Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_rJ5dnRuD2Iwq-mqLz-Y82v_ap4.roa
File: _rJ5dnRuD2Iwq-mqLz-Y82v_ap4.roa (raw, json)
Hash identifier: FhQaKTE2IxZu7bnFa8ImyHJW6Gb3eQ44hpQ+9ijQ16Q=
Subject key identifier: FE:B2:79:76:74:6E:0F:62:30:AB:E9:AA:2F:3F:98:F3:6B:FF:6A:9E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 351C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_rJ5dnRuD2Iwq-mqLz-Y82v_ap4.roa
Signing time: Mon 10 Feb 2025 13:53:01 +0000
ROA not before: Mon 10 Feb 2025 13:53:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.195.32.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13596 (0x351c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FEB27976746E0F6230ABE9AA2F3F98F36BFF6A9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:db:6d:80:2a:1a:ae:f5:73:a7:62:f9:74:84:
2d:9e:63:28:11:40:07:fd:38:af:0c:f4:df:14:e6:
4d:79:df:0b:f6:bf:4d:01:8d:e9:1a:f6:67:18:65:
6a:75:23:70:72:83:a6:ba:d6:59:ca:bd:1b:92:3d:
75:6b:49:96:c2:40:44:eb:e3:ee:17:64:b2:0b:ee:
cc:e1:83:c9:a7:9c:4e:69:8d:be:84:29:b8:c0:ad:
b2:8c:7c:3d:ce:de:23:9f:cb:92:34:40:e1:1c:68:
11:59:9d:72:40:d8:27:0f:9e:54:78:e3:32:26:77:
8c:32:45:9c:29:9d:01:da:17:4e:a5:98:5e:e4:bf:
ff:ca:f1:fd:fc:d7:27:2e:66:c6:2a:f1:8e:6a:84:
9a:af:7c:2f:62:e0:de:1a:ca:b2:fb:8f:68:16:df:
17:d4:41:b6:75:30:aa:5b:43:53:34:b9:9b:91:b6:
e9:1d:bf:ce:6e:89:88:ae:ad:54:16:d2:9c:40:76:
a4:d8:79:03:c3:23:e0:8c:bf:60:56:bb:91:51:cf:
fb:ce:05:80:84:3b:6f:48:7e:0a:7b:6b:3c:ad:d4:
6c:7e:a1:f6:09:19:ad:aa:d1:ae:89:58:a2:00:63:
a4:b5:ad:dc:8b:cb:5a:9a:fd:9c:19:94:90:fe:9f:
dc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B2:79:76:74:6E:0F:62:30:AB:E9:AA:2F:3F:98:F3:6B:FF:6A:9E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_rJ5dnRuD2Iwq-mqLz-Y82v_ap4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.32.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:49:de:61:34:68:05:7d:6f:2d:13:d3:61:c8:42:bc:63:7b:
ef:59:d4:5f:91:1c:a3:4d:67:5c:8c:4c:7b:2f:d7:11:26:cc:
6a:44:bf:f4:82:7e:cb:64:5c:74:78:43:d2:46:df:f4:0f:6c:
04:7d:b4:a5:8e:72:fe:46:76:e7:34:75:96:79:fc:be:65:37:
23:7d:9f:de:84:f1:4d:e3:d5:d8:de:22:1a:d9:df:c5:f0:64:
ea:49:80:4f:57:48:ca:d1:b5:70:f5:23:43:9d:f5:0e:a9:e8:
16:d8:91:03:21:b4:2c:0d:57:4e:a1:d8:5d:19:ac:f4:98:8a:
85:81:b4:5f:f9:32:73:ef:da:fd:7b:e1:08:f9:36:14:6e:5d:
6c:5b:4b:69:6f:6d:0b:8b:ba:6c:cd:6b:d3:ae:4b:81:be:da:
ea:59:4e:f2:63:94:46:fd:4a:72:f1:d2:00:5d:d0:62:2e:1e:
ed:a2:e5:3e:da:88:0c:b0:1a:5f:01:2a:6e:9a:c8:21:dd:c7:
0a:28:b5:46:23:0c:cc:38:12:97:5b:e6:86:08:e5:33:65:a1:
0b:78:56:eb:75:97:e5:d9:81:c0:38:ad:de:0a:63:c8:3e:09:
a7:9a:be:d8:cf:20:cc:d4:22:88:96:70:6a:8e:fd:55:d2:b1:
db:b1:08:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:25 2025 by rpki-client