Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OzCtJ5Dq5PKADgv5daRXbIfi-aE.roa
File: OzCtJ5Dq5PKADgv5daRXbIfi-aE.roa (raw, json)
Hash identifier: CYuBh4x/spn8OQojkeaxXnvkR5oIhXo4otkKT1GgTDM=
Subject key identifier: 3B:30:AD:27:90:EA:E4:F2:80:0E:0B:F9:75:A4:57:6C:87:E2:F9:A1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A4A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OzCtJ5Dq5PKADgv5daRXbIfi-aE.roa
Signing time: Fri 01 Sep 2023 10:07:43 +0000
ROA not before: Fri 01 Sep 2023 10:07:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.192.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10826 (0x2a4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3B30AD2790EAE4F2800E0BF975A4576C87E2F9A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:77:13:55:51:62:18:74:87:5c:c1:55:f8:2d:
4d:67:dd:4e:e5:51:40:99:85:37:6f:84:b5:b6:80:
7c:88:85:ad:0c:b0:34:b1:45:86:18:b9:87:be:c6:
f1:f3:9a:c6:1f:5c:e6:72:19:20:0f:14:2b:61:46:
e1:e6:9b:21:f6:7e:9c:e8:1b:e7:45:f4:88:9f:31:
c6:c5:53:3c:b3:d6:0e:ea:27:59:e6:8c:89:40:89:
17:f6:e5:5d:2e:03:31:8d:15:0d:f0:ff:16:e9:ff:
27:ef:c9:3b:c5:14:52:2f:68:40:e5:d2:39:a3:ab:
ce:09:aa:3e:c4:4b:5f:de:0d:23:49:9a:fc:26:5d:
34:19:76:0f:3d:6a:d3:74:b4:91:dc:5e:1f:70:d1:
10:c1:5c:3c:d4:4d:ed:e6:50:72:68:21:6e:1a:98:
e6:b8:f0:ed:83:bf:aa:73:40:06:89:8d:ad:0e:f3:
8c:25:85:0e:07:19:1b:b3:c7:47:df:36:7d:96:eb:
6a:10:39:1a:f4:e3:ca:e8:a8:09:06:18:3d:d2:b8:
1f:a1:87:77:29:ca:09:94:98:43:59:4a:35:2b:12:
f0:ac:18:b5:8d:1d:fe:f7:35:c4:34:32:21:d9:28:
e4:01:3e:d0:15:a4:39:2c:e9:4b:e9:23:42:29:b9:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:30:AD:27:90:EA:E4:F2:80:0E:0B:F9:75:A4:57:6C:87:E2:F9:A1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OzCtJ5Dq5PKADgv5daRXbIfi-aE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.216.0/22
Signature Algorithm: sha256WithRSAEncryption
98:3b:6d:13:ed:7d:51:95:5e:96:49:53:28:3b:a3:5d:90:c9:
74:7f:4c:fd:5f:9d:35:4d:fb:d1:cf:e3:37:da:7e:f7:7c:4f:
4e:c1:c0:c3:57:42:6b:6a:42:3e:bb:bc:4f:07:c0:f3:48:0b:
2a:8f:4a:88:12:7b:1f:eb:f4:c4:f4:0b:87:96:9b:3c:20:59:
c6:7b:45:93:27:9e:4a:79:63:f5:8a:aa:dd:04:23:f9:38:24:
f2:8d:cb:82:00:db:b8:eb:aa:33:3c:4d:ab:10:63:92:ff:5e:
cc:5f:ea:63:80:38:71:6a:7c:59:9b:57:52:cc:f9:af:ec:c2:
07:d2:76:70:c9:7f:38:a9:96:03:28:b1:73:dc:2d:a7:a6:95:
f8:9a:18:9c:00:3a:85:2d:ad:3b:83:c0:7d:19:a7:9e:1a:af:
c8:53:ca:e5:97:5d:67:0c:d8:48:bb:c1:5a:d7:dd:bc:e5:54:
70:5e:b2:0b:17:75:0c:0e:7a:3e:6a:57:e2:c7:c0:64:2f:5e:
91:0c:54:55:72:7f:6a:f7:e5:06:0c:42:03:b7:46:ed:fe:18:
d5:d6:3e:e7:38:20:6d:b2:3d:95:8e:22:90:95:96:d3:e7:d3:
53:41:bf:13:d5:35:7a:0a:2a:27:10:82:59:6f:05:c2:62:a4:
76:11:3a:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:25 2024 by rpki-client on console-fra.rpki-client.org