Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/draw-Gas_VX4YgsDfjoibEF4unQ.roa
File: draw-Gas_VX4YgsDfjoibEF4unQ.roa (raw, json)
Hash identifier: EOzN86w0VTi/PsuC/lwZfcetjzqSKtfjPei7QIwqZT8=
Subject key identifier: 76:B6:B0:F8:66:AC:FD:55:F8:62:0B:03:7E:3A:22:6C:41:78:BA:74
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33A6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/draw-Gas_VX4YgsDfjoibEF4unQ.roa
Signing time: Mon 10 Feb 2025 13:51:37 +0000
ROA not before: Mon 10 Feb 2025 13:51:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 180.177.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13222 (0x33a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=76B6B0F866ACFD55F8620B037E3A226C4178BA74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1e:da:38:30:38:f5:3a:3b:b4:b8:57:be:e6:
c9:7f:bf:fd:e4:92:93:03:4a:15:6d:3b:6e:53:7c:
33:8f:95:ec:90:70:a2:2d:0d:82:ff:85:fc:d5:c7:
e6:a8:97:8e:97:9c:39:f9:d4:99:4c:0d:dd:c6:57:
9b:c9:9f:98:1d:cd:95:f0:b9:45:4d:73:ba:a1:83:
b9:be:42:72:fd:29:26:e9:63:a0:a5:47:b3:fb:ec:
0e:99:ae:30:bf:36:5d:72:84:99:ac:e3:f9:ae:54:
a5:85:7e:1b:26:d3:db:8a:99:74:ba:12:50:41:d7:
37:37:e9:42:c3:26:7a:c8:60:e5:3c:dc:d7:71:06:
1e:c6:ec:6c:4e:77:f8:4a:30:ec:2c:76:c7:41:1a:
e8:2b:47:57:03:93:50:df:21:39:4f:55:2b:92:13:
68:50:1f:57:02:27:43:91:2e:85:d4:cb:d0:30:06:
c6:6e:18:aa:53:83:53:e6:63:6f:1a:cd:e0:19:19:
db:c2:df:e6:91:65:53:d2:b6:ab:ed:f9:98:55:79:
e4:1a:75:40:ac:97:ca:29:28:86:53:ac:45:3c:3f:
5f:d8:52:44:89:af:c6:3a:9f:48:98:9c:a5:39:48:
c1:d2:6e:6a:21:6a:a9:03:40:7b:12:c8:79:59:30:
5f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B6:B0:F8:66:AC:FD:55:F8:62:0B:03:7E:3A:22:6C:41:78:BA:74
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/draw-Gas_VX4YgsDfjoibEF4unQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.28.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:50:a2:0a:57:c2:1f:83:8e:f5:79:cf:bd:06:f0:83:ec:19:
62:06:87:1e:95:d5:78:d0:e2:c4:97:95:20:e4:f7:a1:d1:21:
e9:d8:96:88:88:f2:c1:07:79:65:9a:2e:a7:6c:0b:08:74:ff:
38:c2:8d:06:32:60:63:35:8b:05:ea:8c:ce:4c:7b:1f:4c:f5:
a5:27:19:c0:92:d3:ee:53:95:9e:3f:ad:88:f1:8a:5e:98:95:
d3:eb:b5:be:20:92:a8:97:1f:cc:57:c7:e9:96:77:52:48:16:
af:85:58:78:87:71:6f:a0:ea:39:3e:d9:4e:a5:8c:7b:60:15:
6c:15:03:ec:7a:f1:1c:43:48:48:b8:2a:d5:92:e0:eb:da:56:
18:94:4b:fc:6b:26:6a:c0:00:f6:77:71:3f:c2:7b:4a:c1:0f:
7c:49:79:2c:9c:55:16:04:6c:70:4a:ba:cf:42:c1:fd:f8:e5:
f9:0c:8d:4b:11:d9:85:11:0e:f0:9f:fe:67:56:a0:b2:6e:9f:
21:e3:f5:02:d2:09:a8:26:b8:2a:f3:61:89:42:1c:60:e4:3b:
e1:ba:6c:fe:88:44:c5:dc:98:cb:d0:23:dc:d1:f9:5b:21:6e:
d9:10:94:37:e6:7a:20:9a:22:60:c3:34:d8:0a:46:44:74:cd:
06:cb:5a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:00 2025 by rpki-client