Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/De4xsvCovQJrsh1KURgO0sv9_70.roa
File: De4xsvCovQJrsh1KURgO0sv9_70.roa (raw, json)
Hash identifier: 7Cjk7vB1z9pWJMjunW56jnQT/6pIpBR5mAPU3JAXzuk=
Subject key identifier: 0D:EE:31:B2:F0:A8:BD:02:6B:B2:1D:4A:51:18:0E:D2:CB:FD:FF:BD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2984
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/De4xsvCovQJrsh1KURgO0sv9_70.roa
Signing time: Fri 01 Sep 2023 10:06:42 +0000
ROA not before: Fri 01 Sep 2023 10:06:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10628 (0x2984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0DEE31B2F0A8BD026BB21D4A51180ED2CBFDFFBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b8:10:e5:c9:fa:c4:50:d3:73:25:32:e3:80:
7f:0f:b0:4c:63:5a:a5:67:94:ed:40:1b:db:79:d5:
c8:eb:2a:f4:5d:47:bc:a4:47:0b:53:36:94:b0:37:
4d:d1:70:85:da:13:db:d1:d7:b3:be:f1:ad:19:34:
68:d7:57:db:e6:e7:57:dd:2e:28:69:cd:f5:06:1d:
02:1a:77:d4:c5:ed:f7:7a:41:f4:83:86:62:7b:1e:
75:99:f8:0a:05:3d:de:39:cf:8f:cd:43:5f:85:75:
e8:89:b9:23:33:75:27:66:c4:7b:b4:a3:ac:da:7c:
12:09:58:68:3e:69:de:32:55:11:c2:e9:15:63:45:
9e:81:ac:66:6f:2d:63:90:54:fa:16:a8:2d:15:f9:
ae:d2:7a:d7:a3:e0:34:91:5e:e2:36:63:e4:bc:98:
0c:a5:9f:bc:87:3a:1f:e2:69:5c:92:b4:b8:04:e3:
f5:18:b5:c6:97:e0:b5:51:13:e1:ab:6d:23:c5:83:
7e:2a:29:4b:89:a2:9a:05:3f:5d:c6:d9:ef:e8:56:
ce:1e:50:a4:72:e6:5d:a4:13:28:ba:88:9c:f8:2c:
f4:a4:14:9a:7d:8e:7f:a7:67:65:35:9f:ea:c9:9d:
5b:7d:b3:e9:e5:7d:60:da:20:a9:1d:fc:87:f4:49:
0c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EE:31:B2:F0:A8:BD:02:6B:B2:1D:4A:51:18:0E:D2:CB:FD:FF:BD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/De4xsvCovQJrsh1KURgO0sv9_70.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.252.0/22
Signature Algorithm: sha256WithRSAEncryption
53:f8:aa:f5:d2:fd:9d:2c:c0:4e:61:3b:66:be:44:a4:bc:0f:
4b:bf:91:d7:10:32:fd:02:04:db:f5:a3:25:91:25:6a:07:2a:
43:78:1d:7e:91:43:1c:20:7f:10:3c:c8:5b:3e:4e:e3:11:cb:
47:b3:84:87:8c:d8:af:a8:8c:f9:a5:e0:a5:97:c9:c7:06:14:
9f:ab:bd:0c:02:4f:2f:cd:3e:22:aa:05:d5:79:c1:bf:79:26:
95:22:14:09:17:67:b2:41:8c:32:d8:1a:13:ee:7e:17:92:eb:
cf:ca:1f:51:c2:60:25:4d:7e:4b:81:cc:7d:19:0f:a5:9c:8f:
54:51:83:ca:9f:b1:29:e7:49:bb:d2:7d:fe:63:4f:89:0a:11:
14:9e:a6:38:3e:66:13:57:8d:b4:47:17:d6:44:6d:bf:93:ce:
b5:e7:b5:22:22:87:64:17:66:24:08:33:51:53:41:2a:86:42:
39:4d:49:66:ae:4a:ac:9c:3c:a6:7c:0c:49:de:1e:c9:df:db:
95:16:3e:d8:7c:eb:d8:29:e7:96:f3:37:ce:18:6c:ef:49:5e:
3e:45:3c:bf:c3:79:af:31:49:66:64:cb:7e:e6:7a:8b:0f:49:
a3:1a:4d:6b:8b:90:c3:31:12:05:61:24:d5:f2:ec:47:3b:f0:
90:b0:4c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org