Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y52Ep6T-LZMdBGc6hcSbwv75d8k.roa
File: y52Ep6T-LZMdBGc6hcSbwv75d8k.roa (raw, json)
Hash identifier: FipxKqNLOR6fhJp0Dd0fTkloQu+TM5lA21IXHP2yq9w=
Subject key identifier: CB:9D:84:A7:A4:FE:2D:93:1D:04:67:3A:85:C4:9B:C2:FE:F9:77:C9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 355F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y52Ep6T-LZMdBGc6hcSbwv75d8k.roa
Signing time: Mon 10 Feb 2025 13:53:17 +0000
ROA not before: Mon 10 Feb 2025 13:53:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 211.76.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13663 (0x355f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:53:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CB9D84A7A4FE2D931D04673A85C49BC2FEF977C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a0:28:28:33:89:2b:18:36:a9:98:6a:0f:46:
e4:95:f1:47:6d:f5:47:13:f4:f0:e9:2f:dc:99:75:
96:12:0c:90:23:4e:af:9d:29:b5:89:79:84:c9:cb:
4e:76:ad:22:85:c8:eb:3b:9c:d7:56:63:6f:62:fa:
4b:a6:4c:87:7c:b1:c6:9f:5e:59:6a:b6:47:54:50:
eb:67:17:dc:0b:46:a3:42:97:67:3d:10:b7:5f:11:
d6:0d:a4:f4:ab:97:06:8c:bf:28:36:61:a5:60:43:
28:32:51:e2:ec:d4:d1:47:54:e0:00:cc:04:38:d6:
c7:ac:35:76:b8:7c:56:d4:c8:53:af:5b:cd:6c:b3:
14:41:10:c7:bf:1b:94:10:f5:78:71:b7:cc:71:b1:
f8:fd:24:24:41:59:20:54:04:a4:37:53:0b:4e:3e:
c4:71:e0:f4:a0:ca:0b:37:18:38:2f:6e:cd:e6:11:
7c:e2:29:40:a2:77:14:05:d2:60:9a:8c:e8:c1:83:
2f:b4:53:ba:62:49:3d:2a:b3:6f:12:38:49:41:42:
13:d4:d8:af:4c:e2:72:64:b0:ab:e9:62:0d:c9:4f:
e7:34:7a:ef:68:36:a4:3f:4b:40:5d:04:9b:4f:3b:
db:0f:11:64:20:47:6f:c2:d6:19:f8:b2:71:f2:68:
74:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9D:84:A7:A4:FE:2D:93:1D:04:67:3A:85:C4:9B:C2:FE:F9:77:C9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y52Ep6T-LZMdBGc6hcSbwv75d8k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:3f:b9:44:a5:99:35:5f:09:07:16:ee:89:13:0d:12:c8:88:
c1:aa:05:17:2e:b0:c7:c9:fd:7c:84:f3:61:f1:97:86:85:3f:
c8:3a:59:4d:0d:aa:71:ff:68:8e:3a:81:11:d1:bb:24:da:24:
3c:30:28:75:3c:5a:90:a0:eb:10:fb:bc:b0:e9:3d:ec:72:44:
1e:9d:69:a2:eb:c9:84:7c:65:61:08:02:0d:ef:94:a2:08:bb:
a6:cd:52:65:e5:2f:df:39:90:45:6a:c2:cf:09:b1:61:43:6c:
21:dd:0c:d4:26:e6:2d:00:62:fa:6d:c0:cb:d1:2a:5a:4d:86:
28:87:e5:3a:a9:67:e7:a3:b3:5e:c9:a9:f9:ab:c8:59:fe:6f:
4e:d3:d4:7c:87:bb:80:85:80:3d:57:e3:29:b4:93:94:a6:ab:
79:bf:4a:25:75:9c:72:c8:9c:2a:dd:90:f3:19:be:b1:57:48:
cf:2a:99:e1:70:ab:72:6f:c6:99:af:b1:82:5d:f8:6b:d9:5e:
d3:8a:86:82:8b:26:24:06:7c:24:45:aa:b2:55:87:2d:57:85:
19:a6:81:69:66:9a:36:32:ec:33:0c:9f:1c:dd:90:58:06:61:
40:f7:2f:2c:ae:f8:89:5b:80:3d:a8:b7:f7:05:6d:e0:ef:2f:
ec:a0:fb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:47 2025 by rpki-client