Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iei7hOApQc269VWBcEZQzSFzD8A.roa
File: Iei7hOApQc269VWBcEZQzSFzD8A.roa (raw, json)
Hash identifier: mk4VxzJKd79Vi9Q2S0X93QM5MSzXVosahJC3e6dKxus=
Subject key identifier: 21:E8:BB:84:E0:29:41:CD:BA:F5:55:81:70:46:50:CD:21:73:0F:C0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AEA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iei7hOApQc269VWBcEZQzSFzD8A.roa
Signing time: Fri 01 Sep 2023 10:08:26 +0000
ROA not before: Fri 01 Sep 2023 10:08:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.20.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10986 (0x2aea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=21E8BB84E02941CDBAF55581704650CD21730FC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a4:f0:94:35:2c:cc:46:61:12:55:c1:cf:34:
a7:21:37:e2:5f:94:1e:e7:89:fd:6f:e3:cd:bd:3f:
3c:03:ca:14:b2:e7:39:f9:cc:ca:d9:7b:8d:38:d6:
b9:9a:fb:9b:1d:c5:1b:b5:03:9c:75:10:d9:49:6c:
cb:bb:8a:47:d9:e4:ed:14:74:79:7a:a8:52:c9:ff:
e6:09:de:b2:01:24:1a:28:3c:f5:61:9d:8a:b0:56:
ca:63:5a:4e:fa:e2:ac:0d:0f:32:5c:f6:fc:99:5c:
d7:09:bf:cf:6e:9f:27:86:80:68:2d:e0:64:52:17:
33:54:ef:c6:45:05:4b:2a:4e:7c:29:2a:10:67:4f:
c2:1e:49:45:ca:b0:26:eb:61:c2:fc:15:4e:49:2e:
88:c7:ec:76:b0:54:48:ca:e9:d9:c0:13:9d:d3:a8:
13:fa:e3:a1:9e:d3:7c:2a:72:37:33:8c:d5:d3:75:
ea:d0:e4:8c:8b:80:b7:68:53:b3:25:6e:a9:c0:92:
5a:32:76:c3:f3:22:0a:50:ea:f3:3a:b9:4d:c4:66:
e7:de:69:ec:49:8a:a3:ea:75:1b:85:bb:99:84:52:
95:da:2d:3b:8d:4b:29:a9:c4:55:f6:55:2f:e0:35:
57:fe:13:a0:0b:26:77:61:bb:ec:36:e3:3c:25:cc:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E8:BB:84:E0:29:41:CD:BA:F5:55:81:70:46:50:CD:21:73:0F:C0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iei7hOApQc269VWBcEZQzSFzD8A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.20.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:aa:b8:6b:64:4b:85:23:74:27:ae:cc:2b:de:2c:36:a0:77:
c2:f5:75:17:33:98:66:26:6b:0b:27:ba:c1:98:65:71:4a:0a:
8a:03:d0:05:02:88:f9:56:fe:43:35:a6:bf:c3:96:43:c2:c7:
af:0e:70:22:1a:e0:1a:0e:60:26:c3:d2:c4:68:8e:9b:f3:6b:
b0:2d:64:48:2f:b9:82:f8:95:37:86:4f:03:3d:a8:e1:60:77:
1c:18:b8:f7:52:6f:f8:6c:43:e2:60:f0:f1:ca:56:d5:0a:49:
1b:73:6a:67:bc:d3:52:ff:c7:91:d1:e9:3f:ad:16:45:df:a1:
23:9c:b8:d2:14:cc:9f:f7:dc:67:65:5c:68:16:08:8e:ea:25:
b0:72:c8:94:29:cf:ff:2a:c7:51:f4:a5:2f:72:6d:a7:59:48:
90:ac:95:e1:99:5d:0f:7e:c6:41:3c:0e:b0:f9:d8:90:bf:5d:
47:bc:1e:99:83:ce:7b:8c:3f:ef:d3:12:8f:7a:43:e2:22:28:
ed:e1:bb:fe:43:07:dd:ed:ab:2e:27:7b:ba:54:19:ca:c1:d4:
2c:c6:f5:0e:4d:e4:4d:50:05:9d:4c:44:37:ed:c1:d8:08:f5:
2b:89:71:dd:d7:74:3b:b0:2b:fa:b0:59:75:c2:80:16:55:59:
13:6c:9f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org