Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GJuo2jpZN-O5wyk80vg_Gx59rHk.roa
File: GJuo2jpZN-O5wyk80vg_Gx59rHk.roa (raw, json)
Hash identifier: LqJReTERfOy7A3uZ8Ch3zH4RXSeBkF2uggTPnnuFRIk=
Subject key identifier: 18:9B:A8:DA:3A:59:37:E3:B9:C3:29:3C:D2:F8:3F:1B:1E:7D:AC:79
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28DF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GJuo2jpZN-O5wyk80vg_Gx59rHk.roa
Signing time: Fri 01 Sep 2023 10:05:51 +0000
ROA not before: Fri 01 Sep 2023 10:05:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.88.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10463 (0x28df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=189BA8DA3A5937E3B9C3293CD2F83F1B1E7DAC79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:73:89:25:5c:af:1e:69:96:e1:1e:ab:fa:9e:
9d:cc:8d:5e:83:0d:34:bb:49:83:82:07:c6:f1:08:
4e:54:b9:67:27:ff:e2:aa:c9:97:e8:e2:4d:51:e0:
54:12:26:27:44:f5:1e:ec:04:f7:99:04:e2:a5:b1:
d3:63:67:d8:79:fa:ef:a6:72:dc:54:00:38:e8:b9:
69:aa:30:c2:20:0b:ac:d7:8d:b1:c6:91:15:be:47:
55:b9:88:09:9c:b9:55:63:bb:c7:d4:c9:c7:ad:02:
7c:7f:57:d2:f1:d1:03:fa:e1:21:19:df:c9:34:5e:
60:9a:c6:d2:a3:07:f9:84:6f:a5:97:d9:40:73:90:
45:bf:92:5b:45:96:2e:00:9f:1c:7e:e6:35:c7:24:
85:6a:b8:4d:1e:97:84:ac:d4:61:0d:14:7a:b0:16:
5d:a4:7a:03:23:c5:50:f2:2e:88:49:d5:54:bf:be:
57:ef:d5:f5:f9:1c:f4:bd:74:ec:25:8d:d6:45:23:
c9:47:7a:13:28:6e:0f:9f:52:8e:94:fc:91:c6:98:
e9:20:5e:e7:4e:57:e9:41:50:f3:ba:5f:ac:61:04:
68:f5:ca:2e:b3:d9:f1:47:11:8a:3d:ea:ef:f3:d2:
b9:32:71:9d:06:6b:9d:19:a1:6b:92:08:d5:40:f8:
6f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9B:A8:DA:3A:59:37:E3:B9:C3:29:3C:D2:F8:3F:1B:1E:7D:AC:79
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GJuo2jpZN-O5wyk80vg_Gx59rHk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.88.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:98:8b:53:c3:36:63:c2:c9:6e:74:cc:18:8a:44:b3:f5:b5:
9e:64:53:02:15:4d:95:b8:0c:ab:52:c1:62:41:72:5f:65:19:
d7:c5:60:bf:a5:10:d6:50:b1:28:dd:c0:ff:60:fc:10:05:cf:
25:06:a8:07:67:e3:6c:ae:e0:ba:f5:26:36:58:0b:f6:46:b8:
14:65:8f:38:11:dc:d1:41:71:01:67:51:35:2b:a7:af:77:7b:
b8:07:4c:ce:68:13:96:7f:45:cc:e6:ac:56:20:78:18:c6:c4:
52:98:3e:dd:c8:76:0c:8a:88:c1:1c:65:92:c0:2f:4c:93:dc:
9b:25:52:76:28:74:e3:a4:37:c8:3a:99:f3:b6:b0:18:9e:e6:
44:e3:23:46:36:39:39:3b:43:c3:c4:50:cd:08:6c:60:56:a6:
af:ac:49:77:3d:da:82:dc:c3:d9:c6:dd:62:4e:ce:cb:5a:5c:
c3:88:7f:e1:38:17:24:b0:f3:23:49:51:56:e4:d3:25:b2:b3:
74:a8:cc:5a:2c:82:d9:6c:ea:84:e1:95:b3:d2:93:ac:34:be:
23:d1:d8:18:c4:4c:b7:2a:1d:54:03:e5:86:4d:27:75:c5:1f:
b7:d3:68:16:be:41:bb:a4:96:a1:c5:4d:cf:a6:c0:34:cf:f5:
bc:86:10:ba
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKN8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA1NTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE4OUJBOERBM0E1OTM3
RTNCOUMzMjkzQ0QyRjgzRjFCMUU3REFDNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2c4klXK8eaZbhHqv6np3MjV6DDTS7SYOCB8bxCE5UuWcn/+Kq
yZfo4k1R4FQSJidE9R7sBPeZBOKlsdNjZ9h5+u+mctxUADjouWmqMMIgC6zXjbHG
kRW+R1W5iAmcuVVju8fUycetAnx/V9Lx0QP64SEZ38k0XmCaxtKjB/mEb6WX2UBz
kEW/kltFli4Anxx+5jXHJIVquE0el4Ss1GENFHqwFl2kegMjxVDyLohJ1VS/vlfv
1fX5HPS9dOwljdZFI8lHehMobg+fUo6U/JHGmOkgXudOV+lBUPO6X6xhBGj1yi6z
2fFHEYo96u/z0rkycZ0Ga50ZoWuSCNVA+G+ZAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUGJuo2jpZN+O5wyk80vg/Gx59rHkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0dKdW8yanBaTi1PNXd5azgw
dmdfR3g1OXJIay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
sVgwDQYJKoZIhvcNAQELBQADggEBAJyYi1PDNmPCyW50zBiKRLP1tZ5kUwIVTZW4
DKtSwWJBcl9lGdfFYL+lENZQsSjdwP9g/BAFzyUGqAdn42yu4Lr1JjZYC/ZGuBRl
jzgR3NFBcQFnUTUrp693e7gHTM5oE5Z/RczmrFYgeBjGxFKYPt3IdgyKiMEcZZLA
L0yT3JslUnYodOOkN8g6mfO2sBie5kTjI0Y2OTk7Q8PEUM0IbGBWpq+sSXc92oLc
w9nG3WJOzstaXMOIf+E4FySw8yNJUVbk0yWys3SozFosgtls6oThlbPSk6w0viPR
2BjETLcqHVQD5YZNJ3XFH7fTaBa+QbuklqHFTc+mwDTP9byGELo=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org