Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gWfyt4MThjClD6Lzgnd7pUiIt70.roa
File: gWfyt4MThjClD6Lzgnd7pUiIt70.roa (raw, json)
Hash identifier: dypGr32BL5wgGmfCUdGsPW9C0is5bevfJObO3AZOIGc=
Subject key identifier: 81:67:F2:B7:83:13:86:30:A5:0F:A2:F3:82:77:7B:A5:48:88:B7:BD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 35B9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gWfyt4MThjClD6Lzgnd7pUiIt70.roa
Signing time: Mon 10 Feb 2025 13:53:38 +0000
ROA not before: Mon 10 Feb 2025 13:53:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.193.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13753 (0x35b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8167F2B783138630A50FA2F382777BA54888B7BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ed:88:4f:f2:3b:4d:02:43:c3:5f:a4:94:f1:
d9:81:37:fd:cf:86:36:78:92:dc:d2:de:d4:00:39:
dd:b4:9b:db:73:5a:56:a9:94:2c:2a:c5:49:2d:d2:
73:06:03:ac:f3:b8:c0:35:aa:cf:29:73:34:b4:17:
84:4d:13:10:bc:3a:5a:86:5c:3e:3a:5a:b6:1d:c9:
1f:c9:5e:ea:d6:ef:91:ca:db:ac:19:a1:27:a8:68:
58:37:48:e6:12:03:fa:c6:94:5f:1b:b3:28:dd:98:
72:ff:e6:ec:0d:b6:b4:0f:9c:d9:b0:fb:5b:9e:9a:
52:2f:f4:f6:d1:08:eb:3c:af:22:ec:54:b1:06:03:
b0:38:93:32:5c:d7:64:a0:21:eb:2c:54:1e:e3:23:
5c:94:bd:56:43:6e:ce:0f:52:cb:ca:db:a0:f5:d9:
1f:b8:e7:76:7b:92:45:7d:21:fa:66:93:14:97:32:
d0:39:3d:8c:b2:43:53:37:91:88:66:f2:03:b2:d8:
49:64:9e:63:fe:28:a8:59:21:c7:7b:89:f3:11:45:
86:3e:80:0a:1f:13:d6:58:37:89:f8:bc:6c:2f:a6:
68:68:c8:18:00:c4:b5:74:c8:65:d0:b5:b1:65:5d:
e7:80:73:42:48:8e:a0:6b:da:b3:bd:ba:ae:a1:7c:
34:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:67:F2:B7:83:13:86:30:A5:0F:A2:F3:82:77:7B:A5:48:88:B7:BD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gWfyt4MThjClD6Lzgnd7pUiIt70.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.72.0/21
Signature Algorithm: sha256WithRSAEncryption
60:5d:a9:09:44:72:97:48:af:9a:a1:ce:b9:2a:cc:38:31:39:
af:3e:80:f3:82:ec:10:78:10:cc:17:c4:94:73:27:cb:58:43:
0a:45:6e:86:de:16:0a:3a:8c:a2:c4:d7:21:7e:f5:13:3a:0e:
93:40:f0:ac:40:8e:34:7f:f4:d7:bd:4f:58:47:e1:8a:1c:30:
fc:fc:48:f1:69:88:db:d6:be:60:a3:82:1d:36:e0:95:54:37:
8a:3c:13:53:55:c1:1e:59:90:fd:1c:a3:9b:b9:46:bc:2b:1f:
d9:77:c7:ac:2b:fc:5b:53:65:16:00:0c:83:3e:bf:20:35:aa:
a5:9e:71:52:c1:08:de:8d:a4:a5:92:3e:76:58:25:69:9d:2b:
5c:c5:e7:74:27:b4:c8:57:df:51:68:9b:47:eb:57:90:79:18:
5f:ca:1c:46:86:9d:c4:4f:2d:6d:10:cf:cd:14:c8:85:c8:73:
ac:ba:89:dd:60:6a:ee:cc:0e:8d:03:44:5a:59:04:e5:58:30:
8b:bc:99:23:1b:88:f6:53:37:50:60:5e:01:c3:f5:0f:6f:f3:
56:a5:24:8c:83:26:31:96:fb:c9:dc:4c:ce:37:42:b2:11:b7:
22:15:42:21:32:68:84:84:9c:69:00:68:25:c9:38:bd:d2:0e:
e3:2b:71:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:15 2025 by rpki-client