Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/F47ch_i5RciHtdRZtSJN7OwmqIY.roa
File: F47ch_i5RciHtdRZtSJN7OwmqIY.roa (raw, json)
Hash identifier: rn5I3SuzfinAOJ1RrVa7gM4WT9EQbLM5n/gnyIms9nc=
Subject key identifier: 17:8E:DC:87:F8:B9:45:C8:87:B5:D4:59:B5:22:4D:EC:EC:26:A8:86
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28C6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/F47ch_i5RciHtdRZtSJN7OwmqIY.roa
Signing time: Fri 01 Sep 2023 10:05:44 +0000
ROA not before: Fri 01 Sep 2023 10:05:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.0.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10438 (0x28c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:44 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=178EDC87F8B945C887B5D459B5224DECEC26A886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:98:cb:a4:42:f5:23:67:ff:f9:70:2d:d2:d0:
4e:7d:c5:5e:8d:f1:d5:94:df:28:33:56:2f:0e:14:
41:62:ef:ef:6f:82:d4:1a:cd:ed:30:d9:87:a7:2c:
84:38:03:6d:ee:c5:06:b7:a2:76:f4:70:52:06:ec:
f9:e3:e7:bc:c9:b6:f2:3f:52:a7:80:4d:32:ba:63:
de:0f:48:90:c6:65:b7:7f:75:2d:cb:0c:b5:47:bc:
6e:b2:c3:25:b7:dc:9d:f4:8b:9e:94:f1:7b:2c:58:
79:fb:fa:46:75:b9:51:7b:ae:14:ed:6e:cb:26:3f:
18:9e:75:65:d1:a9:90:0b:ef:f1:e0:ae:68:87:29:
b1:c5:12:4a:4c:02:21:99:de:ed:d7:39:42:b2:6b:
66:93:f6:cb:cb:52:2b:02:07:2a:b4:96:9e:2c:ae:
83:34:59:ab:3b:ed:69:72:ff:3b:eb:d8:a1:41:d9:
f3:b1:fa:86:2f:7f:aa:33:68:60:b9:61:4f:3e:f8:
26:d4:88:d5:b6:2f:40:00:f5:de:ef:61:f1:cc:cb:
07:36:99:91:f2:4a:7d:2a:0c:2d:b1:87:11:60:9e:
29:de:99:1d:89:7e:58:c1:bc:c6:b3:43:6b:b1:a2:
dc:80:bb:60:1a:d8:f4:d1:c6:28:c2:39:95:49:57:
fd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8E:DC:87:F8:B9:45:C8:87:B5:D4:59:B5:22:4D:EC:EC:26:A8:86
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/F47ch_i5RciHtdRZtSJN7OwmqIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.0.0/22
Signature Algorithm: sha256WithRSAEncryption
74:19:ca:66:64:24:6d:eb:bf:14:65:01:bf:47:3a:5c:83:23:
7a:19:5e:e0:ec:be:cd:6e:d5:0b:63:19:aa:d6:f7:5d:67:72:
31:f3:04:5b:86:fc:51:35:58:b1:43:87:78:02:2e:03:ec:55:
af:38:7d:30:c3:cc:75:27:77:9e:7e:6f:c7:6f:b7:7b:53:6b:
ee:b6:ca:fe:74:d5:bd:b3:ac:f5:b5:e8:35:95:7e:30:9e:45:
2f:2e:8c:1e:85:2b:ca:c4:aa:bf:87:44:8e:f9:26:df:95:a6:
5b:fa:18:33:2f:ff:3d:5c:fd:5d:68:2b:65:b8:f9:d9:91:52:
50:81:b1:15:3d:dc:6f:6e:d4:70:93:c0:96:f3:f2:db:01:0b:
cc:08:5a:6a:bc:41:7e:55:0b:65:15:03:c3:28:96:7c:db:74:
ad:10:7e:52:f9:e9:c2:5b:bc:1b:e5:47:d1:43:39:c6:85:68:
9d:ab:f9:32:87:81:f7:61:9a:73:47:02:7d:fc:bf:7b:eb:88:
6d:bb:36:dd:8b:b9:f7:b8:d6:ef:f4:18:ee:72:f0:b9:e8:8a:
b0:44:36:93:89:6c:2b:01:7a:7f:88:48:cf:e2:99:a1:3a:00:
63:8c:3d:8d:61:fb:89:32:5e:20:3b:60:32:b3:ca:e3:44:a6:
e9:c1:68:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org