Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa
File: 1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa (raw, json)
Hash identifier: 7AumY7bVX3Swa4svS9KpnWBCVo82JBHJUeoZgvRTqg0=
Subject key identifier: D5:44:FD:95:22:F5:FE:40:EC:3B:78:3E:4F:C6:58:8A:5E:17:45:1D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A52
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa
Signing time: Fri 01 Sep 2023 10:07:46 +0000
ROA not before: Fri 01 Sep 2023 10:07:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.176.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10834 (0x2a52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D544FD9522F5FE40EC3B783E4FC6588A5E17451D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:16:b3:cf:0b:2f:5f:7a:a8:1a:f3:2b:14:ee:
c7:35:d8:d2:b2:c7:5c:d4:ea:ed:fe:6f:40:16:88:
34:11:c0:a1:90:9d:70:24:6f:63:d5:d0:9d:cb:ad:
2f:33:d4:b5:c2:15:70:b9:ce:05:c9:16:e7:5e:b7:
61:7a:2e:da:87:6d:e3:20:1d:8d:db:3f:09:52:51:
63:90:4d:5d:07:0c:c3:91:36:b7:c6:fc:e4:96:3a:
f0:e5:20:35:e1:ad:1b:1b:5f:8d:65:e4:15:d3:0b:
de:f2:73:0c:35:95:08:fe:4e:14:82:e9:a1:7a:39:
db:74:e6:b5:9a:51:f5:43:ff:7d:fa:79:52:8b:b0:
4e:3d:e3:47:b4:37:26:94:85:04:a2:50:50:fe:68:
bb:91:b2:ac:45:53:d6:3d:ce:5b:e2:13:ea:e3:b4:
c4:55:18:77:4f:15:dd:26:8a:01:30:cf:3f:ad:b9:
bd:31:a5:6c:fc:58:17:62:c5:15:2f:91:19:2f:69:
e0:11:44:4a:6e:e2:fc:ee:00:f9:0f:35:f6:c6:d8:
7d:d3:41:08:25:bf:a8:d1:84:10:cf:e5:00:5d:a3:
64:20:06:c2:35:c8:73:03:a1:f9:08:c2:bc:6d:fc:
f4:57:7c:ef:a5:17:93:c7:e1:7a:01:21:e9:30:79:
97:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:44:FD:95:22:F5:FE:40:EC:3B:78:3E:4F:C6:58:8A:5E:17:45:1D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.176.0/21
Signature Algorithm: sha256WithRSAEncryption
26:0e:ea:c5:27:f6:c8:e4:f8:a5:d8:9d:a2:0c:f8:87:df:de:
88:ae:07:7e:e8:42:f1:c5:ae:c7:56:a4:57:0a:0b:5c:72:2a:
08:7c:ee:f0:38:51:47:4a:10:6c:77:b9:1b:85:32:54:c0:f7:
5b:f2:d2:05:36:65:fa:d5:7b:4e:1c:10:85:94:d9:2b:1b:e6:
da:a3:4b:e6:26:9f:95:fa:97:22:b0:3d:14:d6:52:46:bc:3d:
e0:e8:9b:07:70:78:a1:80:59:55:f0:e7:e5:10:5d:b7:0f:87:
a6:9a:08:64:4c:fa:89:c5:84:66:05:ad:6c:c3:5d:a2:f9:8b:
1b:a5:be:03:6c:b9:39:12:4e:00:e1:0e:85:c4:ed:8d:47:81:
47:26:d3:d5:63:04:ea:9f:c0:d1:bf:9c:21:88:bf:5e:a7:30:
1c:d7:38:dc:6f:d3:2f:54:29:bf:d2:04:5c:54:c7:0e:27:aa:
e5:b9:fe:b8:70:5b:f7:cc:94:0e:35:ed:82:70:fa:32:1c:ff:
9a:b3:e5:15:5e:84:ee:36:75:27:b4:af:a6:21:b4:58:dc:ad:
bd:c6:5c:b3:8f:af:63:f9:ec:56:1f:95:35:a0:d8:aa:c1:14:
a4:37:2b:13:5b:5f:5e:7e:af:f3:e1:ff:9d:83:1c:16:39:7d:
2d:13:ea:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org