Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MJqy8wxnaN_RINWqLXMAw237a0E.roa
File: MJqy8wxnaN_RINWqLXMAw237a0E.roa (raw, json)
Hash identifier: gNnMdlZlg4DbEKFbX00umKOCFG9MtISf9hh/zFd7NLA=
Subject key identifier: 30:9A:B2:F3:0C:67:68:DF:D1:20:D5:AA:2D:73:00:C3:6D:FB:6B:41
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 27EA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MJqy8wxnaN_RINWqLXMAw237a0E.roa
Signing time: Fri 01 Sep 2023 10:04:43 +0000
ROA not before: Fri 01 Sep 2023 10:04:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 45.64.28.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10218 (0x27ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=309AB2F30C6768DFD120D5AA2D7300C36DFB6B41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7e:e4:46:34:8b:f1:81:6f:cb:45:57:b3:93:
af:66:20:d3:1d:ae:a1:0c:d8:2b:08:e3:26:0d:ed:
6a:8f:f1:12:8f:71:59:fe:79:30:c5:79:1b:71:a7:
6e:9a:ef:f1:b6:0a:c9:f5:ee:c9:3b:fa:f3:07:f2:
18:65:08:de:48:fd:e7:f2:90:ab:04:4e:55:42:9d:
4c:9c:5b:4b:b7:16:ea:c3:33:69:03:9c:ea:68:c6:
dd:31:90:87:08:90:1d:21:0a:e5:13:fc:fe:45:9b:
86:1b:27:2b:96:e4:dd:f7:5b:78:39:50:6d:20:9a:
64:8b:4d:8c:0d:6a:0b:7b:3a:9a:86:eb:f9:f1:e3:
30:a7:b9:07:85:eb:13:53:76:ae:43:1d:f0:b2:04:
61:1d:16:21:95:be:96:16:7f:54:2e:66:d9:4b:c3:
30:67:0f:d4:8c:0a:9e:16:ec:96:fa:a9:ff:28:e8:
aa:01:df:ec:be:77:c7:06:b5:d5:a4:7a:8d:3e:26:
66:19:c3:1e:96:81:c8:1b:bc:8b:d6:4e:1d:44:89:
e2:5c:b2:df:92:40:9f:b2:5c:2f:79:95:7a:16:e0:
f2:cd:ff:d0:19:0c:33:a2:b2:d0:21:5b:82:53:d8:
5b:9f:53:84:b9:34:69:b3:04:4a:cd:db:3a:cc:e4:
83:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9A:B2:F3:0C:67:68:DF:D1:20:D5:AA:2D:73:00:C3:6D:FB:6B:41
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MJqy8wxnaN_RINWqLXMAw237a0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:67:75:dc:fa:8c:8c:0d:4e:04:72:41:a7:b2:b1:6f:96:24:
36:0f:3a:62:c4:7b:e4:13:b3:1c:ba:d4:65:66:e9:e3:2f:48:
a0:48:47:e1:99:9c:15:47:3d:f3:8c:90:67:65:97:18:24:5f:
4b:03:c4:ec:f4:a4:29:02:d8:9b:94:df:a7:19:c5:a2:c8:17:
71:fe:3c:3f:ef:c5:72:37:14:ba:19:cb:05:9e:1b:b4:1b:ae:
6d:3b:5b:e3:80:ac:06:4b:2d:f4:b7:40:cf:ae:b6:ec:d7:6e:
e4:77:8b:34:8d:95:e0:ec:14:f7:9c:f2:fa:b9:32:2a:59:32:
b0:ac:03:b3:42:2d:37:52:8a:21:24:d0:6c:27:e2:02:8d:63:
cb:8a:24:04:fb:dc:38:e5:85:68:e3:ad:b3:cb:df:62:44:32:
3b:89:a4:c1:86:54:63:18:8e:f8:2d:42:81:c7:32:bb:99:c6:
32:71:44:81:b5:9c:04:30:9f:9b:3e:fe:e7:ca:18:73:70:3e:
c0:45:bd:90:0b:05:f6:32:33:38:62:c6:1a:a7:4c:f6:14:3f:
51:27:84:97:f0:68:5f:5e:58:99:8e:54:12:9c:36:9d:09:2a:
93:2d:4a:fe:60:da:93:a3:ec:9e:e2:75:d8:aa:a0:2a:6a:1d:
a1:2b:43:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org