Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa
File: AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa (raw, json)
Hash identifier: GnuKVcQ08kEGGsXN5fsCiuV8UIS2Na8xbVye7DlLwW4=
Subject key identifier: 00:CB:7F:60:4B:3E:60:18:30:17:45:AF:F2:2A:09:7A:67:D7:98:F1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2800
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa
Signing time: Fri 01 Sep 2023 10:04:49 +0000
ROA not before: Fri 01 Sep 2023 10:04:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10240 (0x2800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=00CB7F604B3E6018301745AFF22A097A67D798F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:5e:12:f4:7e:b9:68:70:9f:ef:6e:94:3a:3e:
04:f9:2a:aa:f0:c6:a2:64:df:d9:79:e6:46:70:84:
56:78:09:6a:07:93:50:0d:5d:8e:4d:b6:ae:7e:b8:
4e:1b:47:b7:16:3d:af:6f:18:f9:ac:5f:a4:57:3a:
7d:87:df:42:06:f3:7e:6f:84:d5:ff:97:b9:c6:43:
09:b5:36:fb:3a:b9:64:be:99:57:f3:b5:9b:ac:a9:
15:1d:06:5c:89:ab:91:c9:1c:31:d9:67:33:6e:d0:
c3:b4:fa:a8:85:f5:9f:77:cc:84:e0:d8:4e:73:4d:
c1:1f:30:07:34:17:a7:f7:f2:2f:70:af:3e:02:f6:
06:4f:4b:88:53:22:e6:5d:78:02:e8:64:0a:17:d0:
96:d0:15:b4:32:aa:a4:5e:62:b7:63:1f:40:93:6c:
b1:aa:51:66:fe:12:08:7f:12:6b:81:34:a0:84:13:
0a:fa:83:a6:60:10:72:39:1c:8c:6f:5f:f9:e0:aa:
1a:7b:f6:4d:6f:e3:52:b9:9e:1c:da:bf:e0:40:3c:
58:a8:84:7b:06:c6:a7:54:fe:50:c0:b7:b5:b7:72:
05:47:9d:80:5c:17:24:b8:fa:76:53:18:1a:48:af:
af:a0:32:cc:09:f0:06:6a:d6:70:75:d4:9d:92:8a:
62:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CB:7F:60:4B:3E:60:18:30:17:45:AF:F2:2A:09:7A:67:D7:98:F1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.72.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:e8:42:fc:28:77:8a:08:eb:dc:fe:84:2b:6e:63:d0:85:9e:
0a:5d:43:6f:93:c5:58:a4:f1:00:29:c7:bd:f5:f9:9d:9b:a0:
9f:a7:ab:59:b7:ff:8e:c4:7d:8f:92:63:a1:d3:62:36:93:72:
9b:e0:a3:3e:63:83:88:9d:41:ac:6f:55:b1:28:ca:23:d8:bd:
ac:21:6c:b4:39:39:9f:48:7d:be:a3:2a:a1:df:f6:c4:60:c8:
3c:11:35:8b:81:04:21:3e:30:f3:86:b0:59:92:6c:35:32:c0:
6a:22:37:54:c6:77:eb:e7:68:96:b6:5b:51:f4:f8:47:a4:5d:
60:2f:73:a1:43:b6:07:d2:80:2f:e9:dd:de:11:54:b7:24:28:
fd:11:47:2e:ba:a7:ff:c1:67:3c:4d:b4:22:09:3a:79:14:ca:
f9:b1:97:c4:69:a1:f9:bb:28:fb:55:f9:16:04:b4:43:cf:c6:
89:a4:37:49:15:68:fe:81:c6:73:f6:b9:63:53:f4:b0:cc:b5:
cb:70:f9:fb:b5:50:d7:15:44:c8:52:e4:ce:02:61:3a:18:f2:
b4:d3:ce:bd:8c:48:a3:03:e1:61:c2:e5:02:e0:9d:bb:81:4b:
74:74:72:19:81:da:8d:db:fe:7f:a5:1d:41:88:07:f0:74:3d:
19:36:be:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org