Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DJdgTk-d_xCkD0srtClrh3Vk9a8.roa
File: DJdgTk-d_xCkD0srtClrh3Vk9a8.roa (raw, json)
Hash identifier: SVY+kQuAmSOAkkbTOIjUsAIstIQVq35EAF/VH7SaKKQ=
Subject key identifier: 0C:97:60:4E:4F:9D:FF:10:A4:0F:4B:2B:B4:29:6B:87:75:64:F5:AF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29FF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DJdgTk-d_xCkD0srtClrh3Vk9a8.roa
Signing time: Fri 01 Sep 2023 10:07:21 +0000
ROA not before: Fri 01 Sep 2023 10:07:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.176.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10751 (0x29ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0C97604E4F9DFF10A40F4B2BB4296B877564F5AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:53:fe:2d:54:4b:b4:26:66:69:5f:6e:5d:6c:
89:ad:a1:13:48:42:20:6e:40:7b:0f:b2:3a:c7:17:
52:80:08:d8:56:d7:f4:bd:9d:17:fb:79:1e:a2:f7:
db:1b:3e:4c:3e:06:86:2c:f4:ac:1a:28:8e:2f:c3:
7c:f0:df:7d:b6:7b:ef:73:c3:c5:53:d7:85:66:6b:
7f:48:9a:07:07:62:66:9a:b4:67:2e:ea:57:0a:4d:
50:53:54:0a:e5:95:b9:43:42:9a:4e:40:25:4a:60:
57:e5:cf:ce:45:55:ab:fa:90:86:aa:f0:e4:42:39:
b1:10:10:17:51:a0:77:c3:7f:4c:83:8f:86:96:e4:
e1:38:3b:37:16:7f:15:92:22:0b:82:5b:c1:08:e5:
dd:1c:91:c6:f1:3c:74:31:a3:3f:69:58:68:46:bc:
1a:fd:24:99:5f:51:1f:cb:0c:2a:88:b7:83:41:5c:
e1:46:d4:35:15:f3:88:28:c7:33:50:5e:28:cb:38:
4f:b3:d6:a8:3a:e2:62:1a:f8:36:4d:d8:af:57:ef:
e3:77:a3:8f:fe:06:fd:9c:e4:69:d2:81:ba:65:44:
c7:a5:0a:21:6c:c5:37:cb:ae:67:1a:e4:c1:f3:8d:
68:a9:9b:46:70:ca:3a:40:02:95:23:1b:7d:fe:c7:
3c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:97:60:4E:4F:9D:FF:10:A4:0F:4B:2B:B4:29:6B:87:75:64:F5:AF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DJdgTk-d_xCkD0srtClrh3Vk9a8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.68.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:e2:78:cc:6e:a9:d7:46:5b:50:83:8b:9d:c7:cd:71:29:ef:
2e:ee:57:ee:40:21:43:61:ad:b3:fe:c3:9c:ef:1e:2d:2e:70:
00:13:4f:d4:f9:8f:cf:aa:72:de:95:26:d8:80:12:85:ed:ff:
62:18:ea:02:e0:4a:93:f0:bf:f3:c2:97:4a:cc:d2:69:1d:ea:
a7:a3:31:d5:55:a4:59:f2:1c:26:e2:29:0a:d7:c0:70:b5:e0:
69:81:d3:3a:78:b3:de:4e:12:bd:60:91:6f:04:8b:35:8d:30:
cc:27:2d:c8:6a:2a:7a:4c:20:0c:83:6b:c6:0a:f7:0e:a1:db:
45:4b:8b:a8:78:1c:e3:76:78:fa:cd:ad:6e:c6:45:27:e2:12:
ae:d0:b5:ef:91:83:f0:d6:55:35:16:55:cc:47:19:89:40:5b:
0c:0c:42:3c:c0:65:2e:20:b0:b2:ae:5a:c3:16:43:e4:70:1b:
bf:00:d1:45:e9:7d:7c:e0:7e:5b:a6:f8:9e:f6:f3:2c:e3:43:
b1:54:57:82:d6:66:3d:a3:14:8e:9a:d3:21:b7:98:2b:89:70:
f0:ce:f7:8a:c7:28:1b:7a:99:c8:1d:48:a3:a5:71:fe:54:6f:
98:ec:80:70:7d:d8:7c:ba:09:be:77:7e:72:cb:1f:50:f0:1e:
f2:a9:eb:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org