Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ysB0P7Y6Ca3g-yYOVJMF8FPHvPw.roa
File: ysB0P7Y6Ca3g-yYOVJMF8FPHvPw.roa (raw, json)
Hash identifier: Q8fwVC08jD2rdWfWIrbbXTmmD8p3XUfhgSq89ZXO1aI=
Subject key identifier: CA:C0:74:3F:B6:3A:09:AD:E0:FB:26:0E:54:93:05:F0:53:C7:BC:FC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3498
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ysB0P7Y6Ca3g-yYOVJMF8FPHvPw.roa
Signing time: Mon 10 Feb 2025 13:52:32 +0000
ROA not before: Mon 10 Feb 2025 13:52:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.232.196.0/22 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13464 (0x3498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CAC0743FB63A09ADE0FB260E549305F053C7BCFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7e:8c:6e:69:d5:87:3a:dd:e1:55:a0:b4:b5:
da:8d:fd:ca:31:f1:61:e8:31:d2:11:27:b4:e8:ea:
f7:d2:e5:af:12:38:ab:fc:2a:99:3b:29:be:59:72:
4c:28:3d:49:71:9d:1b:cb:49:42:dc:1d:93:c1:23:
40:2f:78:41:af:7d:ea:a0:f4:42:a2:1b:1e:b9:aa:
6f:b5:d7:d4:57:62:0d:fa:9b:43:98:90:c4:13:e6:
38:24:e8:7f:8c:49:89:3b:d0:e0:40:15:ce:30:8c:
16:7a:d7:f0:32:54:e4:7a:01:81:5b:93:44:80:0c:
bd:a7:8b:9c:83:e9:22:e7:ff:e9:6e:97:03:0c:31:
7e:db:95:11:54:80:a4:68:ba:b3:dc:cb:50:93:d0:
a4:f0:67:5f:02:45:35:29:28:fc:4a:24:84:57:26:
f1:ae:1d:a4:0b:f1:5b:ec:62:b4:fb:00:a6:a1:86:
f0:7d:71:65:57:b3:76:65:23:f4:8e:fe:af:93:e0:
1d:40:cc:77:85:ed:28:4f:f5:b0:b8:bb:e9:0b:f2:
08:b6:7a:13:5d:75:9f:29:32:da:8a:0c:13:85:bf:
aa:0e:03:c8:ab:0b:cc:c0:a8:2e:d9:6d:77:a7:44:
34:b6:b0:ad:99:c6:b9:1f:ae:53:0b:45:58:1e:5e:
a4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C0:74:3F:B6:3A:09:AD:E0:FB:26:0E:54:93:05:F0:53:C7:BC:FC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ysB0P7Y6Ca3g-yYOVJMF8FPHvPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.196.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:2e:80:57:2d:49:95:70:00:ec:f6:4b:1c:4c:eb:7d:c9:94:
3a:d2:b9:2c:be:e6:fe:ba:ea:07:bd:f3:0e:2f:5d:9c:86:e1:
c5:99:54:7c:09:f9:88:a8:49:d8:19:23:14:c1:54:22:fe:23:
af:0e:12:b0:3c:df:ab:f2:b4:93:42:8d:ca:5e:19:d8:a8:cf:
43:14:80:fa:46:ae:2d:15:e3:20:62:fd:b3:2c:57:4e:fb:53:
cd:5d:71:8e:1a:77:00:4c:d2:c8:13:4f:d6:7a:2d:b4:d4:6c:
12:73:08:c1:b0:a3:61:39:7d:cd:a8:c8:60:29:93:f8:e7:62:
70:38:db:0e:27:d6:de:3f:73:df:92:e1:f9:fe:15:49:38:b1:
7e:28:1a:74:84:66:c2:6f:c2:f9:0f:34:f2:9e:c3:3b:7b:ce:
68:e3:c2:cb:a2:f2:d4:02:6f:17:9e:b5:f8:05:6f:fb:c5:6c:
57:46:6d:0e:36:8a:6f:b2:95:f0:1a:b9:ca:45:31:b9:7a:fc:
be:fa:50:1b:e8:49:6a:57:09:7b:ec:c3:67:30:f5:f5:8d:d1:
16:2a:24:a3:7d:12:4c:a7:c9:b7:65:bb:d6:1b:af:b4:22:5b:
9f:14:60:be:71:57:25:e4:73:e0:21:78:30:a7:fb:49:5c:63:
9f:75:10:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:09 2025 by rpki-client