Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dSi4XNdHfy6q0s_XWvkBzLXBrB8.roa
File: dSi4XNdHfy6q0s_XWvkBzLXBrB8.roa (raw, json)
Hash identifier: Prr1HbZFBKLW9G1zvJyBiJEU4y8idp+NkpPFR0P9JvI=
Subject key identifier: 75:28:B8:5C:D7:47:7F:2E:AA:D2:CF:D7:5A:F9:01:CC:B5:C1:AC:1F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33E1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dSi4XNdHfy6q0s_XWvkBzLXBrB8.roa
Signing time: Mon 10 Feb 2025 13:51:52 +0000
ROA not before: Mon 10 Feb 2025 13:51:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.193.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13281 (0x33e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7528B85CD7477F2EAAD2CFD75AF901CCB5C1AC1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:5a:30:80:e4:8a:de:c2:d9:15:88:a6:5f:
ad:8e:c5:2a:9f:be:a5:22:6c:bb:a0:c8:e7:52:86:
76:b3:d9:0c:a1:ad:11:07:14:46:e3:8e:fc:f7:48:
78:cd:14:0d:8b:42:f9:ca:f3:3e:86:24:a0:17:e5:
12:96:73:76:4c:a8:ec:5d:85:3d:d7:d2:3c:07:43:
de:2c:ff:e2:b6:06:3e:83:bc:91:01:16:f1:d4:db:
73:65:8c:ae:df:8f:48:20:1e:a0:a8:fa:0e:31:19:
26:c6:51:2a:b1:65:1c:a4:fa:28:bb:1c:f8:e0:ec:
1e:4d:7d:32:48:ad:61:80:59:34:2d:ba:cd:b9:b8:
ed:77:9d:82:47:13:7a:ce:36:98:fe:81:45:d0:b2:
e8:45:47:ba:29:69:cb:ed:09:02:d1:a0:cf:b7:99:
ca:f4:3a:bd:a9:e8:23:11:c9:2c:63:d2:57:51:b9:
ef:d8:63:9e:41:3a:15:38:34:13:97:71:52:51:bc:
77:2c:3a:f6:4b:43:8d:1e:fb:9b:cf:d9:ae:e5:d9:
57:bf:ca:71:ed:b3:56:8a:32:79:2d:ae:77:64:12:
3d:3f:12:6c:61:b7:35:27:0a:0e:18:39:8c:ac:2e:
63:1d:5b:b6:37:74:07:f1:da:a8:b4:94:f6:a7:4e:
38:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:28:B8:5C:D7:47:7F:2E:AA:D2:CF:D7:5A:F9:01:CC:B5:C1:AC:1F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dSi4XNdHfy6q0s_XWvkBzLXBrB8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.96.0/22
Signature Algorithm: sha256WithRSAEncryption
23:f1:64:c6:04:e6:bd:a0:7f:ee:8f:7a:ca:1b:17:00:3b:40:
59:29:80:77:09:17:14:62:f3:e2:9b:d0:d6:3b:24:85:28:90:
d2:05:f8:60:b3:61:0f:8d:75:b9:ff:e7:2e:4b:24:dc:df:6f:
c6:cb:bc:e3:e6:c2:36:a6:8e:e3:dd:f3:23:96:a9:9f:1d:b7:
55:0e:cb:67:ac:ef:27:04:54:9e:38:28:17:f4:d1:91:7c:92:
e2:a6:5b:10:18:6a:31:dc:aa:01:e0:27:5a:cf:bc:f7:22:f2:
bc:b9:54:fc:80:c1:6d:dc:26:e2:58:b8:f6:8d:bf:21:88:84:
79:40:44:da:e7:83:e0:6b:ad:01:43:da:e4:72:2f:ad:18:72:
f5:2f:b7:0e:34:97:e3:19:3f:de:3f:25:27:4c:f6:f2:bc:56:
d1:52:18:8b:ac:28:9e:19:ba:7c:86:89:1e:ed:86:4f:6d:65:
04:31:c6:b0:84:1c:53:88:18:92:db:e9:94:c8:f9:d9:c9:72:
a9:91:1f:a4:cd:76:fc:00:71:54:fe:0a:2b:be:a5:30:65:cf:
e8:23:08:b1:cf:19:3b:3d:f9:49:9b:fd:b4:aa:50:df:88:7e:
78:84:ed:2a:d4:7b:76:77:75:06:36:f2:fe:ac:3e:89:ac:e7:
b4:95:c2:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:15 2025 by rpki-client