Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oD5cYHZ7qPdUCyUf19AdDeZvLd8.roa
File: oD5cYHZ7qPdUCyUf19AdDeZvLd8.roa (raw, json)
Hash identifier: /R7Lyiu/ZydCsMj7t4e91rvkHZqFE8OzamS8OEv2QhY=
Subject key identifier: A0:3E:5C:60:76:7B:A8:F7:54:0B:25:1F:D7:D0:1D:0D:E6:6F:2D:DF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3679
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oD5cYHZ7qPdUCyUf19AdDeZvLd8.roa
Signing time: Mon 10 Feb 2025 13:54:21 +0000
ROA not before: Mon 10 Feb 2025 13:54:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.233.122.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13945 (0x3679)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A03E5C60767BA8F7540B251FD7D01D0DE66F2DDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:13:3c:2e:58:e9:1c:98:dc:dd:a8:16:30:
19:88:21:33:5a:df:41:31:b4:77:75:9c:98:42:89:
0f:ee:3b:3d:41:bd:c9:25:94:c3:3f:c3:7c:9b:f4:
a2:70:bb:3c:55:de:53:0c:7d:c6:84:b8:c1:ef:eb:
77:d6:a6:77:56:a8:a0:79:e2:f8:4c:c6:47:da:d1:
3d:09:e0:9b:e2:0c:22:60:8a:cf:a9:59:90:a4:a2:
50:3f:89:48:f6:de:83:90:3e:03:fd:0d:8a:15:ae:
79:a1:22:a2:10:0b:e0:03:b2:77:ce:bf:04:09:8c:
28:7f:b2:48:6f:f0:55:ea:d5:1c:a0:ea:0b:be:30:
6e:1f:0b:35:1f:06:4c:67:9b:05:9e:64:da:e6:d4:
ea:41:67:a2:0b:df:ed:47:c5:ba:99:72:73:5e:ff:
e3:04:d1:2d:58:a0:fa:c1:26:04:62:51:7f:93:97:
00:77:71:67:15:60:74:80:5f:9e:0e:cb:d2:95:cc:
03:bc:81:0f:69:05:c3:fc:7a:12:14:8e:19:bf:fd:
aa:22:88:92:81:76:ed:25:5a:af:d3:ca:7c:8f:8d:
92:f1:af:4c:96:0a:b4:55:40:2f:44:2d:be:8c:2f:
6f:5f:26:01:b1:9e:d4:8f:45:7f:e5:62:45:5e:44:
f1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3E:5C:60:76:7B:A8:F7:54:0B:25:1F:D7:D0:1D:0D:E6:6F:2D:DF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oD5cYHZ7qPdUCyUf19AdDeZvLd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.122.0/23
Signature Algorithm: sha256WithRSAEncryption
92:01:ce:a5:3b:0a:69:9d:14:f8:ab:0f:13:78:fa:0b:26:7e:
7b:f6:58:9b:4b:8d:9f:ed:4f:1a:54:ba:16:21:f1:3e:ba:bf:
17:8a:dd:d4:0c:90:46:0f:77:77:ea:0e:37:10:1f:04:70:e3:
cc:67:53:3e:71:03:57:f3:7b:90:81:05:7d:91:8f:ae:db:b1:
be:2a:8b:20:24:21:70:53:85:f6:5b:53:e0:73:bc:9e:72:f8:
22:77:a5:fe:8c:8f:99:4d:6d:82:c2:c0:c8:4a:e7:fe:bc:98:
5a:7c:b7:4a:ee:30:74:2f:bd:fb:32:a7:d1:17:89:3a:a7:9f:
1c:2b:0f:2e:d6:51:df:88:05:be:86:bf:6a:8e:08:27:91:d4:
1b:57:f7:40:e4:ef:5c:6d:3d:85:c8:bd:a2:2c:05:4e:f2:13:
6d:a3:6c:c9:b2:03:ec:39:12:ef:9f:31:ed:4c:ec:e3:ba:89:
28:ee:87:64:32:58:cc:9c:80:c5:1a:15:8a:69:b7:9d:d7:7e:
14:29:68:c7:a2:86:4f:89:a5:3b:7a:a0:83:9e:46:fd:0f:34:
9a:e3:14:98:95:63:9a:a7:85:27:00:13:92:09:42:cf:34:16:
4f:4d:7d:0f:6d:09:9d:51:48:09:97:bf:dc:5e:d3:71:2e:47:
d2:af:28:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:47 2025 by rpki-client