Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KzPYsFu_XoGJcdO8Sf5If4eSKg0.roa
File: KzPYsFu_XoGJcdO8Sf5If4eSKg0.roa (raw, json)
Hash identifier: qN4A0VWbMIFozcOj+CRuNt1lmKKb6a+rB6mMiRhIapU=
Subject key identifier: 2B:33:D8:B0:5B:BF:5E:81:89:71:D3:BC:49:FE:48:7F:87:92:2A:0D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A1E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KzPYsFu_XoGJcdO8Sf5If4eSKg0.roa
Signing time: Fri 01 Sep 2023 10:07:31 +0000
ROA not before: Fri 01 Sep 2023 10:07:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10782 (0x2a1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2B33D8B05BBF5E818971D3BC49FE487F87922A0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:aa:b6:1e:bb:8e:ad:a8:4a:30:41:f6:9a:bb:
44:aa:95:99:8c:86:81:0d:b7:03:a9:d8:5e:80:9b:
47:2e:1b:40:95:bf:b6:50:c5:73:4a:ee:6c:07:f4:
97:f7:5f:11:94:e9:b9:c8:bc:8e:a7:80:69:ba:4a:
a3:b2:8f:3e:95:31:09:04:17:59:32:d0:67:d4:65:
3e:dd:85:d4:91:04:0e:c4:b9:c7:33:eb:43:88:40:
89:07:75:45:a5:71:91:50:20:29:01:a1:03:7e:4b:
73:28:98:35:33:55:82:d7:36:95:0f:86:e8:0f:d6:
f6:81:d9:69:cf:a5:15:63:b0:3a:0d:3b:3c:90:73:
23:ea:dc:1c:79:ca:34:70:e4:c8:7a:06:7f:65:cb:
0d:cc:3b:7c:1e:97:ce:a2:a9:49:a5:2e:7b:33:71:
d6:64:4d:84:5e:fe:1e:4e:5e:c0:e7:40:5e:45:c9:
c5:8f:51:78:75:04:95:56:7c:f3:63:84:15:33:75:
f8:97:1b:62:77:37:f2:44:1d:bc:11:1e:01:02:ce:
25:b2:20:3b:44:04:aa:ad:17:2d:0d:05:ce:70:e1:
11:f2:2a:09:e5:44:66:08:ab:65:e5:72:3b:22:7d:
6c:ce:47:4b:38:80:b4:52:a0:cc:e9:5d:d5:7b:ce:
af:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:33:D8:B0:5B:BF:5E:81:89:71:D3:BC:49:FE:48:7F:87:92:2A:0D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KzPYsFu_XoGJcdO8Sf5If4eSKg0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.182.0/24
Signature Algorithm: sha256WithRSAEncryption
35:7c:d3:0b:f4:d8:e1:a9:dd:b6:8f:ce:bd:65:c7:ea:54:ae:
7c:82:20:a4:eb:90:14:d9:24:b9:b5:34:cd:86:49:70:43:1a:
4f:6c:a0:5c:88:71:17:e0:43:2d:bd:8c:0b:6d:4e:94:5d:9a:
99:3b:00:a6:1e:98:84:50:6c:1b:dc:c8:35:48:27:10:03:f6:
6e:d0:ae:5b:6f:68:c7:cc:8d:17:05:2a:9e:fd:da:30:78:8f:
a6:c8:7e:ec:e1:e5:40:82:53:1c:19:3d:cc:ea:c5:c0:0c:f7:
b7:05:bb:d1:d4:b8:47:7c:81:3c:5d:d9:e1:9e:df:a8:99:30:
6b:93:b8:ed:37:29:25:41:66:d3:03:6c:1c:3c:bd:94:6f:44:
a0:ff:75:1a:34:d7:01:77:e1:5b:69:26:a3:78:6b:c8:31:10:
79:19:d9:95:84:04:09:bb:18:46:4c:50:47:69:9d:0e:7e:4c:
53:46:a2:fa:10:a7:00:c0:a9:e7:f2:b0:33:38:a1:5c:a3:33:
9b:90:9d:e8:1b:60:bd:88:19:79:ad:64:4e:af:24:34:fa:af:
6e:7a:09:be:ba:41:ee:66:ae:e0:01:0c:a2:6c:0b:5a:cd:7f:
6f:ce:b2:df:5b:b4:6b:2b:74:80:13:a8:3c:9e:45:f6:4d:6d:
00:f1:d2:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org