Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3fLF5oLapkcNRH8L3oYilSI64oA.roa
File: 3fLF5oLapkcNRH8L3oYilSI64oA.roa (raw, json)
Hash identifier: ou3uaRP8wYzoQgUFId9f74pNyeODO+NlEMw2t0FbV1I=
Subject key identifier: DD:F2:C5:E6:82:DA:A6:47:0D:44:7F:0B:DE:86:22:95:22:3A:E2:80
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AB6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3fLF5oLapkcNRH8L3oYilSI64oA.roa
Signing time: Fri 01 Sep 2023 10:08:13 +0000
ROA not before: Fri 01 Sep 2023 10:08:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 211.76.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10934 (0x2ab6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DDF2C5E682DAA6470D447F0BDE862295223AE280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bf:6e:4e:5c:94:39:51:e7:c9:a2:81:75:57:
e8:11:ed:79:b8:f3:d9:33:42:9a:0c:de:97:46:66:
10:25:e1:32:c4:05:a8:ec:f7:51:c8:17:04:7b:48:
c9:c7:ea:b4:32:29:41:61:44:4c:28:2c:59:51:4f:
b0:9c:f9:62:57:d8:0b:40:b4:26:b7:23:8f:be:d6:
8b:5d:e2:1f:89:7a:82:63:7e:3e:22:59:67:e9:64:
c4:fc:87:f0:bb:7c:2b:5f:f0:c2:9c:9b:09:11:69:
3b:64:3e:14:68:81:1e:b8:bd:a5:26:8e:a2:cd:f3:
2b:c5:f6:35:4e:e1:08:aa:f0:bd:9c:fe:f1:a2:63:
0a:ce:90:36:1d:d6:3f:87:3d:f5:ab:43:9d:f3:bb:
9c:a4:75:5d:e6:29:ee:d9:54:ce:b6:21:aa:93:cd:
48:0c:90:a3:4b:af:8e:69:1e:27:60:4e:2c:fe:e8:
aa:d0:1f:b5:f0:3e:ab:3e:01:2d:e0:28:18:af:45:
1a:19:4f:32:5e:c0:00:d7:1d:c6:40:93:08:cf:c6:
fc:c2:63:a7:3d:c0:65:dc:81:e1:14:f7:81:95:da:
60:76:46:e7:ac:e1:a2:48:4f:32:f6:11:d2:f9:b8:
a1:75:df:d3:75:a3:5b:96:7f:88:2b:51:c4:9d:ca:
90:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F2:C5:E6:82:DA:A6:47:0D:44:7F:0B:DE:86:22:95:22:3A:E2:80
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3fLF5oLapkcNRH8L3oYilSI64oA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.116.0/24
Signature Algorithm: sha256WithRSAEncryption
12:c4:b5:94:af:0c:0d:d9:f9:87:ca:c2:38:74:8d:7a:dd:3c:
9c:36:ce:18:7a:82:fd:d8:d9:bf:29:a1:cc:b1:bd:cf:6d:eb:
05:1a:82:13:5a:94:32:87:0a:ee:99:ba:69:de:35:e5:c0:5d:
1b:b5:7a:06:d8:a3:4f:4e:03:2c:df:f2:14:99:60:92:54:c0:
b0:50:a7:fa:1a:16:85:d5:50:0c:c3:6b:93:a7:8d:c0:60:78:
31:d5:fb:49:20:3d:89:45:a1:4f:ae:85:c9:d3:48:fd:70:9d:
09:04:c5:6a:f6:c1:fb:d0:12:2a:65:cc:36:46:00:e6:f1:0f:
0f:10:95:66:f9:df:c0:41:dd:13:5f:58:98:d0:ef:15:47:09:
b5:65:37:e5:23:e9:96:43:eb:37:17:f7:b8:6b:a6:3e:4f:2b:
5d:ca:b8:91:ef:f7:65:7e:93:c5:6a:2d:02:48:2d:d7:34:81:
a0:05:8c:a3:24:40:49:45:00:8b:f7:cb:56:de:90:85:f9:e7:
06:3b:44:f9:f7:92:d5:eb:21:89:1d:5b:55:0c:93:e0:5a:17:
85:c1:89:69:2f:e1:e4:d5:1a:c8:ee:af:b6:df:0a:b0:6f:bb:
e3:70:be:dc:74:f1:01:73:ec:35:cc:ca:23:5b:42:f4:3e:2a:
ab:3e:34:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org