Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AjnA0cS1j6dqODTdpt9z0M3wI9o.roa
File: AjnA0cS1j6dqODTdpt9z0M3wI9o.roa (raw, json)
Hash identifier: r1g41qtpo85O4FzOfQaaVbdYS2KlZdGP9DJ0k+ZsrlI=
Subject key identifier: 02:39:C0:D1:C4:B5:8F:A7:6A:38:34:DD:A6:DF:73:D0:CD:F0:23:DA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 296F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AjnA0cS1j6dqODTdpt9z0M3wI9o.roa
Signing time: Fri 01 Sep 2023 10:06:36 +0000
ROA not before: Fri 01 Sep 2023 10:06:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.176.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10607 (0x296f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0239C0D1C4B58FA76A3834DDA6DF73D0CDF023DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:e8:d7:fa:2e:4e:c9:9b:67:a2:96:ea:10:
b3:a6:84:14:9f:04:6c:d3:4b:9e:00:05:1c:e2:af:
e2:a3:24:04:55:08:41:de:53:e9:84:e2:2a:52:24:
5c:89:a7:fa:4d:a7:ff:66:11:55:dd:e4:47:2e:5b:
24:39:07:c2:a6:be:be:c3:55:10:5e:cc:03:33:65:
81:a2:b7:44:02:cc:c4:a9:33:9f:c9:40:85:44:2f:
f8:34:6e:97:42:f9:99:c0:e0:09:b3:e6:16:ff:31:
21:91:5e:37:99:bf:5f:fd:f0:7f:1b:dd:18:e3:95:
d8:0b:be:ae:dd:fd:96:10:fe:7d:11:9c:55:d1:34:
2e:3c:11:38:12:65:9c:37:44:bc:f8:99:f9:e8:df:
5c:af:16:d3:6e:88:3f:0c:4f:da:b7:93:f3:7b:08:
07:68:6a:15:90:89:3a:e9:2a:ed:12:b5:0d:fd:cd:
ad:56:4d:ee:90:03:16:6f:b8:95:d7:7d:5d:ab:da:
4f:1f:ba:2a:4c:52:ab:ae:4d:e2:d7:6d:ed:18:f6:
92:70:77:7d:67:e8:73:74:b6:58:76:4e:32:0d:38:
75:dd:8d:d9:94:ba:72:53:12:d8:52:e6:b3:52:21:
21:b7:98:9c:17:ed:bd:ac:07:a3:c4:f6:0e:e9:9e:
30:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:39:C0:D1:C4:B5:8F:A7:6A:38:34:DD:A6:DF:73:D0:CD:F0:23:DA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AjnA0cS1j6dqODTdpt9z0M3wI9o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.253.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d3:c4:aa:e1:a8:06:fb:17:63:a6:a1:98:92:61:20:e2:b2:
a5:57:00:fc:11:43:f9:c9:13:93:02:bc:9b:36:11:19:26:b2:
81:27:72:3e:c6:a5:95:b2:69:89:de:e0:59:c7:22:9b:af:dc:
05:e5:ec:24:86:e8:d4:ae:a9:d5:0f:48:33:43:76:be:0c:64:
06:43:33:5f:42:63:c1:da:ab:8e:72:49:58:95:b5:22:65:3c:
3e:66:8c:6b:b3:db:4c:4e:61:3b:5d:00:fc:d6:a0:22:d5:40:
08:21:2c:cd:fc:d9:52:9e:d1:b8:a9:49:ae:b8:4d:4b:7d:b2:
40:6a:87:e8:f6:d2:f6:23:99:58:a3:03:07:58:f6:87:bf:00:
d0:cb:3e:c1:ba:90:4d:df:12:22:52:23:0f:37:fd:38:9a:d8:
2e:67:6f:e9:d5:c8:39:22:b8:06:28:df:5e:d2:81:fc:40:1f:
14:9a:5e:5d:c4:2a:36:4c:c1:a2:b1:05:c5:0c:d2:0e:a7:b2:
8b:dd:8d:d0:6f:2f:21:dd:92:c6:40:0f:59:af:a7:08:84:6b:
71:f0:c7:35:34:73:69:d9:b2:00:e8:31:5a:81:2e:e5:bc:07:
9a:82:2e:ce:7b:4b:b8:49:67:43:35:2c:f1:36:95:e6:48:9f:
2d:64:fe:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org