Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WLclQ6oH8DDK1w2Zeb-2pUPtiM4.roa
File: WLclQ6oH8DDK1w2Zeb-2pUPtiM4.roa (raw, json)
Hash identifier: fCL7eDW3pymIlItff0i8Iia32Ryl8yMGsbK0A+xGPB4=
Subject key identifier: 58:B7:25:43:AA:07:F0:30:CA:D7:0D:99:79:BF:B6:A5:43:ED:88:CE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 35F2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WLclQ6oH8DDK1w2Zeb-2pUPtiM4.roa
Signing time: Mon 10 Feb 2025 13:53:50 +0000
ROA not before: Mon 10 Feb 2025 13:53:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 180.176.220.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13810 (0x35f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=58B72543AA07F030CAD70D9979BFB6A543ED88CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:30:ae:eb:92:23:60:61:28:3b:0a:82:17:38:
bb:75:94:30:a5:2e:a9:e9:27:e7:4d:7b:18:fd:b0:
d2:bb:d0:12:39:c5:b7:d9:58:30:e0:77:bd:17:ba:
95:0d:d9:bc:7c:c9:68:34:88:a0:d2:dd:04:e8:87:
77:74:9b:fe:c1:18:53:aa:15:8a:fd:ad:30:50:03:
14:f7:5a:a8:b4:23:ec:2a:33:cc:15:23:2d:2a:0e:
28:0d:9d:8c:dd:cb:f5:95:59:ac:47:e6:91:59:7b:
26:a1:5f:51:be:b2:c7:9e:37:b6:6e:62:9c:87:6b:
12:1d:5d:f4:d0:fb:f3:67:35:71:02:fd:c3:c5:b8:
a6:d9:f1:4d:e1:f0:f2:a7:1e:72:f1:55:a3:3a:92:
47:d7:a7:13:1a:69:55:a8:57:2a:b1:b3:a8:86:fb:
33:2c:2b:8d:3e:26:e5:2c:72:20:29:dc:84:c6:c4:
9a:bb:68:26:c3:65:2a:d6:d3:f5:13:0e:16:82:cd:
d1:66:8f:df:8e:c2:07:ae:75:ee:4e:c3:ba:0c:3f:
2a:e6:f4:cb:49:db:e9:de:c7:4f:a3:f6:df:45:00:
76:d8:a1:a1:89:4f:4e:53:eb:0a:8e:1a:d1:f0:39:
e2:25:4b:80:bf:cf:06:29:77:3d:68:14:7c:be:a1:
b1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B7:25:43:AA:07:F0:30:CA:D7:0D:99:79:BF:B6:A5:43:ED:88:CE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WLclQ6oH8DDK1w2Zeb-2pUPtiM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.220.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:75:38:a6:77:56:d5:3d:9d:53:a8:17:80:d0:40:e5:bb:d0:
ad:8d:33:ff:b7:52:f6:c7:f5:73:8b:35:44:91:d0:05:fd:57:
47:99:c3:b5:50:5c:c8:f0:62:2e:f6:74:25:18:4c:ae:4c:23:
a0:cb:5f:84:9c:2b:e2:b3:2a:90:c4:46:dc:4a:b3:a1:bb:ee:
a4:e3:f9:9a:0f:0d:41:28:52:bb:ac:e9:e6:4f:aa:07:aa:71:
7a:43:5c:24:76:a6:5d:2a:fa:f9:32:03:1c:26:cb:33:a2:2f:
12:1d:d6:4a:f5:b5:f0:95:e2:17:80:84:97:75:1f:b9:f8:3e:
e8:d9:66:1a:71:73:11:ea:3b:46:40:4f:3c:96:7c:44:a5:67:
25:df:8e:93:28:3c:65:32:e5:3d:32:73:68:01:90:d2:99:df:
6b:e8:4d:e6:6a:59:07:13:db:35:48:3b:37:71:09:6e:34:df:
ea:1f:94:4d:eb:d5:51:a7:42:d6:2d:cd:18:4b:6e:a2:4c:a6:
cc:09:df:69:cb:37:a1:17:7e:e2:82:3a:3d:be:c7:4b:68:f1:
0f:9e:d7:52:c3:1f:64:fc:1f:ec:fc:07:92:81:88:0b:e1:d2:
f5:e2:c2:54:0e:c5:ae:e0:2b:84:42:46:4a:8b:fd:35:ee:68:
c2:ad:6a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:19 2025 by rpki-client