Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa
File: OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa (raw, json)
Hash identifier: LkT0kxupnUqG6rqvFqOfLOxyWA1UIibtGYJrIfEXZWY=
Subject key identifier: 38:EE:66:29:E3:66:82:24:34:D2:5C:01:01:F9:93:8E:47:C5:C1:FC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A5E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa
Signing time: Fri 01 Sep 2023 10:07:49 +0000
ROA not before: Fri 01 Sep 2023 10:07:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.60.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10846 (0x2a5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=38EE6629E366822434D25C0101F9938E47C5C1FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7f:be:5f:1b:a4:1e:65:0c:2b:d6:84:b3:7e:
f0:95:fb:c4:ca:33:42:89:f1:91:f4:02:2d:77:07:
99:d5:0e:fb:1b:1c:76:ab:a4:97:2e:19:6b:43:43:
90:a6:39:5d:f2:e8:c7:33:b0:54:63:09:f2:38:de:
99:40:39:a7:fa:13:21:f9:52:25:16:d5:46:cc:57:
56:bf:36:2b:88:f9:09:05:40:91:8b:55:6a:19:a1:
de:29:24:9d:5e:5c:59:cf:7f:9a:24:d9:21:38:25:
a6:4c:6b:c4:47:65:ad:50:eb:d0:8c:dc:c8:81:21:
fd:f0:5f:ff:a3:ab:10:6d:63:14:4b:bf:76:18:2a:
16:e1:77:77:42:7e:da:87:51:d7:45:c7:75:0e:0e:
ae:da:5c:28:b2:fa:ae:ee:ce:e5:51:4d:19:cf:e5:
64:b7:c7:0b:ba:c3:b0:c3:51:bb:25:2e:4d:77:be:
c3:a5:83:e5:73:32:8a:48:f4:cc:60:2f:40:e1:51:
7e:4c:46:89:e4:98:3c:a5:1b:eb:cc:05:4e:50:d7:
cb:1a:02:e7:f0:cd:0c:ab:96:9b:36:4a:11:40:f9:
4c:2b:47:46:f7:99:04:08:09:88:b8:28:b4:24:7e:
a2:34:b5:22:a9:af:16:c0:be:5c:a8:1a:c5:8c:bb:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EE:66:29:E3:66:82:24:34:D2:5C:01:01:F9:93:8E:47:C5:C1:FC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.60.0/22
Signature Algorithm: sha256WithRSAEncryption
69:ea:39:64:86:ae:43:f2:31:a2:78:53:f3:b7:6b:c1:a1:44:
b5:25:22:90:45:3b:d6:4b:a6:73:35:cc:c8:85:26:5d:2b:c5:
fa:33:4b:82:6f:11:e9:b7:28:90:23:81:05:06:c4:04:16:46:
ce:2d:ca:02:79:fa:d5:8b:23:4a:df:c2:40:84:57:ab:cb:29:
89:aa:e4:95:87:f0:30:39:8c:8b:fe:d7:c9:b3:28:22:1d:37:
84:66:83:96:bd:18:e2:8c:a7:6d:f2:e8:44:75:46:39:42:40:
8a:77:0a:ba:b8:d9:f7:c4:a7:e3:24:49:91:ef:4f:14:9a:38:
2b:a7:1d:d7:e3:00:ca:61:1c:45:61:10:82:5b:c7:68:95:d1:
ba:56:71:e8:95:15:c3:64:d6:42:47:62:7a:dd:d2:89:d5:08:
a9:57:74:ff:4a:e9:44:01:06:9e:51:c7:26:61:d5:73:02:3c:
31:f8:d3:e4:d5:28:e4:09:49:5b:4f:ad:59:70:40:36:b7:d9:
8d:6f:68:b1:6c:9f:48:e3:03:a7:a8:3e:af:ed:a1:9d:91:0f:
0b:69:40:24:a4:50:bd:9f:b6:97:ff:d7:02:b4:de:38:07:ba:
99:ed:04:1a:30:ac:ae:bc:30:68:5b:0a:df:61:e3:7c:f0:b2:
24:fb:02:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org