Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9CzEx4u7IvbtPt2QokGfF58u86o.roa
File: 9CzEx4u7IvbtPt2QokGfF58u86o.roa (raw, json)
Hash identifier: Ubc0dQ/v6LZzI8cdTF5Fp6t10cLJ5arSbXM7pB3m+do=
Subject key identifier: F4:2C:C4:C7:8B:BB:22:F6:ED:3E:DD:90:A2:41:9F:17:9F:2E:F3:AA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A2F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9CzEx4u7IvbtPt2QokGfF58u86o.roa
Signing time: Fri 01 Sep 2023 10:07:36 +0000
ROA not before: Fri 01 Sep 2023 10:07:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.96.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10799 (0x2a2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F42CC4C78BBB22F6ED3EDD90A2419F179F2EF3AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:92:0c:fd:7c:08:9a:71:9b:5a:5b:38:d9:e1:
e7:9b:1f:97:bd:ef:3d:83:e4:3f:4b:b2:1a:55:ef:
e1:28:9d:82:38:5c:1e:29:fd:e1:06:a3:e0:a2:80:
f0:22:ca:56:61:18:b6:07:0a:69:de:b4:f4:41:0a:
34:ab:25:29:94:fc:81:53:7e:19:31:f8:d0:e8:29:
ba:4c:4d:71:f9:d4:c6:a0:97:c9:0b:cd:44:5e:1d:
ce:bd:01:86:0f:29:45:46:a4:8e:64:4d:f8:b0:81:
59:30:21:5a:bf:cc:22:84:af:da:ed:0a:4e:30:d7:
ad:49:47:e1:b4:96:92:56:a2:e2:d3:5e:b9:2c:17:
81:af:a5:07:50:15:88:a4:e8:1a:9c:c3:c3:5e:e8:
f8:e4:0d:79:da:b4:e6:c1:fe:b9:c6:64:5b:78:ec:
2a:36:10:c2:a4:12:4d:68:29:82:49:f2:7d:e4:b5:
41:ac:2b:f8:a2:19:bc:ac:cd:c7:d8:b8:ae:11:3c:
5d:e4:a5:17:8b:ca:a8:6c:7d:cb:3e:d8:44:eb:57:
cc:3d:d8:b8:ff:69:7b:ee:9f:72:f6:46:2d:09:82:
75:e5:03:f5:d3:49:7a:bf:90:17:17:ff:ed:6e:2c:
04:d2:dc:85:49:bb:12:3b:40:8b:66:8d:22:45:f4:
ef:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2C:C4:C7:8B:BB:22:F6:ED:3E:DD:90:A2:41:9F:17:9F:2E:F3:AA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9CzEx4u7IvbtPt2QokGfF58u86o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.96.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:25:5b:55:28:e3:19:f8:d8:9c:8c:28:72:15:2e:4d:c0:53:
50:25:cd:3e:c2:af:fc:aa:39:c9:e5:0d:b0:f2:97:1a:36:d2:
42:52:3a:e3:fb:55:51:2d:d4:7a:50:1e:a6:95:f0:73:e0:02:
ef:74:e0:eb:be:73:3b:50:f9:0c:86:61:dc:9c:51:c3:9b:81:
41:1b:1a:9a:ce:25:c5:7d:82:4b:90:27:9d:0f:de:82:bb:f5:
b8:27:be:02:95:ff:38:58:cb:ae:34:95:48:d9:9b:63:fd:05:
89:0b:1a:24:24:68:a0:25:2b:2b:43:bd:d4:3a:05:85:70:f4:
87:94:b1:5c:07:11:e1:b9:4f:4b:75:ac:f0:01:69:ef:0c:95:
42:6e:8e:59:8c:0f:e3:61:a4:b3:39:95:44:45:c8:a1:b5:a8:
94:1d:c9:72:90:76:26:e2:36:ef:13:44:69:80:97:9f:6f:f2:
15:d9:16:7d:66:14:6e:a8:b9:a9:e8:60:f0:f3:a1:34:19:04:
96:fb:c3:f7:6f:5f:be:6f:21:83:88:ca:0f:6a:ca:a6:49:24:
5c:31:c1:7c:f5:42:e5:7d:db:ae:11:8f:4c:0c:08:6d:d2:74:
41:a5:b9:b8:52:20:fc:91:04:03:6a:66:44:75:65:85:75:3e:
dc:1b:21:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org