Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/e3XazMzH6Lru6MgvYOpQEUFsW4c.roa
File: e3XazMzH6Lru6MgvYOpQEUFsW4c.roa (raw, json)
Hash identifier: CvOzo8QOyk7yfhY0E2ph2nG6zWaOqU1CeRupLtPk7jk=
Subject key identifier: 7B:75:DA:CC:CC:C7:E8:BA:EE:E8:C8:2F:60:EA:50:11:41:6C:5B:87
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 35BA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/e3XazMzH6Lru6MgvYOpQEUFsW4c.roa
Signing time: Mon 10 Feb 2025 13:53:38 +0000
ROA not before: Mon 10 Feb 2025 13:53:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.195.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13754 (0x35ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7B75DACCCCC7E8BAEEE8C82F60EA5011416C5B87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cc:c6:31:e3:1a:11:af:dc:8b:95:7f:0a:8e:
41:c9:12:39:c8:c1:c6:29:c5:7b:2f:d8:9b:4f:31:
7b:77:21:1c:5a:7d:69:42:ee:c9:5e:2e:55:10:1b:
8f:b1:db:79:3c:2f:fc:43:9d:b9:36:b5:f6:25:26:
5e:09:fb:10:9f:fc:cc:65:8c:26:75:10:b0:6a:17:
23:86:51:69:48:ff:89:c8:4d:4a:e2:f3:53:ff:53:
92:d3:75:88:27:56:86:c7:8e:f8:a7:b5:7b:79:78:
3a:d7:ba:e4:d9:08:04:71:a5:d1:e1:48:40:41:3b:
cc:a3:47:d2:52:51:b1:82:44:ed:09:14:b9:93:37:
fc:34:eb:77:38:13:20:a7:6d:97:b5:20:ef:22:ba:
e2:9b:10:0d:fd:cb:6c:54:b6:d2:a3:f5:fe:84:c3:
e0:51:a6:d8:1a:1e:12:2e:55:7d:57:61:fe:f3:64:
cd:ce:7d:af:e3:d4:d0:f2:a0:a3:5b:e4:f8:42:fa:
0f:13:e1:2e:4c:4b:1d:fd:c3:b4:b9:a6:77:89:53:
34:c8:fe:42:7d:96:41:c6:be:db:66:33:60:3c:a2:
0e:72:6b:ca:9a:fc:5d:74:95:ff:20:c7:46:ab:ac:
13:77:f8:d7:c3:df:ec:c2:82:28:44:61:fe:dc:d8:
8b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:75:DA:CC:CC:C7:E8:BA:EE:E8:C8:2F:60:EA:50:11:41:6C:5B:87
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/e3XazMzH6Lru6MgvYOpQEUFsW4c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.164.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:46:bc:b2:e8:b6:7a:c8:15:b6:29:f5:89:bb:5a:d8:1e:3b:
22:fb:d2:fb:e5:54:0b:6f:9c:8d:00:43:56:5e:bb:5d:c5:89:
1c:35:91:06:13:ca:b7:aa:22:bb:a0:a4:fb:0c:ca:06:9a:7d:
d3:87:e7:72:f7:1f:38:9a:8a:a3:f0:0b:67:e6:5c:9c:8d:fe:
ba:7a:5b:14:69:f2:26:4e:85:a7:0f:06:0d:8a:6b:a4:94:dc:
00:6e:8f:c8:38:7c:a0:e9:36:4b:d1:92:bd:60:27:27:2d:34:
7d:84:7a:2a:35:5e:22:f0:3a:87:74:80:06:dd:65:fb:6f:c9:
a8:39:2a:31:a7:91:70:fb:52:57:45:f9:d1:b8:99:1b:7b:d8:
e3:3f:29:ce:d7:f7:14:75:77:e1:c0:2a:35:df:8c:7b:36:47:
6d:e1:81:82:cf:b5:6e:ff:8b:3e:62:bc:42:18:a6:b0:88:96:
fe:3e:e3:53:09:2f:e0:df:97:c8:15:3c:f1:4a:29:2d:4e:c6:
64:a0:50:53:49:af:f3:11:56:d1:8e:36:7d:f5:fe:7c:c3:f9:
cb:09:92:fd:c0:53:bc:00:29:c1:c0:68:42:d6:cc:6d:ab:81:
94:a2:13:55:a3:48:1e:e1:ee:e9:99:b1:a9:79:9e:d2:8d:84:
24:df:39:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:23 2025 by rpki-client