Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa
File: 6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa (raw, json)
Hash identifier: 22nWlXGqY4gMY7lQlCp8zrjRwBImbn/xzQBXaabwYkU=
Subject key identifier: EB:08:6B:9E:1D:31:DC:8A:AE:F9:31:A4:CD:BF:CE:00:0D:C8:AF:C6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 27C8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa
Signing time: Fri 01 Sep 2023 10:04:32 +0000
ROA not before: Fri 01 Sep 2023 10:04:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.237.0/25 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10184 (0x27c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EB086B9E1D31DC8AAEF931A4CDBFCE000DC8AFC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7b:b0:41:c7:b2:e5:b2:96:79:25:16:2d:0a:
b8:b2:2c:d3:f0:a6:0a:83:c8:b6:52:29:6e:c2:f0:
18:55:b0:d2:10:b3:e5:f7:c3:52:a0:33:6b:12:f5:
18:e3:2a:6c:e8:43:af:32:e3:6c:66:1f:83:4f:d2:
16:b0:fa:71:ec:83:b2:d2:e3:6e:b0:90:0a:b4:69:
6f:f3:df:c9:fb:c8:27:32:33:c2:10:4e:4f:1d:7f:
6a:82:5e:2b:6a:02:dc:fc:d4:da:1a:26:45:40:b8:
a9:a4:ad:df:15:c6:c5:ef:39:22:9f:08:c1:f2:e7:
3a:97:d7:b1:15:76:69:45:50:5b:48:9e:21:e2:e7:
d6:64:45:05:ca:6f:b9:3f:aa:df:49:f9:ca:3d:8d:
eb:86:c5:25:0d:85:8a:e2:1f:3a:e9:e7:94:f7:09:
79:83:e7:dd:7c:69:9b:c8:56:ff:50:89:ae:f0:be:
53:ef:9e:36:d9:44:10:f9:db:ea:4f:f2:f5:e1:b4:
ef:bf:4e:81:ab:f4:c0:0b:27:8e:e9:49:f7:48:08:
1e:60:e0:11:9b:0a:47:05:51:11:b6:45:7d:f9:d8:
40:f9:56:dc:f2:55:3f:80:70:41:d3:a1:7d:45:fd:
8d:6e:2c:10:85:5a:58:d7:ee:bc:1f:d8:6b:eb:ad:
a2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:08:6B:9E:1D:31:DC:8A:AE:F9:31:A4:CD:BF:CE:00:0D:C8:AF:C6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.237.0/25
Signature Algorithm: sha256WithRSAEncryption
ae:14:5d:36:dd:6c:04:43:85:ad:fd:52:9a:2f:78:5c:68:24:
41:de:90:14:bb:d3:d8:e5:88:58:61:1b:77:c7:29:17:41:78:
cb:9a:02:6d:cc:cd:1b:f1:94:f7:8d:b5:44:27:57:be:fd:71:
79:67:df:20:c5:a8:59:00:f0:f9:27:63:36:d2:ec:d2:7d:50:
c3:16:22:67:98:db:d0:b3:9d:18:48:4f:50:15:c3:b6:2a:9c:
b1:a3:95:c2:6a:b8:bc:7a:28:2b:e2:9b:e5:08:3d:ba:d6:e1:
4d:6d:e9:21:8b:34:4b:11:ed:56:d9:87:37:91:52:4e:25:1a:
46:04:61:0b:e8:88:a6:0c:fe:c5:6d:42:8c:2e:77:ae:78:b9:
05:f2:b2:a0:45:a6:31:9d:f7:72:38:a7:86:b1:33:94:12:a5:
ea:e3:7e:42:89:6d:e3:c0:08:5e:28:dc:80:dc:5a:26:9c:be:
67:2a:74:12:55:9e:73:7b:1c:b9:74:f4:2e:6a:23:9c:a4:59:
2a:f8:5f:04:49:8b:0d:32:47:bf:ea:46:8a:29:6a:44:0e:c0:
38:64:4c:13:eb:24:f1:87:8b:a7:f3:c1:d7:79:48:1c:c9:9b:
85:1e:dc:8f:f5:cb:37:75:58:f9:96:56:e8:75:60:a6:04:33:
e7:42:26:fb
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICJ8gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA0MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVCMDg2QjlFMUQzMURD
OEFBRUY5MzFBNENEQkZDRTAwMERDOEFGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/e7BBx7LlspZ5JRYtCriyLNPwpgqDyLZSKW7C8BhVsNIQs+X3
w1KgM2sS9RjjKmzoQ68y42xmH4NP0haw+nHsg7LS426wkAq0aW/z38n7yCcyM8IQ
Tk8df2qCXitqAtz81NoaJkVAuKmkrd8VxsXvOSKfCMHy5zqX17EVdmlFUFtIniHi
59ZkRQXKb7k/qt9J+co9jeuGxSUNhYriHzrp55T3CXmD5918aZvIVv9Qia7wvlPv
njbZRBD52+pP8vXhtO+/ToGr9MALJ47pSfdICB5g4BGbCkcFURG2RX352ED5Vtzy
VT+AcEHToX1F/Y1uLBCFWljX7rwf2GvrraIhAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU6whrnh0x3Iqu+TGkzb/OAA3Ir8YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZ3aHJuaDB4M0lxdS1UR2t6
Yl9PQUEzSXI4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQd7
w+0AMA0GCSqGSIb3DQEBCwUAA4IBAQCuFF023WwEQ4Wt/VKaL3hcaCRB3pAUu9PY
5YhYYRt3xykXQXjLmgJtzM0b8ZT3jbVEJ1e+/XF5Z98gxahZAPD5J2M20uzSfVDD
FiJnmNvQs50YSE9QFcO2Kpyxo5XCari8eigr4pvlCD261uFNbekhizRLEe1W2Yc3
kVJOJRpGBGEL6IimDP7FbUKMLneueLkF8rKgRaYxnfdyOKeGsTOUEqXq435CiW3j
wAheKNyA3FomnL5nKnQSVZ5zexy5dPQuaiOcpFkq+F8ESYsNMke/6kaKKWpEDsA4
ZEwT6yTxh4un88HXeUgcyZuFHtyP9cs3dVj5llbodWCmBDPnQib7
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org