Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3zjVMm-DmdKjlD9uPqEdk109qns.roa
File: 3zjVMm-DmdKjlD9uPqEdk109qns.roa (raw, json)
Hash identifier: g2saRdov33iBji0ZPc7OOxv3x2N/Yjhe3Lx7JJpCzpY=
Subject key identifier: DF:38:D5:32:6F:83:99:D2:A3:94:3F:6E:3E:A1:1D:93:5D:3D:AA:7B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A63
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3zjVMm-DmdKjlD9uPqEdk109qns.roa
Signing time: Fri 01 Sep 2023 10:07:51 +0000
ROA not before: Fri 01 Sep 2023 10:07:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.40.0/21 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10851 (0x2a63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DF38D5326F8399D2A3943F6E3EA11D935D3DAA7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:87:86:72:2a:66:93:2f:76:e1:7d:47:ff:
39:9c:4c:f2:0f:06:5b:4e:db:45:d0:29:e6:d3:79:
a1:06:d0:2d:c9:13:39:37:a7:af:cf:90:e3:fe:c5:
01:46:ec:ac:4e:0a:35:7a:b1:dd:09:e2:c1:f0:81:
30:51:a2:e0:aa:46:fd:0c:15:40:3b:6b:62:8d:2b:
8b:7d:11:aa:16:a4:a4:d3:32:0d:b4:e4:20:11:23:
bc:9b:cb:ab:02:3b:60:67:29:ff:cb:80:58:13:68:
c2:4d:fe:d9:df:90:03:bc:92:cb:e3:0b:63:95:bf:
d2:75:a6:11:fa:e4:44:1b:f9:78:63:ae:60:e7:f2:
6e:e4:db:72:08:c5:50:94:68:be:55:ec:3b:32:ed:
25:0d:1f:f7:5a:6d:83:19:4b:86:76:3e:22:a2:9c:
e8:09:2b:b9:75:a7:ac:70:77:a9:39:e5:26:0a:b0:
02:d7:d6:f3:36:3a:84:31:d9:a5:8e:2b:a1:f6:95:
ce:94:00:77:db:aa:8c:a9:ac:a2:67:a8:92:22:86:
0c:35:ff:25:0a:47:1b:df:27:17:33:47:05:76:a6:
ac:82:9a:98:86:be:e1:3d:26:8f:ea:ea:ae:85:ca:
1e:33:6b:ee:f3:ef:e5:fc:0b:77:09:b3:31:55:a1:
bf:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:38:D5:32:6F:83:99:D2:A3:94:3F:6E:3E:A1:1D:93:5D:3D:AA:7B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3zjVMm-DmdKjlD9uPqEdk109qns.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.40.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:2b:6f:51:ef:00:33:2b:3b:e7:ed:d1:35:30:9c:00:63:9d:
56:da:b2:00:3b:5a:96:51:bb:f7:bb:31:d7:35:6a:a5:f2:e2:
d7:4b:7c:9d:b0:df:67:7e:66:2c:10:67:8d:8a:89:55:3e:21:
86:90:41:94:49:e7:82:62:14:77:9e:a1:19:54:ca:cc:06:57:
8a:61:bf:56:fb:26:a7:a4:3b:b3:7d:3c:2a:47:78:ad:85:fa:
58:8e:77:fb:cc:99:15:bf:72:e7:12:3d:f5:a4:54:30:f9:19:
27:1a:26:0b:df:96:eb:eb:30:cf:8f:ab:b5:10:d0:92:a2:11:
da:40:3f:3a:61:3e:12:45:26:62:21:e5:88:c1:80:36:59:a7:
f1:13:f9:0b:56:5a:9c:91:c0:51:4c:7a:5b:28:f3:99:ed:73:
5a:91:ab:af:7f:d9:a2:11:60:7c:d4:54:e2:8c:fa:94:79:dd:
1d:b4:32:d6:8c:d2:60:fe:92:5f:e4:0d:7f:a7:a0:21:5a:24:
9b:1c:f7:e5:df:d2:8a:58:1a:e3:26:47:d5:4f:18:cc:1c:da:
a3:65:18:17:c1:31:c7:fb:e9:0d:46:90:3b:41:f4:e2:7b:3d:
a9:d2:a3:58:af:3a:c6:36:83:f8:59:99:3e:0a:04:2c:79:2b:
02:3b:12:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org