Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VGFXTS9_4DyRI9tHNvwoLYOZWLc.roa
File: VGFXTS9_4DyRI9tHNvwoLYOZWLc.roa (raw, json)
Hash identifier: ir9vgSE5Q1j9QwDIpD4ken5Yv4PacjgssPrhbW3AY3s=
Subject key identifier: 54:61:57:4D:2F:7F:E0:3C:91:23:DB:47:36:FC:28:2D:83:99:58:B7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3620
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VGFXTS9_4DyRI9tHNvwoLYOZWLc.roa
Signing time: Mon 10 Feb 2025 13:54:00 +0000
ROA not before: Mon 10 Feb 2025 13:54:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.193.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13856 (0x3620)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5461574D2F7FE03C9123DB4736FC282D839958B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ff:a1:de:c9:ab:ee:5f:e7:7f:19:85:eb:92:
2b:e0:83:8d:f2:d2:49:90:92:f5:ac:dd:7f:8b:dc:
5e:2b:1c:27:4d:8a:d4:28:0a:9a:ac:52:d8:bf:e3:
1b:e0:f1:b6:43:a1:f0:61:dc:70:d6:c7:fb:a8:76:
8b:91:23:bd:22:d7:6e:e5:3e:28:b3:ed:01:8c:5b:
c1:bd:d9:db:78:06:7d:d4:40:53:ce:88:f0:f9:ef:
55:2a:a5:74:df:55:6c:05:68:37:40:20:51:84:26:
fd:db:75:74:0e:13:c2:43:ef:04:f8:a8:12:de:44:
d2:55:38:7d:99:ef:ef:08:05:f3:65:8b:8b:e5:9c:
98:3e:5d:b2:0f:bf:50:be:39:52:83:a3:21:6d:ae:
e1:0d:6f:bc:bf:7c:14:32:0b:2f:97:39:b1:37:8c:
e0:e4:23:97:98:28:02:f4:78:7d:0c:67:53:1e:52:
f0:1a:51:e1:13:d1:3e:60:10:33:22:ab:86:23:d9:
e9:47:2a:20:ef:0c:a3:25:79:4a:68:79:a7:ce:35:
5b:36:96:43:fc:e5:b3:f3:d8:4f:72:95:46:27:e7:
cc:95:2f:3e:8b:88:89:40:b0:1d:6b:2c:6b:fd:58:
e0:a3:30:f5:33:cf:ea:5e:c2:08:8f:a3:41:0c:cf:
b4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:61:57:4D:2F:7F:E0:3C:91:23:DB:47:36:FC:28:2D:83:99:58:B7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VGFXTS9_4DyRI9tHNvwoLYOZWLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:55:af:93:f6:d8:0c:a4:1f:1a:16:3f:87:e8:1b:72:ef:f1:
5e:7e:23:5d:34:e0:18:79:64:8f:98:db:36:57:3a:3f:be:84:
4e:20:e0:c3:a3:94:ab:92:81:cc:a9:78:55:dd:5f:06:20:95:
09:b4:09:c6:18:9d:ce:83:e9:31:dc:7f:76:33:9e:83:34:b7:
4f:87:da:ec:8e:a4:30:22:84:e0:d9:4d:04:5f:a5:ae:5c:80:
63:df:4f:54:5f:73:40:dc:32:f9:0a:33:f1:15:ba:3b:d3:f2:
65:ee:c9:96:0e:03:c6:50:f5:2d:da:d8:0b:1a:79:09:88:dc:
09:c5:8e:35:8f:54:84:fd:a0:04:1e:de:11:39:1d:28:5a:75:
47:51:0e:b2:7d:43:30:a6:89:58:72:ca:37:c3:f5:84:21:7d:
a2:95:72:29:3a:cc:c6:33:13:27:6b:9d:e8:d9:27:88:b9:16:
dc:f5:a2:e8:a8:75:75:20:c7:73:2e:40:0d:35:b8:a1:ce:a8:
ff:fb:70:1f:06:6d:d0:39:b0:bd:98:c0:4a:aa:42:dc:dd:84:
d9:81:7b:64:7c:b5:52:f7:fe:c0:8f:a9:a7:de:17:8b:fe:e2:
73:35:6f:a9:d0:ce:d8:19:0c:c3:c9:b4:a0:1b:47:1f:a6:4e:
21:17:f0:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:46 2025 by rpki-client