Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa
File: 2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa (raw, json)
Hash identifier: SHmTW2KtypEbNVR1+RGL2Pg5Jj/tC5n+Umr9AwsE/NI=
Subject key identifier: D8:9D:73:51:15:87:5D:20:94:18:72:A5:18:0C:A5:AB:E4:63:ED:17
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 287B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa
Signing time: Fri 01 Sep 2023 10:05:24 +0000
ROA not before: Fri 01 Sep 2023 10:05:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.180.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10363 (0x287b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D89D735115875D20941872A5180CA5ABE463ED17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:93:d6:07:6f:0d:7c:a1:6e:c6:7d:e5:21:7b:
68:02:e5:77:5d:bc:28:dd:2b:a5:e0:5e:8c:5d:17:
f4:bf:e9:a2:17:5f:7a:d0:43:f8:8a:ed:05:bf:be:
85:e7:00:9d:90:16:d8:50:52:88:85:cb:6a:09:f2:
90:7c:bb:8f:6d:3b:b1:ab:d1:b8:81:c2:6d:bf:1a:
2a:cd:6c:e6:03:15:f5:0b:4c:af:b3:9d:e3:be:05:
6d:a7:71:8a:d9:ac:47:29:36:4e:d7:cb:76:42:7e:
6d:f5:1d:6f:6d:16:ff:b7:ef:d8:4a:b0:37:92:ab:
25:f4:3c:bd:b8:76:01:9c:7a:73:11:7d:d2:1f:44:
f5:1e:cc:cd:6f:dd:e6:d3:0b:d8:17:0d:10:7a:a5:
4c:10:f8:f0:c7:83:5a:76:98:0c:b6:de:84:ac:a3:
3d:8b:e0:e8:65:df:ea:59:0b:d6:c0:c3:07:12:ff:
a2:3a:d4:7a:e2:95:dc:18:c6:eb:d7:fe:7f:2b:0a:
bf:d2:6a:30:02:0a:b9:71:1c:34:20:0e:8e:4d:de:
16:2e:42:67:be:a7:52:2a:aa:fa:ef:3c:2c:76:67:
5d:11:e7:03:62:9e:26:46:b3:83:69:b4:0e:3b:59:
e8:f5:5f:2f:ea:f1:26:3e:5c:8f:eb:1c:71:76:10:
f8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9D:73:51:15:87:5D:20:94:18:72:A5:18:0C:A5:AB:E4:63:ED:17
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.180.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:e3:01:00:77:cd:cd:16:f8:eb:05:d2:7d:51:b4:f0:34:36:
3e:99:a0:6b:65:5f:7a:c9:a7:b8:96:fc:89:52:e7:9f:4e:28:
7d:1b:d0:99:30:dc:8f:a6:18:5b:e1:de:1a:a1:99:3e:1e:ad:
46:67:c7:17:c5:27:7f:b0:d3:cc:54:b8:d4:4d:bc:d0:1a:70:
1f:53:2b:ce:29:49:58:2f:a3:c9:4b:f5:6e:51:d2:b4:a8:b9:
96:2d:f6:81:00:e2:1b:d4:97:06:2d:7d:c7:6c:75:2c:ea:0c:
04:96:81:de:74:dd:f4:0f:5b:a0:92:b1:76:4e:a8:c1:27:a0:
14:e8:9f:80:04:01:98:51:ae:4a:69:de:db:28:c3:ef:17:47:
c1:49:4f:49:4e:4d:cb:34:6e:5b:e5:3d:52:fd:22:6d:d7:ef:
41:d5:95:46:af:fe:86:1d:f1:29:dd:13:73:31:02:70:48:68:
38:68:74:f6:08:7e:04:08:72:f2:9c:26:e2:b6:b2:8e:19:4f:
bf:19:b7:2c:19:2b:a0:4f:d9:a1:ef:08:3d:87:6d:7f:97:37:
aa:1b:91:16:aa:c3:43:2b:d3:cb:0d:43:0e:45:78:75:63:0f:
5a:97:a9:9a:74:d6:32:cf:82:fd:2b:68:20:22:26:3c:78:dc:
39:34:93:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org