Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa
File: Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa (raw, json)
Hash identifier: vA5fyrIpJ0WyOHNJeIf71QOPsPXqZ5W08TpLyeFiVmk=
Subject key identifier: 22:4B:23:BA:1A:FB:58:3D:5C:E9:9C:BD:90:51:DA:AD:1E:48:A3:78
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28C9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa
Signing time: Fri 01 Sep 2023 10:05:45 +0000
ROA not before: Fri 01 Sep 2023 10:05:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10441 (0x28c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=224B23BA1AFB583D5CE99CBD9051DAAD1E48A378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8a:e9:7c:4f:a3:5b:3d:53:29:e5:57:e5:c4:
a8:6a:ec:5a:99:1e:0a:e5:7f:ac:c7:88:99:cd:34:
ee:ca:43:3b:f6:82:ed:bb:9a:e7:d1:5b:bb:e2:ff:
5c:4f:03:1a:96:27:91:21:cf:0b:54:2a:39:28:52:
0a:c8:7b:be:04:bd:29:48:d1:cc:de:85:13:70:85:
f1:ad:01:83:20:19:2c:ed:ec:09:91:91:b0:27:63:
fb:72:df:a0:e1:2a:93:c5:31:02:7c:3f:0c:3c:a4:
4d:b9:11:20:ab:f0:e4:02:05:2c:5b:9b:95:fb:5a:
d3:06:06:20:fb:85:2b:61:1c:f6:ad:3b:a5:71:9c:
3c:6b:a7:b1:2a:ec:d1:ca:26:11:5b:cb:77:17:1e:
e2:96:72:73:f0:c6:d5:ab:1a:ae:89:0c:4b:84:55:
47:da:e8:99:63:e9:95:bb:4d:e4:72:80:cd:e8:82:
e8:d1:44:5e:09:ee:cd:7e:58:d2:9d:bd:99:08:ac:
a8:a9:00:89:c0:56:85:00:99:13:98:cc:39:3d:bc:
a9:13:9b:56:f5:69:ea:67:92:18:c8:0a:f9:fd:23:
a9:65:7d:9e:8e:3f:42:dd:b2:cc:e0:c6:2d:46:23:
3f:d9:e4:1e:cf:bd:81:a0:bb:a9:ab:18:08:64:2a:
b7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:4B:23:BA:1A:FB:58:3D:5C:E9:9C:BD:90:51:DA:AD:1E:48:A3:78
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.164.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:86:3d:74:f3:8f:1d:f6:8a:81:71:d1:df:dd:fd:3e:41:a6:
1d:dd:70:62:73:10:12:86:1b:4e:f1:46:1b:42:a7:7a:aa:78:
a8:b2:04:c8:1d:66:ce:3a:06:07:ac:4b:15:e2:46:ee:1b:d1:
09:42:1f:7a:45:79:42:f0:9e:49:9e:a9:2b:29:7a:48:b3:60:
65:62:a3:06:47:a9:f3:22:43:43:be:9b:9f:75:65:53:5f:69:
4e:af:d6:ca:97:d4:6d:5a:87:c1:4d:2a:81:8b:a2:d3:5e:00:
e6:eb:63:07:87:d6:3a:8b:51:24:43:18:93:74:bc:12:51:9a:
0c:12:d9:f4:1c:41:09:a0:dc:e0:1d:76:3c:88:7a:3c:1a:54:
6e:ab:f4:98:99:c6:09:4d:54:81:76:d2:93:3b:22:b7:23:b4:
9e:53:e0:9d:df:aa:af:f0:83:40:78:08:7d:d6:ba:53:bb:c7:
4a:a4:32:00:0b:ae:29:56:48:e9:2c:b0:a1:1e:30:88:ac:b7:
c9:a9:c4:e5:83:1a:54:73:51:1b:fb:27:d5:9b:d3:fe:16:e8:
7f:d8:74:56:f3:3d:61:50:89:27:75:e8:57:c6:25:9e:a0:12:
33:fe:34:65:58:55:37:71:11:69:f9:37:5a:18:d0:55:38:f9:
f4:bb:7a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org