Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5YxXnFRjdR0oPBtvcHcak9uAd7U.roa
File: 5YxXnFRjdR0oPBtvcHcak9uAd7U.roa (raw, json)
Hash identifier: dI03PdDM8DM+Tg+1HROOMWurLxbq1iqsci5xVNKQrV4=
Subject key identifier: E5:8C:57:9C:54:63:75:1D:28:3C:1B:6F:70:77:1A:93:DB:80:77:B5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2948
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5YxXnFRjdR0oPBtvcHcak9uAd7U.roa
Signing time: Fri 01 Sep 2023 10:06:21 +0000
ROA not before: Fri 01 Sep 2023 10:06:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.194.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10568 (0x2948)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E58C579C5463751D283C1B6F70771A93DB8077B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:69:2d:06:fb:d5:ff:98:11:d7:e9:77:5e:e1:
ed:8d:d2:66:c6:a1:21:18:e3:7a:93:2d:c6:32:04:
7e:eb:c4:e8:12:31:e4:74:65:ad:65:f8:04:53:46:
35:ce:02:c7:15:60:ee:25:73:b2:e5:0e:a9:bb:c3:
e8:6c:80:0d:b2:2f:b9:11:19:05:4b:af:8a:2a:1c:
bb:dc:5f:c8:39:1b:0e:48:ee:7b:b8:00:ae:9f:58:
be:59:5d:18:0a:61:ba:4a:d2:e0:16:52:59:d9:48:
4d:33:6d:79:b9:cb:2f:f4:94:e6:6c:30:90:ce:7b:
f0:da:81:87:e9:60:b6:c4:8c:eb:5d:e2:ff:59:f6:
f4:44:7c:75:54:00:fa:52:5a:01:d3:5f:38:fa:84:
5d:7c:a0:55:1b:7f:8c:96:9c:bf:f2:45:9f:d6:59:
d7:4c:da:21:63:52:40:49:52:17:39:f5:da:21:9a:
34:1e:35:29:1e:e2:73:47:dd:c1:db:1c:5d:a9:19:
f7:ac:34:c6:85:b8:79:a0:11:5f:3a:ae:cc:7e:d7:
4d:03:fb:b4:c4:ee:ec:19:a4:cb:f7:d6:6b:da:e8:
23:63:f0:56:24:63:28:85:67:b5:4c:21:fb:34:fd:
86:db:2b:ed:75:78:7c:3c:5a:f3:17:fa:6f:6e:c7:
ca:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8C:57:9C:54:63:75:1D:28:3C:1B:6F:70:77:1A:93:DB:80:77:B5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5YxXnFRjdR0oPBtvcHcak9uAd7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.204.0/23
Signature Algorithm: sha256WithRSAEncryption
35:4e:56:6f:27:cf:d0:f4:87:bd:14:53:fc:8b:be:1b:78:c4:
12:1a:b6:a7:77:11:de:80:f8:e4:67:90:27:4f:59:d0:90:d9:
30:c1:99:99:88:f4:19:e9:15:e9:fb:56:11:90:54:5a:5f:a0:
43:be:29:3b:17:20:ef:72:d1:6d:89:5e:47:cc:0c:29:35:c0:
72:3a:55:70:43:b4:5c:fb:b8:83:9e:4f:6c:b2:ae:24:2d:ef:
b6:2d:5c:95:1b:e8:6a:6a:d1:b3:b7:e6:df:1c:51:92:f5:b0:
30:e2:17:9a:41:a9:ca:d9:50:a0:e0:c6:e8:77:59:88:87:c0:
37:6d:88:e3:23:94:c9:d8:da:0c:21:e0:ac:e5:cb:a2:a1:0c:
07:27:f9:87:d2:d4:fc:ae:02:ea:f1:23:e9:11:31:a1:6e:f5:
52:15:2d:16:3c:9a:cb:d2:c8:7a:bb:65:51:1c:d0:26:76:5e:
7b:8c:42:14:23:97:bd:77:73:cc:46:d9:15:ff:0b:c7:ff:0f:
ab:e5:57:40:45:cc:5a:3d:fe:ea:7f:24:ae:8f:ad:f1:f6:fe:
56:4c:ea:7a:35:6a:25:6b:9a:00:c7:7e:f5:4a:3b:cf:5f:49:
2d:ed:62:1c:c7:f7:9e:00:c8:d9:d8:7d:70:66:44:eb:6a:26:
0c:76:a9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org