Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AJmH_1KaOpJ42tjM22xBEHgO_3w.roa
File: AJmH_1KaOpJ42tjM22xBEHgO_3w.roa (raw, json)
Hash identifier: yAFMtwmoQUZB3L3sYzE7LuljODQ1KGKHjvgROlrY/Lw=
Subject key identifier: 00:99:87:FF:52:9A:3A:92:78:DA:D8:CC:DB:6C:41:10:78:0E:FF:7C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2895
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AJmH_1KaOpJ42tjM22xBEHgO_3w.roa
Signing time: Fri 01 Sep 2023 10:05:32 +0000
ROA not before: Fri 01 Sep 2023 10:05:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 118.232.199.0/26 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10389 (0x2895)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=009987FF529A3A9278DAD8CCDB6C4110780EFF7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:98:1f:ee:34:df:29:17:d3:f7:18:91:75:e3:
52:60:85:a6:20:a2:9d:03:6f:17:62:a7:53:2b:55:
03:77:6c:0b:83:12:5d:0a:65:6a:63:05:11:1f:e2:
e9:d2:51:5b:c8:09:f4:95:56:d0:d3:41:0e:b5:77:
e7:5b:b5:8b:0f:2c:94:37:d5:ce:e3:2e:88:23:a4:
00:44:aa:a8:6f:68:03:2b:c0:a8:46:ea:94:42:30:
c7:88:28:23:f2:c9:30:6f:b4:5c:38:aa:d1:67:84:
74:70:df:84:7a:5f:17:43:4e:33:17:55:42:9d:be:
0c:39:95:83:fd:96:8f:5e:c6:1a:90:98:c8:9f:a6:
04:24:66:83:26:cd:cb:8d:c9:ec:5d:ee:86:c6:fe:
60:64:51:43:f8:cf:f5:58:cd:c7:b9:ba:7d:85:d7:
29:17:c7:da:b0:4d:ec:c4:56:cd:97:33:94:6c:ca:
ab:7e:31:49:cb:2d:a7:29:aa:cb:1b:5d:f2:e1:c2:
8a:12:c5:2d:b6:46:ef:2a:31:3b:a8:23:15:0d:24:
a0:44:73:d5:60:b9:b9:9a:d9:4f:28:ef:fe:24:e6:
25:cb:7e:99:4a:36:91:63:30:bc:af:90:89:76:91:
d6:bd:8c:0e:bb:79:d3:4d:a5:fc:eb:64:e4:06:14:
10:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:99:87:FF:52:9A:3A:92:78:DA:D8:CC:DB:6C:41:10:78:0E:FF:7C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AJmH_1KaOpJ42tjM22xBEHgO_3w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.199.0/26
Signature Algorithm: sha256WithRSAEncryption
36:40:a2:43:fa:d8:00:fa:37:db:cf:79:56:6b:63:25:cb:50:
ea:7b:37:c2:e9:9d:94:e5:2f:36:17:e8:06:38:0d:07:36:00:
3f:a5:2c:3c:49:bb:65:6f:45:c9:55:65:c0:cc:b2:c1:61:ea:
f1:36:76:3a:35:57:13:6e:a3:0b:ea:c7:d2:f7:d7:d8:4e:51:
ce:81:6d:0a:29:df:0e:80:bf:69:9b:bb:16:89:d2:d1:e5:90:
9d:c5:09:b9:82:67:d7:b9:1a:24:88:06:0d:88:b5:d9:8f:52:
8f:0c:a4:10:5a:f7:8a:15:69:2d:e3:b9:ab:62:0c:37:47:c1:
84:bf:c1:c4:f1:98:71:87:63:5f:02:0d:0f:ef:5a:f7:a8:6b:
7b:a0:26:d9:97:48:c6:f6:0a:50:f2:ab:66:14:da:19:2c:8b:
7f:11:7e:30:49:d5:3b:ec:77:4b:64:e0:30:78:5d:c3:61:99:
ec:fa:a0:9b:7d:f1:30:0a:53:a6:5a:eb:69:38:c3:86:7a:e5:
86:9c:34:15:71:67:c9:e7:e9:d6:4c:fc:5a:c5:54:6f:48:42:
8a:d1:dc:18:40:c8:2e:1c:8c:04:d2:37:43:1c:b7:2e:b0:72:
3c:35:e7:2a:f2:03:33:3d:75:25:e8:07:e6:3a:84:db:59:06:
9f:a7:21:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org