3b:51:99:b7:03:55:c9:b5:c9:b5:dc:
4b:b1:9b:3e:8e:c1:58:05:3d:2c:09:42:c4:e4:7c:
d3:d5:b3:b9:28:62:91:e9:ba:0c:68:08:38:5b:34:
14:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:09:BE:FE:49:7E:00:54:4D:02:07:1C:C7:BD:15:58:E5:64:2A:B6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ugm-_kl-AFRNAgccx70VWOVkKrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.4.0/22
Signature Algorithm: sha256WithRSAEncryption
93:d4:9b:63:76:aa:82:5c:a9:87:a8:c3:36:19:4c:cf:9b:6c:
fb:63:6b:8a:26:7e:ff:46:de:94:5e:66:16:fe:f1:75:6b:b0:
c4:d8:26:8c:ea:1c:48:df:93:b7:b3:a2:10:ed:ae:ab:db:cc:
55:bf:8d:17:d4:fe:e5:fb:8c:af:f5:e8:ae:85:29:8e:a2:7b:
66:d2:20:15:02:19:86:d7:9a:17:03:3a:df:45:32:94:10:fc:
ac:dc:a9:80:a4:fd:0f:a3:35:e2:d8:34:a8:b5:fe:1b:e0:70:
fa:86:67:1f:d4:5f:2d:bf:6e:1b:d5:78:50:1c:4b:52:95:9c:
3b:39:b7:4d:e1:65:cc:83:12:a4:fe:56:94:85:68:0c:32:38:
ad:42:f2:7b:cc:86:40:83:04:12:d6:ed:63:bc:34:37:4f:c5:
d1:bc:8a:eb:5a:87:cf:30:2e:f4:ea:f8:75:92:7a:27:97:53:
43:fc:f2:ed:3b:56:20:22:e8:16:ac:fb:f0:f7:04:d3:96:40:
cb:0d:5c:f5:3a:13:41:04:0d:13:11:7b:38:25:4d:ef:e6:5a:
3c:90:82:46:52:69:a3:22:fa:19:2e:35:f0:2e:a7:d0:ee:6e:
cf:a5:72:20:0d:b2:98:04:db:64:5d:36:c9:de:6a:00:4e:7f:
30:c3:13:65
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUyNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyMDlCRUZFNDk3RTAw
NTQ0RDAyMDcxQ0M3QkQxNTU4RTU2NDJBQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0pYKThxa73V2UiFb+GxThAK7I3JxyWZ1MhyfUUrvtNd2UatZN
JFCS1Y9uRUVB1t4BLhEXkv9HzVNiiCzTvpuiOpdoTTvFSkoD9sE2QtGebjDDNPKo
fyltjEAek4SloU8agdshAeBBgjA+EdWDhWbTQo+kacfL387C9ySoIffT5tbDO4d/
9MUdVZ25rvGbQzJVWIKDU/gRzaUdq16Expg4YtGFVuoXMUVfNaN80NI52YcKfeF9
qzw5s1xha1cPe0H17nf0BzVzo7qt+yVpA0NzFO4lU6k7UZm3A1XJtcm13Euxmz6O
wVgFPSwJQsTkfNPVs7koYpHpugxoCDhbNBR9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUUgm+/kl+AFRNAgccx70VWOVkKrYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1VnbS1fa2wtQUZSTkFnY2N4
NzBWV09Wa0tyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6AQwDQYJKoZIhvcNAQELBQADggEBAJPUm2N2qoJcqYeowzYZTM+bbPtja4omfv9G
3pReZhb+8XVrsMTYJozqHEjfk7ezohDtrqvbzFW/jRfU/uX7jK/16K6FKY6ie2bS
IBUCGYbXmhcDOt9FMpQQ/KzcqYCk/Q+jNeLYNKi1/hvgcPqGZx/UXy2/bhvVeFAc
S1KVnDs5t03hZcyDEqT+VpSFaAwyOK1C8nvMhkCDBBLW7WO8NDdPxdG8iutah88w
LvTq+HWSeieXU0P88u07ViAi6Bas+/D3BNOWQMsNXPU6E0EEDRMRezglTe/mWjyQ
gkZSaaMi+hkuNfAup9Dubs+lciANspgE22RdNsneagBOfzDDE2U=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:57 2025 by rpki-client