Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KFjKeOypaVBq59SBWRypKZek-jg.roa
File: KFjKeOypaVBq59SBWRypKZek-jg.roa (raw, json)
Hash identifier: 7Uh0FTTELR/Q5U3+QDkSrk7SUFQpJjvdG3qCP68LEq8=
Subject key identifier: 28:58:CA:78:EC:A9:69:50:6A:E7:D4:81:59:1C:A9:29:97:A4:FA:38
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28B4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KFjKeOypaVBq59SBWRypKZek-jg.roa
Signing time: Fri 01 Sep 2023 10:05:41 +0000
ROA not before: Fri 01 Sep 2023 10:05:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10420 (0x28b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2858CA78ECA969506AE7D481591CA92997A4FA38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c2:c2:dc:c5:c6:5a:d3:95:c7:59:a3:a4:c6:
83:e0:40:00:70:fe:60:43:79:5f:77:af:ce:2d:31:
ce:2c:3d:70:ed:f0:71:6d:f9:4b:a3:1c:2c:ad:5a:
b0:38:ec:2a:56:4c:23:d4:43:4f:e2:93:3a:df:15:
c0:85:7e:db:12:94:7e:13:1a:5f:0a:35:36:1e:c1:
d4:27:47:2c:98:5a:8e:32:7e:28:cc:45:f0:4c:6c:
da:08:83:a7:5f:a6:ce:2d:ab:16:17:4e:b9:bf:d6:
fd:0c:3c:41:bd:26:09:2a:a6:01:e2:60:0f:9d:1b:
4f:60:16:c0:0f:01:d7:b2:f2:27:9e:02:6f:5d:af:
ac:22:0f:40:6e:65:3c:3e:b6:c5:d4:cb:b0:19:17:
cc:59:dc:42:5c:0b:70:39:f5:80:e6:ed:46:0a:52:
b2:a4:ac:31:86:14:20:ff:09:1a:bf:4d:dd:f6:1a:
56:6b:b5:24:9c:c8:49:62:2f:ad:8e:fa:83:87:c6:
fe:5c:ec:8d:8e:2b:be:1e:31:27:72:0a:70:23:04:
a3:ba:58:be:d6:42:be:6a:13:ef:98:b4:10:43:e8:
bc:e1:46:ff:b5:9d:0c:21:37:44:3b:3d:42:e1:01:
40:34:5b:0c:5a:63:41:88:ac:a2:d7:4e:26:97:65:
e6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:58:CA:78:EC:A9:69:50:6A:E7:D4:81:59:1C:A9:29:97:A4:FA:38
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KFjKeOypaVBq59SBWRypKZek-jg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.220.0/22
Signature Algorithm: sha256WithRSAEncryption
17:e2:a1:82:18:f6:11:2a:2f:62:e7:4e:32:74:e1:8e:0b:1c:
cb:7e:ec:b0:13:0c:62:26:01:f6:81:ce:69:ff:6c:ff:b4:f9:
bb:46:b3:60:3f:4d:da:53:c2:4c:b1:88:1a:1e:5b:5f:b2:c1:
0a:64:e5:c5:19:13:2c:28:60:ed:f5:b0:3f:3e:1a:67:9c:5b:
12:6b:21:ee:3c:de:a7:e1:15:06:43:37:35:0a:df:08:8e:6d:
d5:50:8a:1d:d7:36:0b:6f:14:ba:c1:92:2f:b1:ee:cb:4e:e0:
de:62:44:4c:a2:fe:0f:74:ec:0c:c7:e4:98:bf:3d:d5:f0:fc:
9e:b6:6f:9e:21:f6:da:a4:40:a3:f9:61:88:6d:e1:a9:98:de:
19:77:f8:34:44:94:d6:d1:8b:03:5d:6d:ec:2f:93:51:20:cc:
61:ad:c2:01:b6:0a:33:7e:47:81:bc:82:22:39:80:f1:df:5d:
29:81:12:89:69:db:c5:86:8d:13:0a:54:bd:77:ac:6a:4a:b2:
f5:c8:f7:d7:e4:48:e5:ca:cd:32:fb:99:5e:ee:17:5c:df:95:
d0:a7:dd:c9:31:76:c9:34:ae:83:33:d7:fd:c8:16:6a:44:bf:
1c:b4:2d:df:57:9b:82:5a:dd:da:19:54:60:07:50:e7:b5:8c:
da:f5:dc:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org