Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wnJ7kAsvuAVI-Mnjefvot_Dkn0Y.roa
File: wnJ7kAsvuAVI-Mnjefvot_Dkn0Y.roa (raw, json)
Hash identifier: LzFAlbdwmobssJxvUGA8isu8xMf87GttNGux3+ihkKA=
Subject key identifier: C2:72:7B:90:0B:2F:B8:05:48:F8:C9:E3:79:FB:E8:B7:F0:E4:9F:46
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 33DE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wnJ7kAsvuAVI-Mnjefvot_Dkn0Y.roa
Signing time: Mon 10 Feb 2025 13:51:51 +0000
ROA not before: Mon 10 Feb 2025 13:51:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.200.0/21 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13278 (0x33de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:51:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C2727B900B2FB80548F8C9E379FBE8B7F0E49F46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c6:fb:db:82:49:0b:8e:47:ad:18:e4:2c:de:
bf:98:d4:cf:50:6d:1f:f3:d8:32:4c:21:ac:cc:31:
41:87:d6:47:07:22:35:3e:81:ca:70:d1:70:ae:61:
24:93:26:ce:e3:ba:4a:3b:39:d6:f8:3a:01:40:34:
c5:51:d3:9a:f4:dd:5b:84:68:b0:24:93:fc:66:2b:
27:8f:ca:9d:89:cc:6d:a9:c5:e5:15:37:15:05:4f:
f5:44:4f:24:f6:71:2e:a2:11:82:62:85:af:7a:cc:
e5:6d:b8:38:57:9a:48:ce:50:ee:64:94:7b:33:ce:
30:37:c4:94:e2:38:81:66:af:28:71:d5:7f:fd:78:
d4:fe:f9:d7:5a:75:6c:36:9f:17:f1:6f:96:e8:c0:
3a:89:53:54:c7:a5:63:71:d1:aa:74:62:9c:3c:24:
0b:c7:db:6d:4e:64:cb:72:e2:78:d2:c7:d7:a9:50:
69:63:34:a5:57:91:bb:95:4e:f8:2b:02:fc:20:86:
ed:56:ac:55:ae:4a:42:6f:8d:f5:fd:ae:3b:82:98:
af:ff:94:2a:52:72:5f:ee:19:9f:01:81:2d:31:2e:
30:bb:c2:58:5d:a4:6f:fe:ed:00:72:49:67:eb:e1:
33:80:76:1e:16:1c:e8:1b:fb:88:fc:33:2b:d0:28:
17:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:72:7B:90:0B:2F:B8:05:48:F8:C9:E3:79:FB:E8:B7:F0:E4:9F:46
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wnJ7kAsvuAVI-Mnjefvot_Dkn0Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.200.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:8a:23:ff:40:f9:e7:4b:20:7f:68:be:2a:4b:05:01:8e:75:
83:3b:a3:26:bf:83:1a:d1:cb:a0:65:a1:3d:1a:88:54:ff:3e:
97:b7:ce:1d:6f:66:94:b2:9b:b5:03:a8:a8:c7:95:15:6e:df:
fe:38:b5:a6:60:93:27:fc:8a:5e:53:40:ff:0a:62:5a:32:e6:
c2:cb:84:56:2a:83:4e:57:43:11:8b:1d:99:e4:61:1e:e1:0b:
06:95:03:db:4c:1f:95:d2:a3:7f:15:50:b5:0b:ff:22:25:8c:
c0:20:77:dd:ac:20:7c:dc:f8:50:26:8c:43:ee:fc:0d:8c:f9:
3c:e2:14:59:5f:95:f8:3d:5e:ac:7e:61:5a:27:f9:6b:39:3c:
36:fa:07:37:fc:79:31:88:b0:ee:03:2e:dc:e9:b5:61:4c:70:
4f:d2:35:d6:3b:2e:97:bc:76:c4:0e:d2:bf:a2:28:ec:48:ba:
67:2b:b5:76:32:dd:45:ce:27:b7:6b:3c:d0:74:bd:5e:8f:47:
d5:3f:7c:3d:c0:de:b9:64:81:ed:4a:5e:bc:5a:a4:8e:78:12:
59:3b:45:a2:f8:3e:e3:0a:83:cd:f2:2c:a3:ef:95:fd:07:96:
f7:7d:0f:72:ed:49:58:97:3c:ec:57:82:94:34:84:43:98:73:
b9:b3:0a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:13 2025 by rpki-client