Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vRTqUbN_GnQq1Oc4D1EKr_RLz0U.roa
File: vRTqUbN_GnQq1Oc4D1EKr_RLz0U.roa (raw, json)
Hash identifier: m4DeZ+yz9QIibhv1+8qAWYICNh8e5NhOvDASiTl0wUk=
Subject key identifier: BD:14:EA:51:B3:7F:1A:74:2A:D4:E7:38:0F:51:0A:AF:F4:4B:CF:45
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 34CD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vRTqUbN_GnQq1Oc4D1EKr_RLz0U.roa
Signing time: Mon 10 Feb 2025 13:52:42 +0000
ROA not before: Mon 10 Feb 2025 13:52:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.233.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13517 (0x34cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BD14EA51B37F1A742AD4E7380F510AAFF44BCF45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:84:77:13:45:98:0f:2e:8a:9c:02:29:b7:b0:
92:43:65:a1:78:79:79:0e:f5:95:b3:f4:14:62:17:
67:fd:b0:06:6c:8c:d2:34:bb:08:05:c5:78:e0:82:
26:26:b3:d7:07:68:12:5a:93:58:93:9c:cb:d4:e8:
38:ec:3d:6c:e6:b1:6d:ee:6d:11:50:47:df:d6:e1:
b5:9b:81:36:36:c5:eb:64:4e:4a:d5:74:24:a6:ef:
69:b5:19:01:af:0b:2e:18:cb:fe:12:d8:d1:98:f4:
3f:37:8a:66:97:3e:90:15:0d:09:16:d0:50:28:ed:
8a:b1:2c:14:b8:4d:dd:1f:fa:aa:f0:52:bf:28:39:
42:34:05:d6:03:6b:66:c0:16:34:cd:9b:16:c2:ac:
ce:80:5f:2a:aa:95:1b:2d:b6:ed:6b:32:49:d7:ec:
ad:75:60:09:32:bb:db:df:6b:34:c8:74:8e:79:1b:
22:e3:2b:1d:55:9e:47:8d:d9:19:ff:04:c5:f0:b7:
d9:4d:88:a2:11:eb:c6:ea:1c:1e:b8:d8:bf:db:11:
10:db:a5:cc:68:40:d9:99:83:5a:76:48:fc:42:fb:
f8:89:6b:61:7c:0a:36:d7:13:3c:46:73:f1:14:a9:
e8:9e:e3:21:ba:a0:6b:86:36:e8:24:1f:2f:90:c2:
6a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:14:EA:51:B3:7F:1A:74:2A:D4:E7:38:0F:51:0A:AF:F4:4B:CF:45
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vRTqUbN_GnQq1Oc4D1EKr_RLz0U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.248.0/22
Signature Algorithm: sha256WithRSAEncryption
af:bc:1a:d5:86:14:31:d2:6e:1c:a9:ef:af:ae:c4:d1:31:c4:
5d:98:76:95:99:28:e8:5b:98:ac:97:1c:04:85:22:20:c9:0b:
3d:9e:b3:a0:eb:6f:51:7f:8e:20:21:bf:8d:ab:db:ea:c5:4b:
49:7f:a1:f2:20:90:37:5d:d4:04:fe:d3:6a:c0:f5:57:c9:d0:
82:f5:f2:5a:fe:41:6c:a2:73:9a:09:9b:80:0d:49:6c:af:ba:
7c:af:55:30:56:79:ff:a7:2e:e3:c9:65:5b:a1:fb:9a:fe:c0:
ef:44:d3:ce:2c:ad:b3:32:cc:ed:21:8b:1c:64:c3:33:35:03:
44:24:97:18:1c:54:85:63:12:df:39:fe:7e:1f:ad:51:5d:28:
05:c2:91:1c:7a:38:4b:1d:e2:ca:7b:32:51:14:55:53:a6:56:
e8:a8:05:bc:b7:9b:59:06:1e:25:96:71:42:3f:9c:01:82:74:
65:f4:ec:5c:e3:11:74:d5:f6:af:41:c9:e4:47:17:f2:c0:52:
61:e7:30:69:9f:b8:76:7a:d4:4f:82:72:37:0f:1b:91:69:f7:
3f:d5:19:fa:ea:a1:23:68:02:c9:1d:71:c6:6a:47:88:11:66:
74:11:d0:85:6c:d9:09:c3:a2:c0:9d:c1:d5:d2:f6:60:73:06:
1a:a9:2c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:37 2025 by rpki-client