Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qScqn_alvhqtayz2f6pFp9VScxs.roa
File: qScqn_alvhqtayz2f6pFp9VScxs.roa (raw, json)
Hash identifier: kd3qkPVYo0e8f2w+xv3UZTjlOxQ8YplyH7qtS6dD/bg=
Subject key identifier: A9:27:2A:9F:F6:A5:BE:1A:AD:6B:2C:F6:7F:AA:45:A7:D5:52:73:1B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3696
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qScqn_alvhqtayz2f6pFp9VScxs.roa
Signing time: Mon 10 Feb 2025 13:54:28 +0000
ROA not before: Mon 10 Feb 2025 13:54:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 123.195.24.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13974 (0x3696)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:54:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A9272A9FF6A5BE1AAD6B2CF67FAA45A7D552731B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:51:6d:9c:c4:15:35:e3:e5:ee:96:89:0b:d1:
86:38:8f:32:9b:ad:a7:be:5d:ee:86:1b:ee:cb:13:
b7:a8:48:e5:f8:c4:50:d1:79:d9:ae:46:41:05:29:
b6:a4:be:3b:32:b4:c0:e0:d2:d5:63:47:28:d7:ae:
4f:3e:5e:b4:83:7a:a4:42:0c:1c:80:a3:c9:0f:66:
7a:27:65:56:0f:74:49:f0:63:27:b0:f5:10:01:88:
16:26:b1:19:92:81:f2:f5:24:3f:18:b5:48:66:91:
8a:4f:7f:44:3f:f2:58:b9:e9:6c:e8:90:6a:e7:62:
51:11:51:cc:0f:cc:87:01:13:a7:2f:e0:29:b3:45:
27:16:f3:65:5e:22:b5:ea:3c:b0:15:66:82:c4:c1:
7d:d3:0f:a2:5c:29:91:8b:27:8b:da:14:7b:26:5c:
ca:18:b7:19:08:05:db:62:25:4d:0c:c5:80:f1:ac:
35:15:7d:3d:27:50:5c:35:2d:41:bb:12:30:a5:28:
89:b8:c5:6e:62:47:21:54:08:17:b8:bb:4f:ba:3e:
61:88:18:bd:64:2f:75:47:8b:b9:c2:a3:ee:37:85:
42:bf:9d:5b:70:15:09:e3:bd:ee:8e:d9:c3:83:19:
ef:7d:41:ce:f4:33:50:d5:42:de:75:01:e6:20:8c:
01:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:27:2A:9F:F6:A5:BE:1A:AD:6B:2C:F6:7F:AA:45:A7:D5:52:73:1B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qScqn_alvhqtayz2f6pFp9VScxs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.24.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:b4:91:cb:27:01:6f:38:60:9e:99:bf:79:77:0e:41:43:1f:
60:fd:d2:30:ad:53:7a:66:fa:64:e4:41:3c:93:dd:17:e2:a5:
e2:db:c2:b8:f2:58:b9:4d:1d:05:46:78:f9:fe:59:1f:1b:49:
9a:d2:b4:39:28:e2:ab:9d:4c:07:89:b7:32:13:b5:f7:9c:5f:
56:e1:7b:b6:d6:b8:2b:b4:66:14:44:95:5b:21:15:14:75:68:
c9:b3:80:5a:44:61:9b:9f:56:ab:b0:a9:85:fa:d4:b6:91:d0:
3f:86:1c:3e:3a:3a:16:ce:2b:8a:42:51:aa:07:a2:3f:ab:52:
d5:75:aa:65:78:e6:f3:41:06:3a:33:e3:61:2c:e8:43:67:2d:
dd:51:31:60:b9:ae:85:b4:1b:1f:5f:52:53:d7:ab:a7:ac:c8:
c3:07:d5:73:61:fa:da:29:cf:a6:c7:da:70:39:c4:6e:72:96:
82:0e:5b:09:f5:ca:55:22:24:0a:dc:54:36:47:21:b1:06:d0:
5d:a1:36:2f:70:e2:fc:83:9b:dc:32:aa:77:2c:e0:ce:b6:97:
ca:2e:d6:b6:cf:02:36:31:fa:b1:e9:c1:bd:50:01:5a:cf:45:
15:a9:3b:d3:27:9f:e2:d6:b7:85:bb:47:07:b6:f4:c0:48:25:
26:02:20:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:12 2025 by rpki-client