Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7cHpOrfnzthqUK_jbOuH2h9lk9A.roa
File: 7cHpOrfnzthqUK_jbOuH2h9lk9A.roa (raw, json)
Hash identifier: i/t8zt0KV+Iigejs7BGhnRTjcOE/pRiFxa0sAm5yUSI=
Subject key identifier: ED:C1:E9:3A:B7:E7:CE:D8:6A:50:AF:E3:6C:EB:87:DA:1F:65:93:D0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2845
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7cHpOrfnzthqUK_jbOuH2h9lk9A.roa
Signing time: Fri 01 Sep 2023 10:05:09 +0000
ROA not before: Fri 01 Sep 2023 10:05:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 211.76.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10309 (0x2845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EDC1E93AB7E7CED86A50AFE36CEB87DA1F6593D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7e:aa:a0:50:ea:04:2d:4a:66:99:3e:b4:4a:
a8:fb:e0:5c:d8:7d:47:3c:5c:29:80:b2:28:be:5e:
3b:75:ab:57:0b:0c:32:c2:f3:b8:35:d2:e4:8c:66:
97:9c:67:00:c0:84:e0:34:87:c4:4a:9e:db:e7:11:
3f:10:89:77:28:e5:85:8c:b8:ae:77:fa:50:b6:32:
fb:7a:da:aa:37:1a:46:be:d3:96:83:c1:73:ed:53:
b9:95:d0:ed:7a:42:a9:0f:b5:66:e4:3c:d6:c9:10:
30:b6:e1:29:28:ec:ef:ae:9a:61:71:4d:cb:03:8c:
c5:c4:9d:38:2e:83:4d:26:7c:45:80:0f:99:41:b6:
4d:47:2d:2d:4f:5c:f6:30:2b:9b:e6:16:7a:e6:18:
ce:56:35:20:b5:e7:4e:62:2d:44:a8:12:02:3c:c3:
25:41:89:e5:0f:a4:20:4d:8d:90:2f:05:36:3d:34:
a3:87:c5:22:1c:66:17:0c:30:f8:5e:80:60:ba:88:
bf:c8:65:39:4e:82:eb:15:32:57:f3:0c:a7:32:db:
24:01:11:02:79:ad:22:fb:90:e5:fc:b0:9e:3f:49:
13:07:40:41:c8:4b:cd:85:e8:4b:f1:32:3a:3f:07:
b6:b7:a7:54:a7:08:dc:eb:d6:18:88:d4:fa:24:1a:
d9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C1:E9:3A:B7:E7:CE:D8:6A:50:AF:E3:6C:EB:87:DA:1F:65:93:D0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7cHpOrfnzthqUK_jbOuH2h9lk9A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:35:42:b0:8d:11:74:1c:7c:c3:e0:a3:96:c2:9b:84:6c:05:
27:3c:9f:b9:1b:04:70:83:72:52:74:98:d5:5e:79:ac:61:10:
dc:8f:33:23:30:7c:93:96:3a:47:f5:35:43:00:fb:70:32:59:
29:fc:82:45:7b:4f:6f:59:5d:73:d3:45:5a:26:b8:b7:b8:ad:
b1:06:64:12:39:ad:66:7f:1f:c0:55:e7:40:f6:43:a0:20:cb:
f8:ef:78:38:5b:0c:6e:29:ed:80:92:8e:06:54:85:78:66:de:
5e:4c:4b:f6:b1:e7:a7:5c:b5:49:a0:ff:12:9a:16:41:17:15:
e9:36:1d:cd:23:8d:4a:5e:da:10:7a:79:23:36:dd:ae:bb:bd:
0f:1d:13:7f:b3:4b:c0:ea:fc:29:a9:37:1e:0d:4f:4c:59:b7:
38:df:cd:e8:d0:d2:b1:f5:6f:f3:ef:2f:8c:d1:24:30:79:20:
3b:06:95:52:50:7f:f8:4f:b8:c6:fb:3f:1c:8e:e2:20:20:43:
6c:ec:60:de:b9:fa:55:72:25:42:ce:4a:90:58:fd:a1:24:42:
0a:ba:ef:78:70:f0:d2:51:e6:e4:c2:c4:83:63:8e:39:94:cd:
ec:fc:49:b7:e8:b9:ae:56:a8:8c:8d:fd:70:38:10:ab:19:54:
44:ef:1f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org