Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U6gbHTE65PmeoG0VxTMzE7NauqI.roa
File: U6gbHTE65PmeoG0VxTMzE7NauqI.roa (raw, json)
Hash identifier: W+8Ld/1mLglPJDc368LAYmS6UNQdcXJ5dWCZbp9RRZE=
Subject key identifier: 53:A8:1B:1D:31:3A:E4:F9:9E:A0:6D:15:C5:33:33:13:B3:5A:BA:A2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28A2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U6gbHTE65PmeoG0VxTMzE7NauqI.roa
Signing time: Fri 01 Sep 2023 10:05:36 +0000
ROA not before: Fri 01 Sep 2023 10:05:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.232.152.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10402 (0x28a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=53A81B1D313AE4F99EA06D15C5333313B35ABAA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:90:ef:c6:87:59:63:3d:d8:4a:a5:1f:d6:00:
fd:38:0c:0c:65:fe:08:4e:b8:9c:e5:9d:de:82:76:
0b:27:b4:0d:a1:25:fc:2f:46:a1:38:58:32:59:eb:
b4:68:80:03:35:e0:f4:ac:e2:21:64:e4:4b:38:00:
fb:0e:41:73:39:6d:e6:29:a4:3c:ef:9e:d2:16:f6:
9f:1a:d7:5d:9c:0c:ef:a4:0c:8e:b5:59:26:75:76:
8a:1b:af:02:4d:86:45:78:17:1a:b8:2a:85:e8:7c:
ac:a7:98:f3:32:f3:d6:f4:88:98:76:73:04:1a:35:
e4:86:62:37:70:31:6d:ae:39:95:b4:88:2f:66:81:
6f:c8:ed:87:1a:bd:d3:8c:f4:f9:25:56:fa:12:62:
b0:62:8d:ef:8e:ac:d2:cc:fe:90:35:7e:27:7f:ea:
e3:b6:2e:38:d8:a8:48:57:d1:9d:b7:3b:e3:9c:c1:
96:be:1d:bd:01:be:af:e4:b9:87:3e:30:85:64:19:
a1:df:cc:7f:4c:c7:0c:0a:b4:e1:3e:cc:9f:e8:dd:
68:e8:f9:ef:d5:9d:1a:51:06:94:a4:19:83:d9:72:
76:bb:92:30:f3:e0:d2:5e:41:ed:49:65:5a:3d:47:
f3:59:d5:a3:40:1e:46:80:6e:85:ee:af:80:fe:5b:
ef:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A8:1B:1D:31:3A:E4:F9:9E:A0:6D:15:C5:33:33:13:B3:5A:BA:A2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U6gbHTE65PmeoG0VxTMzE7NauqI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.152.0/21
Signature Algorithm: sha256WithRSAEncryption
54:13:dd:f0:13:f0:04:9c:e4:c2:07:5a:8b:b7:21:33:4a:e9:
1d:8c:58:8a:9a:c9:13:6c:b7:e3:65:0a:c8:04:50:2d:66:ca:
43:cf:1c:58:18:2c:24:10:98:38:ad:22:1b:7e:39:a4:ed:7d:
ab:d6:21:f2:9c:3e:5b:2a:1e:c2:0e:b0:79:a7:37:e9:3c:a9:
1d:de:aa:a4:ef:74:59:74:86:c5:bf:75:c6:91:50:d8:24:62:
ee:f3:28:f4:f7:b5:37:17:80:82:7c:a7:2d:dc:e7:9d:c9:c7:
56:34:85:6b:80:fe:2a:2f:22:a7:73:14:94:fc:ea:f2:3b:3c:
03:9f:ad:19:7a:e0:d6:6f:bb:8c:ac:f4:73:2f:ab:63:d6:3e:
fc:0e:52:2c:b3:74:77:cd:46:62:8a:81:da:77:ad:bd:98:62:
1d:d9:95:db:ca:e8:b4:16:04:8e:44:ee:cb:0b:b7:fe:6a:d1:
c7:22:a0:42:3c:fb:a3:f7:8b:83:c5:3d:b3:4c:01:2e:f7:9c:
bc:68:38:07:5e:a9:a0:95:66:97:85:ce:7a:28:f3:a4:85:24:
7e:23:69:25:b2:63:98:28:08:df:22:a8:c6:41:65:94:9a:c2:
c5:b2:b4:71:70:49:5e:85:bd:e9:4e:c2:92:81:d1:31:3d:d7:
ac:20:b6:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org