Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa
File: 9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa (raw, json)
Hash identifier: condLnRMUo3ARdA6ruqJAWJ432VrGKf6QSZXyQBIpNM=
Subject key identifier: F4:81:AE:8F:DB:6F:EA:56:2D:76:1B:E4:52:56:96:EC:5E:AB:49:5C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AF0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa
Signing time: Fri 01 Sep 2023 10:08:27 +0000
ROA not before: Fri 01 Sep 2023 10:08:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10992 (0x2af0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F481AE8FDB6FEA562D761BE4525696EC5EAB495C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1d:9f:9e:61:76:0b:f0:43:ac:61:22:90:32:
b5:14:88:5b:9c:09:a8:e9:bd:c7:87:a7:b2:00:51:
f9:06:3b:2c:8d:59:b5:d7:a0:cc:50:f4:00:04:a7:
dc:47:2b:13:75:06:e5:0f:97:3e:d8:10:5e:6d:8b:
a7:e0:d1:2a:bf:c1:b4:15:81:60:25:4d:37:c6:7b:
d9:9c:f3:0e:95:dc:91:ad:47:3b:01:46:56:4d:7c:
7d:7e:f5:76:7f:f1:6c:a0:0e:99:a0:60:68:36:6f:
12:ae:cd:2c:b7:08:f1:69:45:46:82:ea:91:44:09:
f0:ea:c4:e9:a8:f2:91:ac:4e:f8:8b:e9:11:c8:20:
71:c2:f9:ce:56:c5:df:dd:b3:53:81:38:4a:dd:46:
f4:58:61:34:26:68:56:b7:3d:04:f0:77:1d:60:52:
82:51:50:66:ac:87:8b:59:41:e1:da:52:e8:98:4d:
da:5a:fd:12:88:cb:41:b8:77:87:b0:21:55:97:92:
bf:02:2f:2f:a4:be:d6:94:c9:9e:d6:2c:35:c1:c5:
44:60:e0:2e:36:2a:39:17:06:0e:a5:5d:6c:6e:eb:
68:bc:52:a8:99:ce:0a:4b:23:33:b4:45:1e:27:f9:
8e:9a:de:e8:22:e5:7e:9b:5a:05:44:52:21:3f:3c:
d8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:81:AE:8F:DB:6F:EA:56:2D:76:1B:E4:52:56:96:EC:5E:AB:49:5C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.88.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:3f:8d:ad:24:6a:6a:f4:d8:0d:42:97:47:dc:dd:3a:7d:1d:
c4:d7:d9:55:e1:6a:52:af:7a:bf:29:b5:7f:b9:c0:a3:32:b4:
96:96:04:36:f3:0f:4e:59:b5:88:c8:77:96:63:9a:2e:a1:ab:
cd:c2:af:27:8f:59:e1:d3:74:ac:17:27:9e:13:db:fc:ca:5d:
c3:3c:1e:d7:06:82:f5:a7:8f:ce:59:de:48:1a:68:9d:90:36:
51:5a:5e:ab:65:bf:d8:b3:f8:78:b2:54:07:ef:18:cc:53:ca:
37:3e:79:e7:7b:43:7f:35:46:4e:9a:73:a2:0d:32:ff:eb:dd:
59:61:90:18:9f:cb:39:b6:27:50:53:88:61:9c:11:f2:66:62:
26:43:b0:27:cb:97:49:09:84:38:b5:70:21:67:a1:ad:03:37:
a6:fd:02:3a:5e:fd:a7:23:cb:0f:28:aa:4a:01:7d:74:fb:bc:
7b:76:9f:41:bb:53:10:b4:b6:17:65:62:46:6a:f8:4a:33:8c:
46:d8:12:1e:46:c8:e5:19:c5:27:7b:c3:bf:d2:19:56:45:ad:
4e:1b:a4:b4:e1:90:5f:77:5a:8f:e2:ce:19:e7:8d:39:4b:97:
11:0e:32:83:f5:8e:8e:28:39:47:de:9b:87:eb:1e:55:ff:ef:
e6:c8:ee:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org