Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa
File: 9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa (raw, json)
Hash identifier: 0DBgAqaK5+1NqZxxrX2P+acAARQe4qmxW9IwVRsc7GU=
Subject key identifier: F6:D8:C5:96:9F:2C:EC:A4:F6:49:EB:41:E5:0E:04:43:77:A8:3D:4A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A9D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa
Signing time: Fri 01 Sep 2023 10:08:06 +0000
ROA not before: Fri 01 Sep 2023 10:08:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.184.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10909 (0x2a9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F6D8C5969F2CECA4F649EB41E50E044377A83D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:01:5e:aa:88:68:04:62:93:36:2e:fb:ca:
b1:0d:8f:50:a0:37:a7:65:e1:ab:4d:78:86:54:4a:
cd:f9:b7:0b:09:3e:4e:5b:91:69:c6:6e:ad:17:72:
ee:af:2a:48:38:dc:2c:2f:be:15:78:10:8e:70:a4:
be:e2:6a:2a:eb:a7:e1:e3:3a:b0:0a:0a:2d:34:f3:
9d:42:0d:ad:87:aa:e3:49:ce:c5:f2:5b:d1:c2:6d:
ee:21:d3:1a:cf:3c:52:a8:90:f2:a1:6f:c2:87:2a:
80:89:6d:4b:f0:2a:bd:97:26:f3:17:69:36:2f:32:
e9:b3:19:58:dd:90:fa:ea:a9:3c:e9:45:7c:9c:37:
44:db:5d:88:c7:84:5f:d8:9d:10:22:c2:bd:e5:cd:
e3:c7:c6:d9:76:d9:4d:23:7b:22:95:6e:71:1f:84:
fc:3f:9d:77:4a:33:40:26:32:16:bb:cf:7b:1f:db:
52:58:02:12:39:72:fe:ed:89:1b:dd:d8:a1:64:22:
3f:df:85:9d:9a:ab:07:23:06:76:03:8b:00:2a:73:
20:14:a7:4a:64:fc:ba:d1:52:17:e8:52:4e:04:fc:
8e:20:64:58:84:18:72:20:26:ab:57:dd:1f:48:96:
8c:28:6b:ac:50:53:ba:2a:20:6e:b3:2e:4b:dd:d6:
23:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D8:C5:96:9F:2C:EC:A4:F6:49:EB:41:E5:0E:04:43:77:A8:3D:4A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.184.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:83:47:c4:b9:09:bf:1f:2e:db:98:7a:fe:60:33:8b:11:bc:
c4:dc:91:ba:32:ed:b9:5a:dc:7c:63:1c:5d:21:00:1f:ee:99:
22:56:dc:05:94:12:9e:56:64:68:29:18:50:63:37:60:99:d1:
00:b8:60:cc:50:7e:c1:80:d8:1f:c3:66:cd:44:d3:86:48:13:
b9:61:e9:24:c7:2e:7c:05:e3:6a:ad:44:e0:99:29:2e:e9:82:
2f:31:d9:b2:6c:8b:cf:05:19:82:df:63:fa:1a:78:8c:a4:db:
cb:60:10:73:c7:34:bb:2d:bc:fa:41:1b:a2:e0:bd:53:27:17:
94:87:73:2f:84:78:fd:51:10:fc:b8:23:ed:42:ed:56:d4:bc:
c8:bc:12:8a:ef:b0:e6:24:db:8a:03:51:9a:f2:dc:9d:d9:b4:
7b:a8:4f:c9:04:9f:82:ed:81:45:eb:df:d7:33:b4:44:06:bc:
ce:db:4e:57:d4:e9:8c:be:9a:c2:71:a7:2a:23:a0:a2:4b:99:
03:b5:7f:cd:bc:98:f8:e9:5f:33:9a:f3:35:96:21:ac:41:69:
e4:72:e2:1c:7f:a2:36:6f:d2:8b:98:2a:3e:ab:02:c0:10:e9:
fe:d7:71:c9:58:86:44:b2:25:06:47:10:c0:ad:5d:01:fc:c6:
41:3b:b2:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org