Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/caCbbzFT3P-YmKnX6saJC5Dr83w.roa
File: caCbbzFT3P-YmKnX6saJC5Dr83w.roa (raw, json)
Hash identifier: R4myWDVrrca7V8y8HoZ3rvrIA9MDEVHFwYALTDrEQTk=
Subject key identifier: 71:A0:9B:6F:31:53:DC:FF:98:98:A9:D7:EA:C6:89:0B:90:EB:F3:7C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 355D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/caCbbzFT3P-YmKnX6saJC5Dr83w.roa
Signing time: Mon 10 Feb 2025 13:53:16 +0000
ROA not before: Mon 10 Feb 2025 13:53:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 123.195.24.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13661 (0x355d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=71A09B6F3153DCFF9898A9D7EAC6890B90EBF37C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:00:2b:2b:6c:1b:33:9a:ed:31:2a:9b:e0:9f:
be:33:5d:fa:4c:01:08:97:30:42:96:82:23:ca:f3:
8e:52:c5:3d:f9:c0:ea:cb:d9:e4:d4:49:df:19:1b:
91:61:65:16:68:7c:2c:57:8a:39:fd:2b:53:30:d7:
23:5c:2a:ce:29:4d:f7:c5:60:32:4f:73:2f:3f:13:
4d:8d:58:d2:78:89:a2:41:03:8d:29:73:d6:6d:2d:
e4:e0:ec:d3:73:66:a0:21:bb:5f:7b:d6:1c:49:ab:
79:5c:be:9b:d6:b4:a4:eb:05:7c:47:32:f3:86:39:
a5:d9:f7:fc:84:d9:83:7a:25:63:a7:d1:94:51:d7:
0c:c1:e8:3a:f9:d2:da:b1:0c:8a:16:d7:78:e4:25:
64:80:dd:5f:79:5a:77:16:bf:06:27:96:e2:8b:7c:
92:cb:b6:5e:17:d9:d1:a7:6d:02:f4:7a:b0:0a:c7:
ef:a6:89:70:a3:d1:8c:63:9f:05:2a:6a:21:2f:7f:
dc:90:36:67:cd:98:83:06:31:a4:2c:da:88:d8:3d:
97:41:cf:5d:5d:7a:c3:6f:1b:23:b8:f2:91:78:37:
2a:e5:a7:91:1b:76:30:b4:a5:eb:e2:77:fe:54:0a:
82:85:1e:95:cd:c1:03:b8:d0:3a:89:94:a4:25:e1:
77:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A0:9B:6F:31:53:DC:FF:98:98:A9:D7:EA:C6:89:0B:90:EB:F3:7C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/caCbbzFT3P-YmKnX6saJC5Dr83w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.24.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:58:21:f1:f6:03:9b:37:6f:45:7b:11:b5:89:aa:b4:4c:0f:
af:4c:7d:bf:f2:7a:10:62:0a:e1:87:74:4d:2e:5b:e2:1f:b0:
6b:d0:59:cb:22:28:ac:25:22:c7:98:7d:18:87:8b:25:fd:b3:
6f:d8:7e:47:98:80:84:78:50:c1:fb:60:1a:06:75:9b:f4:2f:
57:26:09:60:0a:a2:5c:f9:43:f8:00:c7:73:80:ad:d9:8d:70:
11:0e:89:81:54:c9:2c:39:49:2a:63:0e:81:3c:fc:b7:83:8f:
37:fe:f0:c5:50:5f:d4:eb:8d:94:3f:d6:8c:8f:e6:f8:15:e3:
5b:e8:6e:e7:4f:ba:f3:06:76:f5:a7:2b:db:32:30:7a:22:4b:
4c:ca:e6:5c:fa:8d:03:15:4a:a9:28:ed:ee:79:3d:67:e0:be:
3d:e6:dc:c4:73:eb:dd:37:d2:c1:d6:b0:b2:e2:15:6b:0f:06:
8f:02:c2:47:57:54:e9:76:57:9b:a3:92:5a:07:94:31:15:c6:
1d:8d:a0:c0:9d:46:b8:35:a6:0e:ad:1d:b7:53:28:d4:1b:44:
08:ba:e3:bd:66:b8:4e:dd:99:5c:47:68:d0:b1:fc:ed:19:29:
1d:2b:06:16:fd:32:b4:43:8f:fe:a5:aa:0d:b6:8a:5c:50:81:
e9:30:55:84
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxQTA5QjZGMzE1M0RD
RkY5ODk4QTlEN0VBQzY4OTBCOTBFQkYzN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7ACsrbBszmu0xKpvgn74zXfpMAQiXMEKWgiPK845SxT35wOrL
2eTUSd8ZG5FhZRZofCxXijn9K1Mw1yNcKs4pTffFYDJPcy8/E02NWNJ4iaJBA40p
c9ZtLeTg7NNzZqAhu1971hxJq3lcvpvWtKTrBXxHMvOGOaXZ9/yE2YN6JWOn0ZRR
1wzB6Dr50tqxDIoW13jkJWSA3V95WncWvwYnluKLfJLLtl4X2dGnbQL0erAKx++m
iXCj0YxjnwUqaiEvf9yQNmfNmIMGMaQs2ojYPZdBz11desNvGyO48pF4Nyrlp5Eb
djC0pevid/5UCoKFHpXNwQO40DqJlKQl4XfpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUcaCbbzFT3P+YmKnX6saJC5Dr83wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2NhQ2JiekZUM1AtWW1Lblg2
c2FKQzVEcjgzdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wxgwDQYJKoZIhvcNAQELBQADggEBAD9YIfH2A5s3b0V7EbWJqrRMD69Mfb/yehBi
CuGHdE0uW+IfsGvQWcsiKKwlIseYfRiHiyX9s2/YfkeYgIR4UMH7YBoGdZv0L1cm
CWAKolz5Q/gAx3OArdmNcBEOiYFUySw5SSpjDoE8/LeDjzf+8MVQX9TrjZQ/1oyP
5vgV41vobudPuvMGdvWnK9syMHoiS0zK5lz6jQMVSqko7e55PWfgvj3m3MRz6903
0sHWsLLiFWsPBo8CwkdXVOl2V5ujkloHlDEVxh2NoMCdRrg1pg6tHbdTKNQbRAi6
471muE7dmVxHaNCx/O0ZKR0rBhb9MrRDj/6lqg22ilxQgekwVYQ=
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:26 2025 by rpki-client