Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/108VRSaztGUjicV466LIQjec6E0.roa
File: 108VRSaztGUjicV466LIQjec6E0.roa (raw, json)
Hash identifier: Vrd5wPYf/VYD/9+1Z4ou/qVVCdoOHu6HDGBcykrRPtg=
Subject key identifier: D7:4F:15:45:26:B3:B4:65:23:89:C5:78:EB:A2:C8:42:37:9C:E8:4D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AA8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/108VRSaztGUjicV466LIQjec6E0.roa
Signing time: Fri 01 Sep 2023 10:08:09 +0000
ROA not before: Fri 01 Sep 2023 10:08:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10920 (0x2aa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D74F154526B3B4652389C578EBA2C842379CE84D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a5:34:37:83:51:0b:0e:ed:5f:3b:f7:cf:31:
ff:04:a1:65:48:82:bf:04:1f:f5:9e:fd:09:42:ba:
24:b1:e5:91:c9:3c:88:0d:8c:e4:16:c8:b3:61:b5:
f9:d6:37:db:87:61:48:1b:c0:46:67:f9:2e:eb:5a:
a8:0f:2f:e4:8a:52:52:54:f1:12:4f:bc:93:11:86:
55:32:e8:2b:35:1f:fa:19:39:f5:32:b1:3e:a3:7f:
ca:fa:17:f4:62:76:3c:a8:ea:0c:fb:d8:86:9a:29:
80:06:ff:8b:bc:8c:00:b9:0b:ed:d6:fb:ce:10:2d:
08:82:49:03:c8:73:95:ad:ee:7f:08:2e:ac:17:c4:
58:b4:32:18:bf:3f:98:a9:56:a2:50:62:2b:ee:2d:
14:51:51:5d:ba:6c:f5:b2:3c:eb:82:4c:74:d9:aa:
e8:da:b0:5c:c0:c3:b8:d1:02:38:8f:43:7d:05:a1:
80:f7:bc:69:cd:7b:ad:44:a9:b6:f6:fa:4e:35:d1:
b1:ae:75:5d:2c:93:18:c3:a0:f0:68:ef:52:b1:75:
86:6c:91:57:59:97:04:d9:00:6e:da:d5:c6:89:2d:
0b:e8:09:9d:35:d0:dc:8e:e7:9e:98:04:c2:26:e1:
76:15:b8:ff:f3:d0:d6:bd:e2:94:cd:8e:28:0f:d0:
c2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:4F:15:45:26:B3:B4:65:23:89:C5:78:EB:A2:C8:42:37:9C:E8:4D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/108VRSaztGUjicV466LIQjec6E0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.16.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:b3:3e:60:3d:c5:c7:bd:26:28:2c:2c:92:a3:8f:33:7a:a2:
ac:cf:ba:d8:91:bb:59:a8:18:ca:ee:f7:89:1c:0c:ad:4b:43:
55:ab:46:d8:ef:21:cb:2a:39:97:ca:19:fd:ec:dd:60:04:07:
f4:f6:e1:d8:d6:23:d5:43:4c:16:f2:06:fb:07:3b:20:d9:07:
f7:71:a7:93:e3:1b:d2:05:ab:80:db:4d:ed:43:a2:30:9d:22:
a7:52:0c:8c:b9:2d:af:db:6c:a2:db:66:51:6c:dd:66:63:e6:
64:68:83:ca:9b:06:ec:ce:85:e9:bc:0f:3a:87:1a:b8:b3:87:
89:95:1b:6e:4e:eb:b2:58:4a:df:3f:e4:3b:27:94:b3:47:47:
ca:1b:3c:79:a9:3d:d2:9b:9d:0d:f8:1c:c4:f1:2e:17:a7:ae:
39:04:47:dc:f7:9c:e4:bc:5d:fe:9c:6a:a9:80:9c:b6:f7:85:
32:6a:1b:49:a8:24:b0:b6:1f:13:56:54:b8:96:d2:1d:6c:33:
ed:3b:f3:9e:a8:11:f1:8b:dd:7e:3f:d7:66:a5:34:9d:53:65:
a0:c9:4e:a6:30:ce:0e:51:d8:41:42:95:e2:d7:ad:e4:d0:ff:
8a:20:88:59:95:4f:64:6e:3f:94:f2:56:cc:76:c4:66:ca:6d:
ac:77:f6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org