Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lQynXLE4D0M-ZTP1MUxYLtcTgQY.roa
File: lQynXLE4D0M-ZTP1MUxYLtcTgQY.roa (raw, json)
Hash identifier: 1rjON5KAPdhuuqVzpGxfphfbymuU5wyqGpjZQeX7R+w=
Subject key identifier: 95:0C:A7:5C:B1:38:0F:43:3E:65:33:F5:31:4C:58:2E:D7:13:81:06
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 34A5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lQynXLE4D0M-ZTP1MUxYLtcTgQY.roa
Signing time: Mon 10 Feb 2025 13:52:35 +0000
ROA not before: Mon 10 Feb 2025 13:52:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.193.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13477 (0x34a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=950CA75CB1380F433E6533F5314C582ED7138106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b4:2a:15:1a:71:b6:77:fb:e3:db:e0:7c:7d:
00:08:cd:e8:86:98:6b:05:4c:9e:19:33:4b:29:3e:
ab:96:a0:db:55:2c:d8:1c:b0:ea:8e:4e:f9:bf:5b:
7d:a1:6a:93:1c:3d:74:75:4f:a2:08:3e:c7:9e:62:
a8:9e:cd:92:68:9c:ee:1a:75:6a:6f:ef:a9:5d:b1:
6c:63:4a:f9:48:fd:68:89:df:98:3d:65:ae:31:12:
da:56:b7:56:98:2b:83:9a:ff:3b:11:a5:03:11:e2:
46:f0:d4:b6:2a:14:6b:b7:8e:45:5d:b0:28:f4:37:
f2:bd:56:1f:74:7f:dd:c0:7e:c9:03:8d:32:79:9b:
ac:64:5c:c7:0a:82:71:0c:17:e9:24:2f:d2:03:72:
54:b3:6d:b0:21:eb:98:7e:c6:ef:44:20:19:0d:67:
78:6a:b3:13:31:73:de:64:b3:11:c4:44:11:b9:6f:
97:99:c5:04:e4:55:0c:c4:39:36:f9:a7:14:3b:11:
7e:a2:49:71:40:2e:93:4b:0b:7f:b5:23:ee:06:8a:
33:cf:24:2d:a2:39:16:13:d7:8e:22:5b:5e:f8:4e:
fa:5d:c8:15:c6:86:b2:d4:4e:50:c2:1f:f8:d4:53:
1f:d0:ac:85:03:60:6a:27:43:94:dc:24:85:a5:9b:
bf:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:0C:A7:5C:B1:38:0F:43:3E:65:33:F5:31:4C:58:2E:D7:13:81:06
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lQynXLE4D0M-ZTP1MUxYLtcTgQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.108.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:92:4c:73:c2:cd:d6:0d:50:a3:85:8d:6e:75:c0:54:c6:f7:
e9:88:ea:68:2d:ad:36:ac:dd:3b:07:d7:20:d6:7f:4e:77:10:
f2:e4:dc:58:35:ef:f9:26:d3:9e:4d:4f:70:58:8d:cd:1a:ea:
90:79:8d:68:f4:08:6f:bd:bc:0a:ca:eb:40:6a:a7:c4:77:1f:
32:c2:60:f5:fa:6c:d5:25:09:cd:8f:06:fe:ed:53:2f:09:46:
ff:29:da:10:c9:1c:f0:1c:ce:43:ba:f6:70:f7:87:09:85:d8:
e9:01:50:ad:1b:7b:89:79:b9:ac:74:49:75:8a:11:46:85:d3:
8f:fb:6f:9c:20:c5:fd:9c:94:ff:e9:84:28:db:0a:e3:2f:c7:
4c:f6:98:13:21:3d:ab:83:0d:1e:af:a1:a1:bf:3d:3e:32:d7:
a6:5d:e5:a2:34:73:5b:e0:18:e9:49:61:6f:5d:2a:55:9a:fc:
07:a6:91:e1:0d:34:f3:c0:1d:e8:19:18:d9:b0:14:16:5f:32:
4c:f7:f1:bc:5d:db:33:6c:05:1c:4c:41:38:7f:35:4c:5d:1c:
be:f7:99:ae:05:07:e7:c3:17:e6:d3:fb:c4:ef:8d:fa:87:df:
01:b0:3b:b8:19:40:87:6a:6a:aa:ce:90:3c:5e:b9:af:07:fa:
b5:81:cc:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:44 2025 by rpki-client