Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XeR0XhWMvlnE42vy-MM0LRF9mpI.roa
File: XeR0XhWMvlnE42vy-MM0LRF9mpI.roa (raw, json)
Hash identifier: S+m7toWPQMl3wwHyp5xOqAWgOrDvNuOUl94d2sdY6Qo=
Subject key identifier: 5D:E4:74:5E:15:8C:BE:59:C4:E3:6B:F2:F8:C3:34:2D:11:7D:9A:92
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 35CB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XeR0XhWMvlnE42vy-MM0LRF9mpI.roa
Signing time: Mon 10 Feb 2025 13:53:41 +0000
ROA not before: Mon 10 Feb 2025 13:53:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 180.177.60.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13771 (0x35cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5DE4745E158CBE59C4E36BF2F8C3342D117D9A92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ca:ca:82:6e:8e:15:1f:2c:b6:84:b4:e7:a1:
0b:8a:17:9e:c6:58:6c:e5:46:39:0e:06:a0:db:ee:
38:ef:de:8c:38:17:8e:51:41:ab:5d:77:89:53:06:
bf:b9:df:4d:7f:dd:a0:45:00:07:f2:d1:05:f0:f3:
71:4d:12:24:98:62:b2:c3:7c:73:3f:2f:a8:a1:80:
a1:c3:ea:c3:bf:c3:92:4d:15:a6:46:8a:45:19:bb:
91:38:dd:2c:49:2f:c4:a6:bf:07:55:58:88:84:45:
c1:73:e0:51:01:85:fa:50:12:31:35:f9:46:6d:46:
c0:af:42:a9:8f:bf:9c:0d:b5:22:20:49:f4:de:80:
e9:d3:a1:a5:9c:df:68:62:90:02:eb:ce:8d:e2:a3:
f5:39:67:76:0d:fd:5e:a4:43:79:18:65:b6:bb:a9:
9d:cc:30:b9:78:10:38:38:65:f2:68:60:73:d7:54:
7f:df:29:1e:29:22:7e:0c:b7:d4:01:9a:41:8d:72:
69:0f:8a:8c:b5:38:67:d9:a1:e5:a5:da:c7:b3:1a:
fa:5f:d3:da:f3:1e:c7:94:ed:32:c4:80:29:77:09:
f7:bb:45:14:9c:3f:7b:ed:7d:5e:ed:7c:20:7f:ca:
dc:f8:73:32:92:8b:1f:bb:09:4d:09:91:8a:ca:db:
4b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E4:74:5E:15:8C:BE:59:C4:E3:6B:F2:F8:C3:34:2D:11:7D:9A:92
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XeR0XhWMvlnE42vy-MM0LRF9mpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.60.0/22
Signature Algorithm: sha256WithRSAEncryption
76:3a:5a:40:ff:25:8c:2c:e2:48:f4:0d:e3:35:02:3e:b2:44:
5a:b3:8e:45:64:31:d4:c9:4f:e6:db:4b:ac:3c:5a:35:28:25:
a5:bc:82:05:b4:08:3f:56:b4:0f:27:c5:47:ce:66:bf:4c:cd:
0d:d8:38:0d:67:92:83:24:ca:bc:35:ce:dd:92:12:a1:28:2e:
3e:71:b1:a5:54:bc:25:64:be:35:7a:db:30:c3:2f:f5:55:05:
62:80:aa:fb:8f:a0:bc:00:a4:ec:8a:57:de:23:f8:87:e7:2e:
fc:61:03:8f:d3:20:c8:76:f8:88:6a:2c:22:85:5c:29:d9:d7:
74:e7:70:34:bc:7a:de:37:37:6d:05:c5:7f:8d:72:db:b4:a8:
10:d7:3d:d2:2e:d7:f6:a2:26:85:27:73:f0:11:28:eb:57:29:
3a:6a:0c:c3:76:83:3f:55:a1:c0:2c:bd:f4:37:f4:d4:d3:ed:
a2:ac:fa:0f:e6:7c:d6:02:6f:3f:87:82:e9:52:26:ea:f6:33:
85:69:fe:a8:4f:98:7f:eb:a4:d2:4d:68:78:91:fb:ca:97:76:
41:49:1e:d9:b2:81:58:64:df:44:f5:cd:56:c5:10:59:fa:32:
f7:52:41:9a:0c:bf:c0:61:89:3c:f3:7b:d3:08:20:f6:8a:65:
2f:a0:47:0d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNcswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUzNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVERTQ3NDVFMTU4Q0JF
NTlDNEUzNkJGMkY4QzMzNDJEMTE3RDlBOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPysqCbo4VHyy2hLTnoQuKF57GWGzlRjkOBqDb7jjv3ow4F45R
Qatdd4lTBr+5301/3aBFAAfy0QXw83FNEiSYYrLDfHM/L6ihgKHD6sO/w5JNFaZG
ikUZu5E43SxJL8SmvwdVWIiERcFz4FEBhfpQEjE1+UZtRsCvQqmPv5wNtSIgSfTe
gOnToaWc32hikALrzo3io/U5Z3YN/V6kQ3kYZba7qZ3MMLl4EDg4ZfJoYHPXVH/f
KR4pIn4Mt9QBmkGNcmkPioy1OGfZoeWl2sezGvpf09rzHseU7TLEgCl3Cfe7RRSc
P3vtfV7tfCB/ytz4czKSix+7CU0JkYrK20szAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUXeR0XhWMvlnE42vy+MM0LRF9mpIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1hlUjBYaFdNdmxuRTQydnkt
TU0wTFJGOW1wSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sTwwDQYJKoZIhvcNAQELBQADggEBAHY6WkD/JYws4kj0DeM1Aj6yRFqzjkVkMdTJ
T+bbS6w8WjUoJaW8ggW0CD9WtA8nxUfOZr9MzQ3YOA1nkoMkyrw1zt2SEqEoLj5x
saVUvCVkvjV62zDDL/VVBWKAqvuPoLwApOyKV94j+IfnLvxhA4/TIMh2+IhqLCKF
XCnZ13TncDS8et43N20FxX+Nctu0qBDXPdIu1/aiJoUnc/ARKOtXKTpqDMN2gz9V
ocAsvfQ39NTT7aKs+g/mfNYCbz+HgulSJur2M4Vp/qhPmH/rpNJNaHiR+8qXdkFJ
HtmygVhk30T1zVbFEFn6MvdSQZoMv8BhiTzze9MIIPaKZS+gRw0=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:04 2025 by rpki-client