Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lYwMxOGDfE67BfWw0KxK-ocvMJE.roa
File: lYwMxOGDfE67BfWw0KxK-ocvMJE.roa (raw, json)
Hash identifier: nVJXjjiziMY6PFzuVoM19EHWZes9MsHwH0cGpuEGW14=
Subject key identifier: 95:8C:0C:C4:E1:83:7C:4E:BB:05:F5:B0:D0:AC:4A:FA:87:2F:30:91
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3627
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lYwMxOGDfE67BfWw0KxK-ocvMJE.roa
Signing time: Mon 10 Feb 2025 13:54:02 +0000
ROA not before: Mon 10 Feb 2025 13:54:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 106.1.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13863 (0x3627)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=958C0CC4E1837C4EBB05F5B0D0AC4AFA872F3091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:68:62:8f:d7:86:b8:d9:96:3d:f1:7a:5f:
e0:f8:c9:35:2d:fc:24:8a:27:80:d0:11:a5:68:fe:
c4:40:36:05:86:6c:20:4d:24:28:a8:e7:1d:cd:ae:
2f:e2:4f:da:98:7e:1b:14:82:ad:72:27:0b:47:c2:
64:79:6d:46:f8:36:a1:6f:5b:fb:fc:ad:9f:5b:62:
94:b4:eb:89:16:bd:44:00:67:8e:9c:6d:dd:6d:34:
e2:29:c8:d4:49:a7:e3:e7:fc:b2:93:27:de:c7:71:
64:75:85:91:ab:3b:ae:81:39:3b:e9:07:df:d7:76:
73:4b:2d:0a:d2:34:f7:44:ae:b3:5d:85:b6:76:f2:
86:17:7f:cc:84:1d:85:54:c0:0d:a5:ed:4f:c2:b6:
a0:c8:46:aa:f0:0a:1a:c5:f7:38:9a:6f:3d:03:e6:
1d:ad:0d:c6:ce:f4:b3:98:72:39:a9:9f:9b:74:76:
a4:68:2d:36:b0:8d:41:0e:b1:e6:d7:7f:f3:c6:0a:
77:aa:07:ea:41:40:9a:92:f9:fb:be:77:6c:39:88:
96:e3:56:61:49:76:ff:26:5a:f2:f5:38:82:40:33:
9f:00:ff:21:07:15:67:a9:fd:26:1d:b0:f1:e8:61:
be:02:85:14:19:d5:26:0e:85:93:b4:8b:b2:b6:d0:
32:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:8C:0C:C4:E1:83:7C:4E:BB:05:F5:B0:D0:AC:4A:FA:87:2F:30:91
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lYwMxOGDfE67BfWw0KxK-ocvMJE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.135.0/24
Signature Algorithm: sha256WithRSAEncryption
42:79:c6:c7:ba:58:62:10:c4:91:f0:37:55:a2:fd:05:0a:94:
a9:9f:b3:02:8d:2c:d0:27:da:48:92:91:b3:a7:3f:3d:85:80:
9b:ef:88:a9:53:5b:77:42:4c:1d:6f:8f:fb:75:fc:18:f0:87:
e7:97:2a:cf:81:aa:c1:2c:bf:65:84:db:d2:fb:90:9d:ab:ad:
db:5a:56:ef:e7:4c:fd:69:b1:f1:35:f7:fe:1d:4d:a5:e7:fc:
e1:64:b8:a9:1c:5f:aa:de:88:58:4f:67:2c:0e:57:a9:10:01:
de:40:59:a3:9e:f4:a1:c7:9e:60:19:6d:b7:35:4c:50:06:27:
eb:96:be:af:94:5e:e0:f9:d8:8f:6d:e6:01:e0:66:1e:f4:02:
f9:a2:70:23:98:5e:cf:ff:6a:00:87:c7:48:2f:87:dd:ff:77:
4c:d1:75:d8:44:95:b5:d5:ce:19:33:9f:49:a4:0e:a0:7d:6d:
30:68:fa:33:6d:c2:9f:4a:32:36:7a:09:24:40:02:0b:61:81:
09:f9:1d:9a:ea:47:55:6f:d0:b3:c7:27:fe:b7:5c:9e:9d:39:
82:75:43:c8:65:0d:3c:ac:46:85:d8:28:b8:4e:c6:1b:b5:9e:
ff:07:2b:1a:10:e2:f7:c8:ad:d9:54:11:aa:c3:9b:49:fd:42:
93:d1:a6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:12 2025 by rpki-client