Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Bk-i2Y2YiPI0yTQLjBjyGnD2gQ.roa
File: 1Bk-i2Y2YiPI0yTQLjBjyGnD2gQ.roa (raw, json)
Hash identifier: Ygba7GXW9QxLNi5496Gqer4GihiASA2dqndnnXRT1xo=
Subject key identifier: D4:19:3E:8B:66:36:62:23:C8:D3:24:D0:2E:30:63:C8:69:C3:DA:04
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2813
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Bk-i2Y2YiPI0yTQLjBjyGnD2gQ.roa
Signing time: Fri 01 Sep 2023 10:04:55 +0000
ROA not before: Fri 01 Sep 2023 10:04:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10259 (0x2813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D4193E8B66366223C8D324D02E3063C869C3DA04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c0:62:54:a1:11:ae:f3:d0:73:ce:7f:de:69:
40:f5:f7:d7:ad:35:1a:72:59:b7:7d:ba:51:fb:23:
8e:cc:1c:a8:3b:af:2a:95:eb:3a:2a:aa:90:0d:19:
27:c0:c4:75:3f:5c:67:4c:f2:96:34:5a:b3:aa:da:
9f:30:48:df:8c:3d:a2:d7:76:c4:ce:d6:e9:cc:e5:
bc:9a:37:36:30:75:48:7a:48:5e:56:59:1e:76:ac:
36:a9:20:5f:aa:5d:fc:21:fc:06:62:9c:36:ab:e3:
b3:c6:20:ad:24:f1:e6:07:04:c3:8a:06:b3:84:58:
a9:01:54:72:ff:d0:f3:94:8a:ea:dc:89:72:06:28:
1e:e9:59:4c:a1:f5:0c:51:00:53:8b:2f:95:ff:45:
fe:74:f3:a3:21:bf:99:80:6a:5a:29:8a:0c:09:a2:
fa:15:0d:2f:59:3a:0b:0c:22:6b:c0:68:9d:09:69:
40:e8:9d:07:1b:7f:32:3b:e1:e9:7a:8e:4f:b9:29:
8e:51:f6:7f:14:2c:4e:6e:b2:6b:3f:8b:bf:11:b5:
10:90:e6:81:14:94:53:98:a8:a4:31:bd:29:a6:0a:
df:c0:1d:12:ec:11:05:99:f8:06:85:bf:1d:9c:dc:
6b:a8:d0:49:76:68:29:61:c2:6c:e1:77:ea:dc:36:
b7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:19:3E:8B:66:36:62:23:C8:D3:24:D0:2E:30:63:C8:69:C3:DA:04
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Bk-i2Y2YiPI0yTQLjBjyGnD2gQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.77.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:7e:ae:b8:53:2e:69:3b:26:e0:a4:3d:10:77:37:38:c9:69:
46:17:1f:a0:43:92:e8:4c:23:b8:aa:f2:e3:1b:98:de:61:dc:
49:49:fe:fa:c2:cd:ad:92:4b:19:7b:73:ce:8a:1e:9f:e9:06:
29:c4:6f:9f:e6:54:6e:61:46:01:e7:d8:66:41:22:6a:14:b1:
73:f5:ee:79:72:c6:3c:8d:f8:f7:35:3c:8c:3f:e5:7b:b8:a5:
86:15:3d:2c:ed:a1:52:c2:2e:3f:f0:cd:b6:10:72:d0:c9:08:
07:ca:98:3d:f4:35:2d:75:cc:2d:67:34:d7:1f:84:fa:50:76:
6f:0f:d4:9d:fe:ef:00:8f:d3:6f:f5:47:ed:61:b6:d6:55:9d:
b9:12:c4:38:cf:c3:de:69:f2:3d:aa:e7:33:c2:cf:0f:83:43:
e4:ec:86:2c:76:82:e4:42:ae:27:fb:9c:e6:ae:7e:1d:ff:51:
8b:65:33:da:e6:2d:b3:97:8a:d7:fc:ca:e1:20:03:ab:da:f7:
f3:73:37:13:c0:f7:85:0a:fb:be:81:6f:f9:b1:34:80:28:e0:
6f:b8:8c:1a:1a:e2:5e:ac:b0:a0:1d:c1:c1:ca:1f:79:49:da:
76:55:85:3c:eb:0f:f6:54:ec:97:fc:14:a7:c7:1c:2f:68:16:
a7:9b:b1:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org