Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa
File: NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa (raw, json)
Hash identifier: G+50zcRJWoscNKja0+dWU66sAzvRbNtCPROXrlMixBA=
Subject key identifier: 35:6D:0A:7A:26:C3:85:17:C6:83:C7:D7:B9:08:D9:AB:91:51:8C:64
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28CD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa
Signing time: Fri 01 Sep 2023 10:05:47 +0000
ROA not before: Fri 01 Sep 2023 10:05:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.8.192/26 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10445 (0x28cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=356D0A7A26C38517C683C7D7B908D9AB91518C64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f9:60:9e:4c:dc:8f:9c:93:8e:11:0b:15:0f:
3a:42:5b:59:19:01:88:cc:aa:eb:ce:bd:64:d2:66:
b3:e7:d8:6d:34:7d:d8:a9:12:46:b2:47:52:ab:b5:
48:30:42:9e:f3:0b:9d:ab:23:0e:ff:e6:f0:8c:2f:
59:54:48:54:14:a4:37:23:8b:3a:17:1b:68:a3:05:
c4:6c:6f:6b:3b:31:87:46:be:ee:a4:e9:21:52:cc:
6f:56:cb:12:8a:94:79:b6:de:a5:01:e7:56:13:78:
fd:1d:84:5c:ec:97:b1:30:10:44:34:07:36:13:38:
6e:de:6a:c2:43:be:38:d6:d7:8b:ef:88:5d:fe:b7:
e3:25:7b:80:fa:be:6c:fe:36:ff:9e:5e:a2:22:3d:
45:16:2a:4f:63:5e:86:ab:c8:ee:07:cb:56:39:45:
e4:94:17:40:44:7c:e2:42:89:ed:6d:5b:dd:46:a9:
bf:14:64:3f:86:0e:a0:91:36:c0:98:ff:23:23:37:
17:79:6d:80:8e:fa:8d:60:a8:d8:df:f7:75:4a:fb:
46:12:d7:40:8b:2f:19:e3:f7:73:8a:ae:f1:82:3a:
8f:97:9c:be:67:b5:de:87:d4:c0:38:11:75:fe:e6:
81:f9:d1:7b:a3:72:58:47:10:dd:1d:7b:bf:86:78:
7f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6D:0A:7A:26:C3:85:17:C6:83:C7:D7:B9:08:D9:AB:91:51:8C:64
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.8.192/26
Signature Algorithm: sha256WithRSAEncryption
6a:48:9f:47:25:71:ab:51:49:93:bf:6c:60:01:18:18:ea:35:
76:f1:d6:55:6b:a4:cf:80:d1:57:b9:42:54:47:ed:06:74:72:
e1:d0:aa:70:b7:c3:76:7c:ec:43:a4:22:24:16:2b:c7:0c:3d:
a7:d8:50:82:5e:39:55:2a:79:fc:e7:80:2e:5e:2d:8a:4f:4e:
9f:07:39:ed:9e:c2:77:e5:f8:32:24:73:e2:8a:7d:21:6c:da:
6e:55:06:17:48:fe:63:87:20:c1:c2:d6:ee:60:3e:3d:92:86:
8d:f5:4c:e4:07:4b:69:7e:23:6c:c3:66:70:c1:95:2d:74:f5:
8b:5d:7a:ba:74:5d:83:2b:d6:99:77:0f:77:0f:69:02:fa:db:
68:cf:f6:fa:08:92:5e:d4:33:63:fa:06:45:2c:5b:e6:05:10:
7f:8f:6c:39:be:6f:4e:24:8c:1e:67:5d:55:97:37:74:25:87:
90:fe:7c:25:58:16:98:d6:03:41:ad:b1:6e:3c:e3:56:0e:03:
34:b9:f9:f2:4d:5f:df:e6:2c:77:77:ac:34:38:3b:00:d4:1c:
15:a5:11:ab:62:c8:57:90:bb:69:1c:7a:cc:23:52:55:09:38:
17:63:79:d3:4b:76:d6:b8:71:25:46:71:d4:18:cc:79:0f:e5:
bf:fe:e4:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org