Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QDk2fKfmkBp5KU88maAfQbINFFY.roa
File: QDk2fKfmkBp5KU88maAfQbINFFY.roa (raw, json)
Hash identifier: Yd7fgO1c724JTWGsma4WWTsIycNJZwYiQVFiPVWrD9M=
Subject key identifier: 40:39:36:7C:A7:E6:90:1A:79:29:4F:3C:99:A0:1F:41:B2:0D:14:56
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A11
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QDk2fKfmkBp5KU88maAfQbINFFY.roa
Signing time: Fri 01 Sep 2023 10:07:26 +0000
ROA not before: Fri 01 Sep 2023 10:07:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10769 (0x2a11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4039367CA7E6901A79294F3C99A01F41B20D1456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:93:24:92:7e:bf:cd:7c:b0:37:cc:a5:2c:59:
94:6d:d2:91:66:ad:74:08:f4:f6:d1:dd:50:08:54:
f0:22:33:2e:1f:5c:8a:bb:e1:d3:92:d7:bd:3f:37:
3d:04:fd:20:14:12:1e:00:11:8b:68:73:06:b0:85:
77:1a:0b:62:8b:d1:ff:37:6a:5d:41:38:7d:3d:9a:
fa:7b:ee:0d:0b:72:2c:56:71:00:cb:d0:d8:bb:a8:
90:e0:ef:18:83:67:da:7c:f2:c4:5e:5f:99:99:0e:
c5:7d:2d:41:9c:51:48:96:a2:39:78:00:98:c8:ad:
b9:95:71:95:57:1a:c1:b1:69:6f:e5:cc:4f:ad:c9:
46:54:4f:87:7a:ed:99:2b:e7:a9:27:0c:c9:40:ba:
2a:27:6d:80:dc:e9:f3:cf:f6:0f:bb:45:1a:92:72:
3c:54:76:82:8d:1b:0b:32:4a:86:70:74:a2:31:5d:
cb:bf:e5:d3:db:c8:45:e0:13:47:6c:a3:a7:e3:9b:
5c:80:58:8f:21:de:0d:10:25:27:c9:92:66:e7:63:
b4:ed:82:90:ab:bb:1a:c1:c6:69:5a:50:40:99:78:
3c:d7:a4:36:3c:5b:1a:56:93:8b:57:a2:76:1b:48:
09:70:bb:b4:0e:c5:12:08:01:88:ae:f9:15:d5:62:
06:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:39:36:7C:A7:E6:90:1A:79:29:4F:3C:99:A0:1F:41:B2:0D:14:56
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QDk2fKfmkBp5KU88maAfQbINFFY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.164.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:67:37:76:77:b6:f5:dd:46:f9:e2:97:9f:07:25:dc:97:75:
f4:c7:6f:e6:fa:64:0e:3a:9c:c5:39:2b:76:05:6b:63:88:88:
a9:56:53:d8:88:e1:97:78:c1:66:df:56:88:a6:cc:9d:eb:10:
cb:4b:08:e4:40:bd:1e:34:ae:c6:f1:f5:47:d5:b4:e5:28:0a:
54:18:e0:56:13:b6:01:35:9a:ad:82:80:60:37:3a:28:05:ea:
07:3d:8d:1d:df:75:92:11:6f:e5:e8:e3:1d:62:3f:e7:de:25:
32:c4:b1:87:b4:47:f5:57:44:9a:e5:64:33:d6:01:c9:1e:d2:
e4:36:f1:40:b4:ad:c9:7a:18:d1:6e:2c:26:67:39:cb:dd:bc:
ef:4c:2e:9c:e5:be:64:d9:32:40:9c:21:fb:46:50:8d:cb:27:
fb:63:6a:71:18:f7:5b:a2:f2:b2:7f:62:ee:28:48:9a:8a:d9:
05:44:ca:c6:71:bb:c2:18:31:e0:e4:f5:5d:4e:69:0f:b3:a7:
cf:aa:a3:2f:b1:07:58:6f:ba:ac:8b:93:95:81:43:e8:eb:04:
b3:39:c3:9d:8f:da:a8:18:45:2c:b4:b8:8e:ff:40:1b:fc:84:
dc:30:b3:da:d3:8e:70:35:42:7b:57:ac:d1:07:57:5e:75:7a:
44:f4:22:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:25 2024 by rpki-client on console-fra.rpki-client.org