Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa
File: 3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa (raw, json)
Hash identifier: 7LN9AfC680I15amO1/PxtUllX+fFMJQNNO0j+rWrDH4=
Subject key identifier: DC:0F:48:58:9A:31:53:75:4A:77:E3:70:E4:7E:19:77:1E:B3:22:95
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A85
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa
Signing time: Fri 01 Sep 2023 10:08:00 +0000
ROA not before: Fri 01 Sep 2023 10:08:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.160.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10885 (0x2a85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DC0F48589A3153754A77E370E47E19771EB32295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f5:3a:41:38:7e:85:2f:a4:31:06:fb:dc:52:
31:81:10:e8:0d:e0:6f:a8:19:24:2b:f7:94:f8:6b:
35:92:49:0b:01:85:3e:6a:21:4a:4a:ff:2d:f3:2f:
2b:ba:fd:0d:4b:12:a7:ad:4f:ab:32:73:14:c6:65:
35:9f:e0:01:9f:ca:3c:ed:46:76:64:db:d3:4e:f4:
0a:e9:06:b2:32:40:3c:99:c0:77:87:dc:9a:90:e8:
c8:5b:b6:e9:66:7c:22:70:c4:82:e3:2f:2e:d9:92:
08:b9:e0:fb:6c:ae:fd:d5:09:0f:8d:79:34:a4:6a:
a8:7e:27:cf:cb:26:fc:da:92:50:ff:32:4f:6c:99:
f9:a5:eb:77:5e:79:ee:38:ff:bc:d4:85:a9:6e:71:
9c:4e:3b:d9:d3:ff:be:b6:b8:76:f4:25:ae:7d:64:
7d:c0:69:24:8f:7a:82:f2:ac:19:77:73:f6:c7:77:
14:35:9c:39:47:03:ad:b6:e8:a2:39:d1:38:df:8c:
c8:86:2d:02:cb:8c:f9:76:55:6c:c0:64:d3:85:a4:
48:0a:43:c3:cd:45:5a:88:4d:6c:9a:5c:05:39:0e:
6d:41:bd:1a:82:46:e0:b7:8b:7f:1b:c2:24:4f:5e:
14:d8:4f:b9:7c:64:e5:6e:a2:b7:f3:80:bc:ec:89:
94:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0F:48:58:9A:31:53:75:4A:77:E3:70:E4:7E:19:77:1E:B3:22:95
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.160.0/21
Signature Algorithm: sha256WithRSAEncryption
32:2e:cf:d9:5b:5b:63:47:29:ab:17:83:0c:c6:92:8b:0d:80:
e2:0f:a6:4a:5a:c3:73:c4:eb:14:48:75:1c:ed:3d:12:79:f0:
e2:86:26:0f:80:e0:57:15:34:ca:ee:3c:1a:e0:ac:cd:eb:76:
05:9e:65:6a:ed:99:fb:55:4b:35:aa:60:0a:39:d9:72:0a:74:
d7:c3:2b:35:e9:64:b1:cd:14:6e:45:19:5d:51:d2:c0:d6:d6:
40:92:8e:c2:1f:cb:60:5e:90:48:b9:d6:5c:85:d6:d0:cc:31:
e8:a3:69:9c:5c:8e:af:ca:0b:9a:ec:7d:77:a8:b7:16:2a:4d:
b6:8c:44:2a:20:3f:8c:ea:c1:b2:c0:80:86:84:28:f8:85:5f:
eb:dd:a8:c6:86:63:61:9e:98:fe:32:80:3b:5a:89:e8:9a:be:
ff:6e:89:4c:76:20:aa:36:fe:cd:a6:a7:dd:29:01:5f:ce:43:
28:bd:37:6a:db:91:59:7e:58:e3:bd:77:27:fe:db:8e:98:74:
90:4e:f5:77:6f:3f:5f:76:1d:37:a5:87:05:4f:9f:fb:94:e8:
6c:ac:d3:fa:1a:55:f0:e7:4f:6e:8b:cc:91:c9:30:be:04:e5:
7a:74:d5:66:aa:9d:2e:90:d5:96:11:4b:f5:ac:d6:65:3c:ad:
69:29:61:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org