Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1O63dN-NfillMwa7O12jripS5no.roa
File: 1O63dN-NfillMwa7O12jripS5no.roa (raw, json)
Hash identifier: ccZjV6yTiq0/J9UzyLXHXNgg5w3FzMUOcP5WyaZ3Hp8=
Subject key identifier: D4:EE:B7:74:DF:8D:7E:29:65:33:06:BB:3B:5D:A3:AE:2A:52:E6:7A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2905
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1O63dN-NfillMwa7O12jripS5no.roa
Signing time: Fri 01 Sep 2023 10:06:04 +0000
ROA not before: Fri 01 Sep 2023 10:06:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10501 (0x2905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D4EEB774DF8D7E29653306BB3B5DA3AE2A52E67A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:62:11:d8:ab:1f:61:0c:39:81:e8:eb:d7:7a:
04:5b:8c:b3:66:ee:a4:20:ab:6a:bf:24:c0:86:42:
d2:02:8c:bc:82:5f:dc:27:94:10:de:c1:ff:01:a3:
5f:a9:5f:60:a1:db:66:74:fa:0e:87:64:55:4c:de:
c1:9e:6d:0f:a8:d6:d7:f6:38:af:98:41:8c:b3:80:
5d:55:42:5c:a9:d5:73:01:d7:52:19:68:c8:9f:e6:
b2:82:67:50:7d:27:0f:63:ff:01:ad:20:63:06:59:
79:f9:e1:ca:21:b5:d2:95:a2:8b:06:fa:30:9c:5c:
8a:44:c1:b9:e7:a6:12:84:f0:91:53:f7:c0:0e:e9:
9f:78:23:ce:28:25:a2:2f:93:62:d3:7d:fa:64:b5:
8d:56:29:9b:b4:81:7c:2b:ca:5a:26:d2:ee:77:4c:
a4:51:bc:88:56:2e:ca:15:fa:84:81:2a:e7:7b:b7:
df:ac:61:67:b7:ba:a3:0f:ba:5b:f8:cf:b2:e5:ee:
8d:e5:e7:b3:46:96:cb:bd:1a:54:29:f3:bc:ec:53:
b9:8c:1e:69:76:1e:13:51:47:e6:06:e1:3a:71:53:
3e:83:c3:25:11:52:f7:e8:3f:52:51:9a:17:30:5e:
22:fe:71:a7:e7:93:29:02:01:54:c9:5c:a3:55:9d:
c7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EE:B7:74:DF:8D:7E:29:65:33:06:BB:3B:5D:A3:AE:2A:52:E6:7A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1O63dN-NfillMwa7O12jripS5no.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.116.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:ff:f4:e8:f0:da:d6:dc:19:36:e4:de:65:ab:e9:99:7b:09:
27:7a:22:f2:46:63:29:18:d1:6b:a9:ba:78:66:05:d1:76:69:
ab:0d:98:b6:22:b6:a8:ef:57:66:f1:f6:19:3b:68:a7:62:54:
a0:1a:ba:17:c0:bb:77:bc:90:33:b7:c8:5d:76:86:ac:ee:be:
98:d4:77:35:da:e3:7f:8c:60:ee:7d:ef:1f:78:21:7e:bb:c3:
81:94:09:49:bf:05:5b:73:ce:5e:f9:99:34:c2:02:5c:21:72:
55:b4:1b:08:cc:a0:fd:4d:f0:ed:8e:09:5e:e1:22:73:8c:be:
c7:35:23:8b:73:ef:80:94:74:b6:68:60:f4:b3:cb:17:d7:d4:
fb:af:4e:7a:a3:8d:59:fd:6f:a4:9a:fb:c4:90:c9:1c:9f:fe:
5c:1d:9c:ae:e2:1e:b0:e5:90:64:77:81:bc:aa:6f:b1:7a:0e:
10:84:8f:36:99:63:1f:a8:19:5a:7f:67:fe:b4:60:79:66:e4:
79:57:99:fa:80:3a:3e:02:80:3f:c6:70:24:82:07:84:7b:ee:
8a:aa:61:d5:79:f1:5b:18:97:95:6f:87:d6:9b:00:2e:c6:21:
8f:0b:cd:a0:3d:a4:9a:4f:1f:cd:2b:5d:74:bc:92:cd:0a:6f:
17:8b:a3:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org