Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K_fjmDnHOp_156TJqEScBC6UF5s.roa
File: K_fjmDnHOp_156TJqEScBC6UF5s.roa (raw, json)
Hash identifier: ZE4im1VadkFz30HYaIuQfMIYfRx7tRqqLD/pMnkRM/Y=
Subject key identifier: 2B:F7:E3:98:39:C7:3A:9F:F5:E7:A4:C9:A8:44:9C:04:2E:94:17:9B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A99
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K_fjmDnHOp_156TJqEScBC6UF5s.roa
Signing time: Fri 01 Sep 2023 10:08:05 +0000
ROA not before: Fri 01 Sep 2023 10:08:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.176.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10905 (0x2a99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2BF7E39839C73A9FF5E7A4C9A8449C042E94179B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ed:85:86:db:c2:d6:08:61:a6:96:72:d7:68:
80:a9:5a:23:8b:38:5a:74:8e:0c:15:6f:5b:b0:24:
eb:c0:a0:68:1f:cc:fd:48:27:1d:97:5a:fa:16:4c:
64:6c:e4:f4:34:da:c2:f2:88:4d:21:0f:ed:5a:7a:
43:ba:cd:c2:15:dd:f5:ca:a4:5e:9a:c7:37:0e:ac:
b0:62:87:91:95:e8:da:6c:15:e4:98:3c:1f:72:e9:
e8:34:40:b6:f5:51:b2:53:fc:08:47:de:a0:74:e8:
c4:68:b7:7f:4c:59:91:67:7a:8e:88:f5:c5:20:87:
6f:e8:34:71:8e:5c:b8:c9:44:5c:80:e7:77:06:1b:
2b:9b:ed:79:c5:b4:20:ca:d0:d3:42:78:f1:b4:8d:
90:b3:70:f2:86:ac:39:d5:9d:03:a3:5e:04:b2:3b:
68:9b:8b:d4:73:39:3c:7c:92:a2:27:8b:f2:26:7d:
9d:29:cf:b9:bb:3d:a6:9e:e1:74:eb:89:c9:0e:a3:
99:17:5c:e0:a9:33:26:4d:f5:de:22:a2:06:9c:1b:
d9:f4:2a:93:ec:07:c1:74:b5:25:43:5c:8c:b1:a3:
fd:61:d6:f8:01:3b:2b:34:84:eb:0d:d1:5a:50:70:
24:84:4a:4c:2b:c9:42:13:0b:14:e1:18:43:d6:4a:
57:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F7:E3:98:39:C7:3A:9F:F5:E7:A4:C9:A8:44:9C:04:2E:94:17:9B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/K_fjmDnHOp_156TJqEScBC6UF5s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.228.0/22
Signature Algorithm: sha256WithRSAEncryption
09:70:50:54:ce:41:0e:4b:70:30:88:d4:8c:d8:1f:02:67:a8:
b7:a9:39:1c:3e:4b:04:7c:1f:ad:25:bf:43:39:89:41:ee:ca:
5b:a4:69:62:55:10:1f:5c:54:f6:16:20:6d:18:ab:66:a6:2e:
88:60:93:e4:a0:07:71:55:26:59:57:e6:7d:9f:78:ca:8d:69:
2b:0b:41:ae:59:4a:07:df:60:80:67:63:08:0b:c1:95:cf:9a:
3a:e4:86:66:5b:9c:49:91:63:b1:00:f3:18:dc:da:ac:51:8f:
67:a0:bf:9d:09:fe:c0:51:98:fd:54:67:b3:f8:01:fa:6a:31:
72:2f:c7:62:88:2d:17:91:13:06:19:27:b2:22:be:dc:e7:39:
47:38:89:6c:39:74:d4:46:fb:aa:a2:32:56:b9:1e:ba:c6:e7:
cd:3a:93:a7:2b:8f:59:62:aa:3b:7e:f1:29:47:ff:82:e8:5d:
82:dc:0b:8f:f0:ee:28:8f:71:e7:55:51:9d:78:d9:ad:e2:28:
b0:10:4a:19:b2:c8:42:a0:45:ef:72:c0:25:df:af:24:99:8d:
dc:9e:44:fd:5b:9f:c4:41:91:42:e6:fc:83:3c:03:fb:0f:e0:
d4:45:5c:15:50:38:ac:08:16:3b:07:fa:41:4c:c6:c4:63:e2:
46:d5:a5:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org