Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D9dv1vc6on24C7ta5L1Vgsn3RLA.roa
File: D9dv1vc6on24C7ta5L1Vgsn3RLA.roa (raw, json)
Hash identifier: WPD9qKL2fGjsIuue8hBHSWjqe6+2mKbkkSQHEkiBZ7g=
Subject key identifier: 0F:D7:6F:D6:F7:3A:A2:7D:B8:0B:BB:5A:E4:BD:55:82:C9:F7:44:B0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2ADD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D9dv1vc6on24C7ta5L1Vgsn3RLA.roa
Signing time: Fri 01 Sep 2023 10:08:22 +0000
ROA not before: Fri 01 Sep 2023 10:08:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.192.240.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10973 (0x2add)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0FD76FD6F73AA27DB80BBB5AE4BD5582C9F744B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:16:10:6a:ed:2a:50:81:f8:84:1d:e9:51:9f:
fa:6e:e1:e3:43:3b:c6:a6:2a:fb:6a:d8:e0:fa:0d:
87:6c:26:ee:fb:4f:c6:d1:c3:fb:1f:ad:aa:bf:b6:
36:5b:fa:b2:6d:0c:82:62:d4:f2:73:02:00:76:28:
69:6e:9c:7f:fc:cd:cf:43:55:21:fb:01:b2:8b:b3:
2c:3f:7f:7d:8c:4b:dc:f4:d0:ac:ba:91:26:48:54:
3b:3d:12:61:3c:85:10:37:da:39:81:80:d1:fd:72:
ee:a5:36:54:02:08:3b:72:db:e8:29:80:4a:9e:52:
47:2c:b4:53:c5:d6:1c:3a:6c:c1:d0:b8:6a:8d:6c:
03:43:3a:e2:75:6d:c8:d6:66:7b:a8:da:22:e6:89:
4d:43:54:9e:b5:b9:f7:f5:5d:de:a6:a3:61:13:da:
c7:dc:04:02:81:67:18:04:61:5c:7f:b4:58:eb:29:
cf:07:e6:8a:b6:13:31:26:37:ad:2b:68:2d:c4:39:
b4:a1:c8:32:4d:7f:9b:6a:d7:37:80:be:34:7a:91:
ac:15:e2:55:9a:5e:16:da:35:ec:26:31:c4:92:46:
0a:98:30:78:b2:2d:c7:cd:3f:de:2b:87:b4:60:b1:
5a:24:62:a6:5f:6a:9f:fc:9f:e4:64:f3:36:60:f2:
ca:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D7:6F:D6:F7:3A:A2:7D:B8:0B:BB:5A:E4:BD:55:82:C9:F7:44:B0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D9dv1vc6on24C7ta5L1Vgsn3RLA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.240.0/21
Signature Algorithm: sha256WithRSAEncryption
13:6f:ce:f5:02:8f:e1:1d:87:5d:87:e2:b7:ae:be:28:3c:3f:
c8:c9:72:0e:2a:96:d9:4b:25:68:23:f3:8e:6c:e5:92:48:28:
e7:72:bf:da:25:a9:9e:17:9a:82:38:c2:5d:49:d2:bc:7d:24:
5f:c3:6c:cd:52:db:48:6e:cb:aa:9c:28:96:bd:b1:82:1e:17:
7d:58:04:16:14:81:24:d5:e1:55:63:9b:6a:b9:cb:8d:af:dc:
2c:92:ac:34:8d:51:16:68:ce:03:5c:0a:58:d2:58:e5:b4:f8:
42:78:81:ac:55:5d:05:83:ba:0d:4d:d2:46:29:76:99:a4:30:
f7:21:6d:52:e6:e3:d7:26:3c:4b:09:e1:15:79:83:de:33:35:
7e:7f:8c:46:68:14:2a:82:10:af:99:8a:84:a5:2a:60:e8:88:
5d:86:1e:8d:32:47:83:ae:1f:dd:a2:eb:01:09:86:ab:c6:cc:
dc:53:02:7d:66:5f:b4:27:31:e9:13:39:20:e4:78:73:39:99:
e9:9d:2c:03:ee:4b:62:2b:cb:40:fa:45:0b:e2:02:43:29:4b:
e9:6d:0a:f6:b4:76:21:85:d7:ee:aa:0a:c7:74:c6:95:7a:73:
2d:2d:d3:07:a1:db:b2:55:ee:d7:d8:f8:a2:df:bd:31:b6:83:
15:61:fd:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org