Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MxjBmWn7Ek5fgGcDC5G5l5bKd7U.roa
File: MxjBmWn7Ek5fgGcDC5G5l5bKd7U.roa (raw, json)
Hash identifier: dEkQ3vQv6QJGrp/QIXmKKieUVyHze+ErC0w7i/0TteY=
Subject key identifier: 33:18:C1:99:69:FB:12:4E:5F:80:67:03:0B:91:B9:97:96:CA:77:B5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A10
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MxjBmWn7Ek5fgGcDC5G5l5bKd7U.roa
Signing time: Fri 01 Sep 2023 10:07:26 +0000
ROA not before: Fri 01 Sep 2023 10:07:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10768 (0x2a10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3318C19969FB124E5F8067030B91B99796CA77B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b8:0b:a2:d5:30:00:dc:64:b2:d0:c4:59:67:
96:c8:f7:61:94:df:36:9a:f7:5b:0b:ec:fa:25:0e:
5a:90:92:b8:06:66:b4:f9:f1:73:2a:46:42:93:e1:
11:b5:2d:97:ee:6d:db:46:6c:b3:d1:45:6b:96:96:
c2:0e:af:64:b2:cb:e7:13:5f:9d:d2:09:44:7a:1b:
42:23:32:d7:fb:7b:fc:5e:a0:38:5d:7b:ca:fc:35:
84:3b:4b:5e:2d:76:57:cf:af:12:33:68:c9:b8:c9:
2c:01:e7:ca:1d:c1:f0:31:a6:68:49:d1:b0:29:fa:
9d:f4:55:97:e4:52:a3:13:b0:4b:a4:bc:21:33:6f:
f6:20:37:81:3b:67:66:41:87:af:2d:d3:be:8f:d1:
da:90:85:33:15:0c:83:83:28:a6:97:b0:ef:9b:9d:
8c:29:ed:1b:86:7f:fa:2e:be:02:90:30:80:2e:1a:
90:42:26:f4:60:f5:bb:8e:68:20:26:d6:9f:b5:df:
c8:66:3c:27:4f:15:ec:49:c1:20:16:cc:3e:61:98:
40:df:10:8c:45:eb:c9:99:b5:08:6c:e5:68:a2:ba:
99:00:45:ba:cf:4d:c0:97:30:9f:7c:55:a8:49:fb:
7a:41:2c:3b:14:ca:60:87:34:9f:cd:7d:5f:b6:79:
3c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:18:C1:99:69:FB:12:4E:5F:80:67:03:0B:91:B9:97:96:CA:77:B5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MxjBmWn7Ek5fgGcDC5G5l5bKd7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.72.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:e8:56:37:4f:71:c1:fc:c7:2b:08:95:52:22:08:a1:56:fc:
b2:9c:b4:70:4e:a6:f1:da:7e:df:9b:e2:30:83:cc:04:de:8d:
38:84:e4:66:25:cb:c8:6d:f9:3d:ce:90:a9:5a:75:c5:c0:80:
3d:69:dd:69:05:cb:1f:8d:1b:b5:74:e9:83:08:36:45:d6:2f:
d7:83:33:d6:b6:67:08:0e:fa:51:17:87:59:9c:c9:48:96:e5:
cd:38:e1:a4:86:28:ec:4c:6f:93:84:1b:fb:9d:9e:7f:23:14:
9d:86:40:39:79:26:77:d9:ab:4e:b9:21:0c:d3:1f:3c:58:7b:
f4:82:02:d1:c0:32:5a:e4:da:b6:a8:eb:a5:47:0c:89:80:62:
cc:99:ec:a8:cd:55:ae:a0:45:76:4c:a5:98:cb:b5:19:c2:33:
3c:a3:3a:7f:25:d1:f6:56:0a:73:de:34:0e:da:2e:1e:03:11:
39:c6:eb:26:51:4d:c2:65:4a:ed:38:3f:06:a7:a5:57:a7:37:
a0:59:3a:a5:bb:36:4c:44:bf:35:0e:77:f7:73:f1:a6:ea:75:
89:62:2a:7f:75:9e:80:eb:cd:31:10:2b:d9:76:d7:2f:9e:e7:
20:79:c2:2f:f5:f8:f2:c5:e0:96:7f:79:53:6b:9d:62:d8:1d:
e1:44:ad:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org