Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VjbHS9MLtPyczKaw4OgR43ib3ms.roa
File: VjbHS9MLtPyczKaw4OgR43ib3ms.roa (raw, json)
Hash identifier: HUk31iNdTIxYjKBiaxDnR+WIP3ddEoyoZU0EC/e3be0=
Subject key identifier: 56:36:C7:4B:D3:0B:B4:FC:9C:CC:A6:B0:E0:E8:11:E3:78:9B:DE:6B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 35D2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VjbHS9MLtPyczKaw4OgR43ib3ms.roa
Signing time: Mon 10 Feb 2025 13:53:43 +0000
ROA not before: Mon 10 Feb 2025 13:53:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.192.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13778 (0x35d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5636C74BD30BB4FC9CCCA6B0E0E811E3789BDE6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:94:c0:7e:ff:b5:54:79:28:8a:83:d1:a9:
ad:be:d1:52:9a:19:38:fd:4a:c7:82:e1:5f:6d:03:
5d:6c:91:a1:18:bf:34:9e:2f:95:c4:ee:4d:5d:af:
cb:a7:ba:da:a5:12:fc:32:7e:6f:3f:39:2f:32:00:
15:72:cf:ce:0d:0d:f3:7b:72:11:d9:a8:b8:b2:bc:
19:2a:f8:80:3c:f7:4f:cc:9d:e0:72:78:7c:47:5f:
c9:2c:fd:c6:88:f3:56:b0:dc:b8:8e:56:14:12:f0:
6d:8a:aa:52:eb:d4:9e:ce:16:87:9f:b0:70:d5:90:
b8:d6:0c:4f:8e:9d:7a:77:2d:30:10:dd:af:c5:86:
ea:02:04:73:83:ac:96:d9:1c:d0:7a:23:fc:36:9b:
28:95:73:3e:11:be:76:5e:6f:b1:2a:ef:b7:84:32:
cb:88:61:4c:2a:f3:7e:44:65:69:92:f5:25:20:22:
55:1b:1f:d8:b0:85:68:b3:b6:4e:ce:03:c6:ed:a1:
3a:be:d2:65:2f:29:f9:05:af:0b:40:1d:f6:2d:e3:
ed:58:31:47:5a:88:51:e8:22:7a:1f:7f:36:fc:4a:
04:86:5f:47:b9:6b:8c:28:14:c6:8f:4b:18:4d:3d:
28:43:8b:da:38:69:3a:d2:c5:d5:80:b1:02:19:b2:
33:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:36:C7:4B:D3:0B:B4:FC:9C:CC:A6:B0:E0:E8:11:E3:78:9B:DE:6B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VjbHS9MLtPyczKaw4OgR43ib3ms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.172.0/22
Signature Algorithm: sha256WithRSAEncryption
68:d5:38:47:94:d2:9b:d4:64:d8:de:bc:ca:48:35:82:25:ca:
10:1d:e0:df:e9:c5:79:83:22:49:9f:36:dd:b4:9d:4f:a7:14:
7f:c2:53:16:c2:7c:59:1a:53:cb:4e:54:fc:32:84:95:1a:9e:
43:3b:32:d9:e9:d1:9d:19:9d:ab:c1:b4:49:ef:81:60:4a:70:
d2:ee:24:c8:81:20:3f:36:f0:cf:c3:ba:53:47:60:af:ce:32:
89:94:85:23:d8:1e:eb:1c:ef:6a:7c:10:74:a7:bb:ed:8f:c7:
05:06:8e:30:29:15:e1:16:93:76:28:60:d4:e9:d6:e1:4e:27:
47:c9:dc:e7:a2:b7:87:da:f5:de:2b:8b:37:78:e4:76:4e:1b:
c5:fc:f8:91:7e:14:bc:1f:92:8d:48:d9:cb:88:a0:cf:2c:09:
cf:5c:33:10:34:7d:fb:22:6c:8a:16:ad:58:57:c8:78:a0:12:
eb:d2:5e:e2:22:2d:ee:3b:2c:86:0b:df:ed:b5:f7:5b:89:58:
b2:e2:17:19:e7:c9:cd:5d:da:73:e2:30:b2:63:73:f6:8b:c9:
a5:f8:a5:a3:93:b2:01:50:fc:ad:c2:23:e4:3b:27:c3:44:24:
f2:9f:0d:8e:f4:94:a4:46:1a:a5:7e:36:d0:d2:cd:cd:ca:2c:
b4:f1:8e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 05:39:45 2025 by rpki-client