Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa
File: 1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa (raw, json)
Hash identifier: qWuDVvwyyfEdi+nKsQ7GB+PW1eeyy7FYqzFuyHleP/o=
Subject key identifier: D5:49:39:94:05:23:8F:F3:AD:E1:EE:D3:B5:3B:1E:8C:85:CB:CC:F4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A86
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa
Signing time: Fri 01 Sep 2023 10:08:01 +0000
ROA not before: Fri 01 Sep 2023 10:08:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.194.232.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10886 (0x2a86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D549399405238FF3ADE1EED3B53B1E8C85CBCCF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c9:07:83:71:33:c3:ef:b7:d5:0c:7a:8d:6f:
08:f6:d2:c6:7a:f0:83:0a:65:c0:aa:61:53:60:a6:
c5:ea:8d:4a:0c:97:b9:8e:13:8c:72:b3:fb:d1:0c:
28:ad:53:0a:36:35:4a:fa:df:d3:41:d5:39:cc:9a:
99:ea:22:c1:ff:e3:a0:89:e8:e1:90:88:fe:c8:86:
64:03:8a:c0:51:1a:a7:9c:02:d2:27:05:65:5d:cc:
8d:3b:64:a6:38:58:45:86:3e:84:c6:06:3a:dc:c8:
93:30:d1:33:1e:b3:66:4f:44:7a:24:48:0b:fe:a5:
a1:5b:87:06:2f:3c:5f:ad:16:3d:18:b8:82:79:9d:
3a:d1:9e:a1:df:40:b0:b7:fa:28:8a:64:a6:6f:8b:
ff:6c:ac:46:27:06:4b:84:e2:cb:ef:c0:71:e7:1b:
91:66:3e:ff:e9:91:e0:29:52:48:4d:27:39:73:2f:
4c:0c:d7:03:50:fe:2e:db:e8:b6:87:3e:b8:c6:90:
b2:5a:b6:a9:b1:b4:9b:10:79:fe:f0:ab:ac:66:95:
7f:70:fe:fd:d4:ac:b9:71:bf:2b:18:63:e4:26:0d:
26:6c:f3:c6:7f:7a:07:90:85:09:d3:90:f3:63:ac:
c6:ff:f1:70:3a:35:25:12:30:ae:62:4f:90:65:d3:
51:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:49:39:94:05:23:8F:F3:AD:E1:EE:D3:B5:3B:1E:8C:85:CB:CC:F4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.232.0/22
Signature Algorithm: sha256WithRSAEncryption
71:9d:b7:8a:66:8e:4f:0f:23:e4:c9:41:58:06:8b:0a:17:be:
68:24:8f:aa:d7:98:c8:9a:03:4f:02:04:3e:5d:f7:97:e8:7f:
1c:b8:27:bb:6c:f3:90:97:9e:60:7d:1e:00:e0:3b:5a:da:9a:
9a:29:64:c1:2c:9f:6a:2f:e7:20:ac:91:22:6d:a3:38:cf:02:
71:3e:00:58:4d:1c:53:e6:4a:76:7c:d3:fb:18:40:12:cb:fd:
d2:1d:37:79:b7:ce:78:60:94:c6:37:3c:d5:45:06:42:05:05:
69:b3:65:cb:8f:8b:b6:0e:c0:ee:27:73:07:71:e3:1e:ac:a9:
d3:13:d0:bb:bd:bd:2e:09:1f:30:bd:ea:b8:68:88:64:99:77:
de:71:d4:10:82:28:9c:41:20:8e:7e:83:22:de:70:1c:f5:5c:
4f:a6:04:a3:fa:5f:fb:64:2b:9f:d6:83:a5:14:09:c1:72:f2:
43:ec:50:b2:71:52:6e:30:89:1b:da:ee:1f:94:0a:42:6f:f0:
f0:5e:1e:4d:38:4f:74:32:4d:41:7a:92:2a:cc:8c:e4:cd:40:
be:62:ae:c3:a2:bb:6a:74:63:7e:cc:fd:96:c2:ad:67:94:48:
74:1a:1f:dc:51:a4:d0:0b:40:63:8d:8a:29:d4:61:a6:7b:08:
c7:77:83:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org