Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zVop_FRXfgCU7w1Xv-kcpp3yQNo.roa
File: zVop_FRXfgCU7w1Xv-kcpp3yQNo.roa (raw, json)
Hash identifier: s5uFqTiCeuxgSoO3DL3gFB1j0IDwb+/5j11RxWcMci4=
Subject key identifier: CD:5A:29:FC:54:57:7E:00:94:EF:0D:57:BF:E9:1C:A6:9D:F2:40:DA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 343C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zVop_FRXfgCU7w1Xv-kcpp3yQNo.roa
Signing time: Mon 10 Feb 2025 13:52:11 +0000
ROA not before: Mon 10 Feb 2025 13:52:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 118.233.144.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13372 (0x343c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 10 13:52:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CD5A29FC54577E0094EF0D57BFE91CA69DF240DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:d1:ef:06:fd:b4:08:7b:09:69:8c:a0:f4:
9b:7e:9c:ec:92:d4:c5:b2:1b:22:07:3c:a2:6c:1d:
13:25:73:fc:8e:25:f7:f4:bd:8a:1a:8a:e4:e3:23:
8d:e9:e0:83:81:68:9c:66:4c:70:74:0a:62:e1:ea:
1e:92:06:59:26:18:7d:29:18:ac:45:2a:5b:dc:2b:
70:47:6d:8a:ee:fa:11:d6:dc:65:bd:60:8f:43:92:
78:0d:2f:9b:8c:bf:95:1b:4c:06:15:f8:1d:0c:4e:
a6:2a:4b:48:f9:18:ef:e6:eb:82:15:fa:34:a5:05:
db:fa:bf:ea:28:62:78:46:1d:d1:81:56:80:d9:79:
59:97:61:1a:b9:bb:5a:9f:7e:d5:59:89:a4:f6:6b:
93:7a:4c:07:4b:33:ec:4c:c7:83:e7:4c:63:f1:fa:
a0:b9:ee:ce:8b:1f:7d:cb:71:12:5e:0d:76:53:1b:
98:64:31:ce:f5:9d:3a:c3:f7:7e:de:8f:8d:ed:48:
7a:0d:b6:1d:01:05:e0:d2:75:27:a3:07:b9:eb:2a:
57:8d:f0:9a:a1:ae:59:9a:ca:80:63:89:46:3d:1b:
be:93:a1:8f:33:27:e5:ef:f6:c8:62:7f:fa:07:1e:
b0:79:6c:87:2a:09:35:2e:03:90:ed:24:e4:03:af:
59:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:5A:29:FC:54:57:7E:00:94:EF:0D:57:BF:E9:1C:A6:9D:F2:40:DA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zVop_FRXfgCU7w1Xv-kcpp3yQNo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.144.0/21
Signature Algorithm: sha256WithRSAEncryption
69:73:9e:02:03:95:c9:65:ca:8d:c1:f3:e3:5d:a6:c1:c6:58:
b2:5e:85:24:d0:d7:63:f1:09:6a:d2:13:51:0a:28:54:16:31:
07:64:27:cc:c9:5e:30:2d:38:e0:69:7f:25:32:2b:73:0e:ce:
a3:8f:5e:91:eb:9f:d3:d1:8b:5a:cc:be:7f:4f:b5:a3:96:fc:
05:d6:92:d8:aa:ef:06:d9:25:c7:a8:fe:80:70:ba:67:2a:32:
d0:11:dc:51:4a:f9:b1:c9:dc:1c:a9:61:69:c2:4f:55:5d:57:
06:2d:d0:d6:a1:9e:23:13:74:6c:21:2f:28:93:60:43:20:36:
2e:39:6a:c1:5d:94:1e:98:1d:c7:9f:3f:00:68:81:cf:df:a3:
dd:78:49:1b:40:a9:a4:7d:27:6a:67:94:eb:46:6f:d0:c4:97:
86:d9:a8:aa:47:f8:0e:93:1f:85:03:ee:35:44:34:60:25:f5:
b2:ea:62:bc:6f:ef:76:9c:f3:cf:1f:d6:8c:05:67:02:6c:ff:
52:5f:1a:f0:b2:60:9b:37:87:db:5e:07:8e:cf:c7:df:cf:d3:
03:c9:70:21:1a:83:f6:54:53:92:17:6a:aa:cf:dc:01:ab:d5:
b9:50:50:c3:7b:cc:8b:28:7f:8c:d2:1c:35:91:ed:bf:ad:d9:
a2:0b:45:26
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICNDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNTAyMTAx
MzUyMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENENUEyOUZDNTQ1NzdF
MDA5NEVGMEQ1N0JGRTkxQ0E2OURGMjQwREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC87tHvBv20CHsJaYyg9Jt+nOyS1MWyGyIHPKJsHRMlc/yOJff0
vYoaiuTjI43p4IOBaJxmTHB0CmLh6h6SBlkmGH0pGKxFKlvcK3BHbYru+hHW3GW9
YI9DkngNL5uMv5UbTAYV+B0MTqYqS0j5GO/m64IV+jSlBdv6v+ooYnhGHdGBVoDZ
eVmXYRq5u1qfftVZiaT2a5N6TAdLM+xMx4PnTGPx+qC57s6LH33LcRJeDXZTG5hk
Mc71nTrD937ej43tSHoNth0BBeDSdSejB7nrKleN8JqhrlmayoBjiUY9G76ToY8z
J+Xv9shif/oHHrB5bIcqCTUuA5DtJOQDr1mhAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUzVop/FRXfgCU7w1Xv+kcpp3yQNowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3pWb3BfRlJYZmdDVTd3MVh2
LWtjcHAzeVFOby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6ZAwDQYJKoZIhvcNAQELBQADggEBAGlzngIDlcllyo3B8+NdpsHGWLJehSTQ12Px
CWrSE1EKKFQWMQdkJ8zJXjAtOOBpfyUyK3MOzqOPXpHrn9PRi1rMvn9PtaOW/AXW
ktiq7wbZJceo/oBwumcqMtAR3FFK+bHJ3BypYWnCT1VdVwYt0NahniMTdGwhLyiT
YEMgNi45asFdlB6YHcefPwBogc/fo914SRtAqaR9J2pnlOtGb9DEl4bZqKpH+A6T
H4UD7jVENGAl9bLqYrxv73ac888f1owFZwJs/1JfGvCyYJs3h9teB47Px9/P0wPJ
cCEag/ZUU5IXaqrP3AGr1blQUMN7zIsof4zSHDWR7b+t2aILRSY=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:33 2025 by rpki-client