Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lf0XH9sQDwodHvVE1-kevgJW41M.roa
File: lf0XH9sQDwodHvVE1-kevgJW41M.roa (raw, json)
Hash identifier: +O4LkfXkfIT88dRosqlnDYchBr9c1GUQwfhl2uQGrgY=
Subject key identifier: 95:FD:17:1F:DB:10:0F:0A:1D:1E:F5:44:D7:E9:1E:BE:02:56:E3:53
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3644
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lf0XH9sQDwodHvVE1-kevgJW41M.roa
Signing time: Mon 10 Feb 2025 13:54:09 +0000
ROA not before: Mon 10 Feb 2025 13:54:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 180.177.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13892 (0x3644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=95FD171FDB100F0A1D1EF544D7E91EBE0256E353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:92:3e:11:ad:9b:c0:ec:55:5e:61:87:49:12:
8e:52:34:e8:89:5d:f6:ab:b2:f9:0b:d5:76:85:d6:
eb:23:d5:8d:e8:7b:e0:d7:6e:b5:11:c3:84:43:14:
52:67:98:47:ab:b2:e0:52:0b:8a:c6:d3:86:78:94:
21:c5:1b:35:55:73:c5:5f:26:e8:5b:d0:b7:af:c8:
bf:c3:ec:0b:b2:38:42:65:16:c6:9a:c0:a2:06:1f:
08:ed:60:73:d8:1b:0e:2c:ea:79:56:ec:d6:a7:b0:
70:df:30:bc:7c:77:5c:a7:b3:20:ab:9c:57:23:ae:
c4:48:b7:b5:8e:af:10:ff:35:79:7b:89:0e:7f:a8:
bc:f5:64:76:80:5f:f6:8d:b7:62:ed:bb:fa:fd:0c:
e2:2a:41:b5:2d:5e:bc:98:0d:5c:fa:f9:07:00:6d:
70:ab:50:bc:76:e3:ef:be:16:b0:32:42:a2:ea:e7:
c2:ca:64:15:fe:b8:5c:59:56:c5:fe:16:3f:c1:13:
39:fe:f5:04:dd:33:c0:ee:44:e0:11:7d:83:ef:fc:
e0:74:10:3c:96:51:8e:f7:2b:62:b2:ec:14:11:be:
32:fa:a1:44:2e:95:33:f5:3e:79:cb:2c:f2:fe:02:
e6:04:d6:41:02:f9:d9:e2:f8:14:6f:6f:c5:68:96:
95:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FD:17:1F:DB:10:0F:0A:1D:1E:F5:44:D7:E9:1E:BE:02:56:E3:53
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lf0XH9sQDwodHvVE1-kevgJW41M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.32.0/22
Signature Algorithm: sha256WithRSAEncryption
60:a8:7a:b0:24:9f:e4:86:23:58:22:a4:a0:c5:fc:3c:59:00:
3c:a6:68:53:81:0f:64:43:c1:0b:42:f8:c4:52:af:23:f1:b9:
67:7b:12:55:9c:f3:23:8b:2f:ab:6f:28:71:c5:53:f7:53:d9:
b0:8a:bb:66:38:6a:b8:f0:5d:7f:de:88:5f:0d:11:0d:97:9e:
db:4c:a8:52:9d:3e:dc:b2:e4:4a:f4:95:3c:44:0c:28:93:68:
89:d0:a0:d7:33:63:78:9a:fc:b8:b9:9b:91:33:bc:87:52:7a:
eb:e6:a5:e4:da:07:96:40:ee:9e:d5:79:fe:75:ce:d5:32:5f:
cd:70:7e:9e:d2:f8:50:cf:ed:44:52:35:ed:39:eb:13:7b:42:
70:06:79:6d:ab:d0:cc:70:cd:90:02:e6:d5:8d:55:3d:ef:9c:
90:20:ad:81:c1:51:c4:b2:87:82:1c:9a:6a:52:09:8a:75:7b:
a7:9b:a1:ac:33:5c:d8:7d:0e:28:a7:60:e5:1b:b7:ba:45:81:
1b:76:d9:16:96:76:4e:7c:3a:2d:4a:d8:6c:8c:69:ab:47:17:
82:1e:f0:d3:f9:06:f2:8a:e9:13:a2:10:a9:10:f7:7e:a6:36:
5f:9d:2c:30:9a:ea:6f:e2:75:3c:e2:4b:38:7e:36:73:be:20:
14:17:64:70
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzU0MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1RkQxNzFGREIxMDBG
MEExRDFFRjU0NEQ3RTkxRUJFMDI1NkUzNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzkj4RrZvA7FVeYYdJEo5SNOiJXfarsvkL1XaF1usj1Y3oe+DX
brURw4RDFFJnmEersuBSC4rG04Z4lCHFGzVVc8VfJuhb0LevyL/D7AuyOEJlFsaa
wKIGHwjtYHPYGw4s6nlW7NansHDfMLx8d1ynsyCrnFcjrsRIt7WOrxD/NXl7iQ5/
qLz1ZHaAX/aNt2Ltu/r9DOIqQbUtXryYDVz6+QcAbXCrULx24+++FrAyQqLq58LK
ZBX+uFxZVsX+Fj/BEzn+9QTdM8DuROARfYPv/OB0EDyWUY73K2Ky7BQRvjL6oUQu
lTP1PnnLLPL+AuYE1kEC+dni+BRvb8VolpVTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUlf0XH9sQDwodHvVE1+kevgJW41MwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xmMFhIOXNRRHdvZEh2VkUx
LWtldmdKVzQxTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sSAwDQYJKoZIhvcNAQELBQADggEBAGCoerAkn+SGI1gipKDF/DxZADymaFOBD2RD
wQtC+MRSryPxuWd7ElWc8yOLL6tvKHHFU/dT2bCKu2Y4arjwXX/eiF8NEQ2XnttM
qFKdPtyy5Er0lTxEDCiTaInQoNczY3ia/Li5m5EzvIdSeuvmpeTaB5ZA7p7Vef51
ztUyX81wfp7S+FDP7URSNe056xN7QnAGeW2r0MxwzZAC5tWNVT3vnJAgrYHBUcSy
h4IcmmpSCYp1e6eboawzXNh9DiinYOUbt7pFgRt22RaWdk58Oi1K2GyMaatHF4Ie
8NP5BvKK6ROiEKkQ936mNl+dLDCa6m/idTziSzh+NnO+IBQXZHA=
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:35 2025 by rpki-client