Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aKCOpm8df_hOvErasruLDJVrgds.roa
File: aKCOpm8df_hOvErasruLDJVrgds.roa (raw, json)
Hash identifier: 0+XvwTj+NVtlyjrXoC1b392hAIxh9t+kS/JvlFkWT+I=
Subject key identifier: 68:A0:8E:A6:6F:1D:7F:F8:4E:BC:4A:DA:B2:BB:8B:0C:95:6B:81:DB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 366E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aKCOpm8df_hOvErasruLDJVrgds.roa
Signing time: Mon 10 Feb 2025 13:54:19 +0000
ROA not before: Mon 10 Feb 2025 13:54:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.195.224.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13934 (0x366e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=68A08EA66F1D7FF84EBC4ADAB2BB8B0C956B81DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4b:9b:e6:eb:c8:aa:2c:5c:0c:06:80:bd:e9:
35:7f:94:fa:a8:16:a4:9c:59:49:41:1a:c6:0d:68:
e8:0f:d6:25:b7:b9:89:c6:06:8d:88:36:94:9d:f0:
ba:6d:5d:95:ea:75:3c:93:19:d0:29:46:0c:f5:7b:
38:e2:8b:68:88:1d:32:65:f4:e3:9d:e6:6c:a8:4c:
dc:22:a4:6b:ec:35:99:4f:62:4a:c4:ab:a5:3c:1e:
34:17:fb:21:ab:16:d0:36:85:62:8a:8f:44:6e:01:
2f:4a:bd:f6:91:cd:ec:50:e4:43:4b:28:20:fd:23:
cc:0f:ab:54:ce:ab:c4:0a:5c:83:57:f2:e7:40:eb:
58:8f:da:a7:ae:45:05:a3:7c:23:c8:0d:9f:a3:64:
0a:38:65:fb:c5:ec:a7:9a:91:a3:35:9e:29:cc:1f:
e3:27:89:19:20:31:3c:32:d5:14:56:8a:33:7d:20:
37:8c:1c:a3:64:4b:6e:b7:37:49:c8:4a:94:a9:90:
2c:36:86:e3:d9:97:59:8d:b5:8c:bf:fd:1e:94:bc:
a0:ec:f0:fa:a7:35:0a:26:b6:ac:ea:eb:76:ca:f6:
e8:cd:ca:14:d6:a7:ab:bd:cc:42:58:13:03:82:a6:
1f:92:19:eb:f5:6a:b1:75:f1:a6:69:20:0b:ea:a2:
a0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A0:8E:A6:6F:1D:7F:F8:4E:BC:4A:DA:B2:BB:8B:0C:95:6B:81:DB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aKCOpm8df_hOvErasruLDJVrgds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.224.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:3c:44:35:6c:aa:c6:43:1f:66:be:53:a5:99:42:f6:12:f3:
98:d7:1c:3b:ce:f3:18:10:e9:c8:a5:d1:fd:f0:70:01:f3:2e:
1f:96:f2:bd:e7:ec:49:d6:be:08:b2:8f:7f:bc:7b:9b:a0:a0:
71:18:89:4c:44:c7:73:6c:0b:d5:95:9a:df:8e:d6:d8:c0:47:
da:c2:d6:dc:41:e9:79:77:ad:6e:15:60:33:98:19:08:44:7e:
a6:63:ba:36:9f:a1:38:c6:21:e0:ec:56:bd:dd:ae:fb:31:65:
47:39:a9:f7:25:5a:bd:f2:92:02:33:ab:ec:bb:69:48:16:44:
89:1c:a0:49:49:94:d7:57:71:cf:59:87:63:d1:61:64:01:f9:
cd:86:73:82:ba:98:d2:a9:3c:61:6e:85:2f:33:89:a8:b5:95:
68:f4:e9:cf:5b:1a:fb:bb:27:2b:f3:19:62:d9:c1:38:bd:30:
f7:a9:4b:ba:12:b4:21:0d:79:96:e1:a5:69:ce:bb:dd:cb:8f:
80:c8:12:a1:ca:e6:f5:b8:66:f3:f2:ff:49:5a:48:35:71:bb:
a4:21:83:72:28:bb:25:58:af:54:ff:3b:bb:b2:06:db:53:7a:
98:8e:79:dd:68:89:9b:45:41:1b:93:83:59:fa:06:1d:4f:85:
bd:ce:da:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:22 2025 by rpki-client