Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/n1UQuWYd0K2uHuI_vU0lf1o2KKI.roa
File: n1UQuWYd0K2uHuI_vU0lf1o2KKI.roa (raw, json)
Hash identifier: D5xLKpjm+W2p7AMNHQXySJdLbkBA1Gin2S5+iIcOHOo=
Subject key identifier: 9F:55:10:B9:66:1D:D0:AD:AE:1E:E2:3F:BD:4D:25:7F:5A:36:28:A2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3518
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/n1UQuWYd0K2uHuI_vU0lf1o2KKI.roa
Signing time: Mon 10 Feb 2025 13:53:00 +0000
ROA not before: Mon 10 Feb 2025 13:53:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 211.76.115.0/25 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13592 (0x3518)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9F5510B9661DD0ADAE1EE23FBD4D257F5A3628A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ab:6d:d0:dd:99:a2:6e:b2:2c:a5:8d:ea:94:
75:2e:13:3e:40:7c:5b:ab:50:3a:f3:d7:b0:75:da:
1b:08:b8:17:22:3c:e4:69:ef:3d:1b:9b:a4:64:c2:
db:f2:c7:0f:41:f2:d2:bf:84:e2:1c:16:80:92:31:
55:80:70:43:a9:2d:61:82:d5:be:dd:d0:03:54:8b:
c9:93:f0:30:42:fd:d4:60:c5:36:bc:86:db:6b:38:
ba:a4:b1:f1:29:9d:01:18:6c:21:cd:f4:bf:a1:2b:
e5:80:c2:89:3e:e3:61:7b:96:88:e7:7c:32:bf:46:
60:f6:a2:d7:cb:17:40:8d:60:50:0a:5f:71:9e:cd:
a9:21:57:42:ad:ef:58:ac:31:c9:81:2b:d7:78:7f:
c6:ac:09:4f:9c:d5:da:e7:32:79:9d:d6:3d:4e:ac:
fc:3e:08:c7:99:9c:46:54:b5:e1:b6:ed:14:94:f9:
bd:13:21:94:f1:30:07:8f:56:34:bb:17:72:d4:1a:
c3:28:60:0e:d7:f3:61:27:eb:69:6f:ba:25:a1:ca:
22:50:fc:3b:7f:ef:bb:5a:41:3d:21:ab:12:8b:69:
a5:f2:6a:2a:82:70:69:f0:f6:3e:5a:6f:62:9c:33:
f3:a0:b5:1f:49:d9:c9:cd:a5:d1:1c:31:f1:bb:5e:
38:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:55:10:B9:66:1D:D0:AD:AE:1E:E2:3F:BD:4D:25:7F:5A:36:28:A2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/n1UQuWYd0K2uHuI_vU0lf1o2KKI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.115.0/25
Signature Algorithm: sha256WithRSAEncryption
85:4c:4e:e2:3c:28:ab:89:67:56:7c:fa:cf:3d:27:ac:dd:f3:
5a:1f:61:d1:c4:c2:9b:cc:f5:91:b2:8e:67:82:4f:ef:dd:35:
09:3a:76:f0:fa:3e:b2:5f:9a:b3:a5:18:6c:58:c2:63:73:eb:
51:2e:cf:5d:9b:08:2f:0b:55:00:5b:69:92:f3:25:51:30:5f:
9a:aa:c4:77:93:c2:40:fb:87:bb:b7:9a:73:53:f2:0f:24:89:
d0:dd:12:6b:28:76:29:f3:a5:46:ce:8a:de:06:67:53:ba:60:
68:b2:5a:60:10:df:8c:f5:01:ce:c2:64:65:d2:85:01:91:a1:
c6:11:eb:2a:9c:30:aa:24:5d:61:e4:60:11:a4:e8:7e:53:49:
3d:ee:80:ab:34:1c:56:19:a8:1b:f0:e9:8e:eb:f3:89:a9:57:
a0:e8:09:58:77:ef:c3:c7:26:f3:ab:79:6a:29:c7:2c:6c:71:
75:f8:c6:f3:58:9c:de:58:85:5e:81:5c:bd:17:a8:73:1b:c9:
87:09:48:0c:ac:7d:9b:06:1c:d8:e4:3f:27:d5:2a:21:a2:f5:
4d:5b:2c:5f:06:0e:a4:28:c2:27:f1:ca:ad:79:13:c1:ba:25:
b6:ac:5b:58:0b:85:d2:19:1f:da:2c:85:d7:e9:18:68:d9:92:
8c:92:36:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:15 2025 by rpki-client