Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2FOqnhBNcrNRmNKnmIFsySYW3wo.roa
File: 2FOqnhBNcrNRmNKnmIFsySYW3wo.roa (raw, json)
Hash identifier: cqUzxchBQ02R/F8W2erU1QklvmLHcKpjN+KzC5cSFW4=
Subject key identifier: D8:53:AA:9E:10:4D:72:B3:51:98:D2:A7:98:81:6C:C9:26:16:DF:0A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A55
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2FOqnhBNcrNRmNKnmIFsySYW3wo.roa
Signing time: Fri 01 Sep 2023 10:07:47 +0000
ROA not before: Fri 01 Sep 2023 10:07:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10837 (0x2a55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D853AA9E104D72B35198D2A798816CC92616DF0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:b9:60:3b:f9:3b:19:f6:65:49:60:24:38:70:
11:d2:3e:8c:4e:bf:8e:9c:66:ac:5e:89:d7:19:08:
aa:8c:f7:97:9d:a4:3a:ad:b0:d5:23:bf:ea:21:f9:
33:77:ee:08:e3:8f:b9:22:e5:45:c7:11:9d:09:1e:
57:6c:62:fe:cf:78:ac:31:55:10:cd:4d:35:29:ce:
64:9c:ab:d5:e9:9b:24:ba:eb:57:7c:d4:08:cd:1d:
c6:59:ab:c6:ca:ab:4a:38:bc:f6:3f:44:33:06:f1:
48:a3:d1:11:cc:e6:8e:3f:93:7e:e2:89:1b:56:0b:
f1:7a:63:df:9d:29:93:00:02:09:ca:00:85:49:18:
6d:f0:b9:13:c0:31:e3:94:ae:d7:10:e1:c4:65:0a:
82:0a:cf:5f:9c:ac:b8:f2:24:87:7c:bf:c6:f7:e3:
d1:04:b5:64:54:04:7c:cb:02:d1:c7:22:3c:5d:5d:
b3:2a:6c:3a:94:39:2a:1d:69:dd:54:3b:92:f2:b6:
84:f9:c8:d9:62:36:fd:48:62:ee:4d:8a:81:6a:4f:
04:7a:5c:ce:28:f4:43:f9:c8:fb:33:b4:95:93:87:
cd:64:3a:ba:4d:0e:15:a8:63:e6:52:5f:7a:49:50:
b5:81:75:41:fd:c6:1d:f8:a2:a2:72:5c:43:e2:df:
da:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:53:AA:9E:10:4D:72:B3:51:98:D2:A7:98:81:6C:C9:26:16:DF:0A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2FOqnhBNcrNRmNKnmIFsySYW3wo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.24.0/22
Signature Algorithm: sha256WithRSAEncryption
79:7c:71:14:07:3b:fd:53:5d:08:03:9d:a9:f7:65:a3:26:6e:
22:44:24:90:6c:af:15:f8:f5:b2:22:ea:9e:85:43:ae:e0:1b:
ad:a1:4a:c7:23:de:5f:16:a0:8e:50:bd:9b:20:2d:c3:e0:6f:
6b:d4:5b:a2:8d:c6:ca:14:4e:73:0a:e3:cd:04:d7:6f:25:1e:
1d:ce:8d:b1:dd:8e:a1:31:71:fb:8a:be:5a:34:f8:06:a6:96:
08:cb:c8:c1:ec:33:ff:64:04:ad:68:ad:46:b0:76:c4:99:03:
99:ff:3f:58:f5:81:80:33:5a:1d:b9:04:95:8f:c7:92:40:a5:
54:35:26:24:7f:e9:5b:a8:58:89:99:8e:04:77:27:7d:99:0d:
7d:e1:de:3f:1f:2e:b2:51:e8:f6:88:de:87:aa:07:ff:49:3d:
80:52:eb:62:53:54:10:f3:b7:8a:c8:7a:9d:af:36:ae:47:4b:
9c:e7:51:60:d4:b0:df:33:6e:91:4a:cd:bb:22:56:38:d5:38:
ec:a5:c9:0e:29:ce:93:db:51:5e:1d:4d:75:6b:bc:09:f3:ae:
3e:c9:f2:a5:8b:61:4f:42:08:6f:2f:db:2c:94:67:62:39:38:
6e:09:3a:2a:fc:a0:42:eb:07:af:e5:aa:63:79:df:ae:3a:4a:
62:2b:89:62
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA3NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ4NTNBQTlFMTA0RDcy
QjM1MTk4RDJBNzk4ODE2Q0M5MjYxNkRGMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD0uWA7+TsZ9mVJYCQ4cBHSPoxOv46cZqxeidcZCKqM95edpDqt
sNUjv+oh+TN37gjjj7ki5UXHEZ0JHldsYv7PeKwxVRDNTTUpzmScq9XpmyS661d8
1AjNHcZZq8bKq0o4vPY/RDMG8Uij0RHM5o4/k37iiRtWC/F6Y9+dKZMAAgnKAIVJ
GG3wuRPAMeOUrtcQ4cRlCoIKz1+crLjyJId8v8b349EEtWRUBHzLAtHHIjxdXbMq
bDqUOSodad1UO5LytoT5yNliNv1IYu5NioFqTwR6XM4o9EP5yPsztJWTh81kOrpN
DhWoY+ZSX3pJULWBdUH9xh34oqJyXEPi39pVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2FOqnhBNcrNRmNKnmIFsySYW3wowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJGT3FuaEJOY3JOUm1OS25t
SUZzeVNZVzN3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
whgwDQYJKoZIhvcNAQELBQADggEBAHl8cRQHO/1TXQgDnan3ZaMmbiJEJJBsrxX4
9bIi6p6FQ67gG62hSscj3l8WoI5QvZsgLcPgb2vUW6KNxsoUTnMK480E128lHh3O
jbHdjqExcfuKvlo0+AamlgjLyMHsM/9kBK1orUawdsSZA5n/P1j1gYAzWh25BJWP
x5JApVQ1JiR/6VuoWImZjgR3J32ZDX3h3j8fLrJR6PaI3oeqB/9JPYBS62JTVBDz
t4rIep2vNq5HS5znUWDUsN8zbpFKzbsiVjjVOOylyQ4pzpPbUV4dTXVrvAnzrj7J
8qWLYU9CCG8v2yyUZ2I5OG4JOir8oELrB6/lqmN53646SmIriWI=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org