Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UjODXPAuXw288299FTF8yI8hPSM.roa
File: UjODXPAuXw288299FTF8yI8hPSM.roa (raw, json)
Hash identifier: eIOjZddI18hNhXtuvqbIbB50gtdApwgnQ+Haj6ABdv0=
Subject key identifier: 52:33:83:5C:F0:2E:5F:0D:BC:F3:6F:7D:15:31:7C:C8:8F:21:3D:23
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2950
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UjODXPAuXw288299FTF8yI8hPSM.roa
Signing time: Fri 01 Sep 2023 10:06:22 +0000
ROA not before: Fri 01 Sep 2023 10:06:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10576 (0x2950)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5233835CF02E5F0DBCF36F7D15317CC88F213D23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d8:ae:ab:a1:07:fc:54:fb:03:47:c7:38:c2:
77:69:e7:05:7f:d1:79:0b:ef:a0:9a:41:79:ce:c6:
8a:c2:b5:2d:b9:62:b7:02:33:2f:8d:e6:ed:f0:bd:
7b:fa:91:31:7a:60:36:05:28:f8:0d:e2:af:d6:92:
18:05:fe:a4:c4:84:26:30:90:3b:b8:54:12:2a:32:
e1:73:f0:7e:50:bc:26:cd:20:25:29:f6:38:34:8f:
c3:d9:53:10:22:ff:8e:a1:bd:8d:32:63:4c:a6:aa:
6d:cb:50:47:b5:76:68:f0:36:d3:e6:ce:ac:e0:3a:
c5:e5:c4:e8:78:e8:df:3f:06:f9:bb:40:68:0e:76:
a0:e2:0f:3f:75:db:78:2d:be:98:9a:34:f9:d6:fe:
24:79:a1:e5:31:c7:f3:fc:c7:c5:31:5d:fd:ce:f1:
26:03:07:01:dc:3d:b0:9a:f4:e0:bb:7c:c2:1c:9f:
2d:82:64:bf:48:68:a6:9e:b9:0a:5f:4f:47:16:23:
23:38:88:c3:66:dc:68:a6:e3:b1:73:35:66:35:c0:
9f:ec:9c:fb:5e:e2:b9:3b:4f:61:df:a1:7f:f0:50:
95:06:4a:c4:12:10:96:ef:49:c8:e0:5a:6c:d1:e0:
54:30:98:c4:ee:54:92:02:d2:aa:ff:fe:44:4c:81:
53:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:33:83:5C:F0:2E:5F:0D:BC:F3:6F:7D:15:31:7C:C8:8F:21:3D:23
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UjODXPAuXw288299FTF8yI8hPSM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.40.0/22
Signature Algorithm: sha256WithRSAEncryption
57:a6:15:e2:ca:ef:b0:26:20:cd:3a:8b:30:91:57:1f:51:65:
7d:68:c1:38:bd:30:ad:b0:a7:3a:14:61:fd:f6:d4:1f:04:b2:
61:ec:96:2e:63:90:59:da:62:88:c9:c3:2e:99:8f:51:af:89:
16:c2:8e:eb:4d:45:44:c3:6a:61:86:3b:03:1e:03:9f:33:bf:
6f:18:44:e2:9f:b8:c7:ef:d5:13:e4:64:19:db:dd:04:d9:4b:
b4:26:08:50:d9:20:36:e0:6b:33:61:12:c4:17:88:4f:dd:b1:
d1:6e:46:94:81:c4:34:0b:34:f0:5e:15:d7:b1:3a:d0:83:c3:
e9:d6:cd:2b:e9:7b:f8:27:06:fb:b5:ed:8a:e5:37:6d:e2:c8:
2d:03:9c:29:78:d1:9b:9a:18:2f:83:86:1a:b5:7c:14:74:d3:
ec:7b:d1:98:75:41:dc:d0:00:36:b7:80:d2:a6:e7:37:4f:02:
e1:35:41:e9:13:95:66:d4:18:a3:2a:8d:61:37:27:67:c9:82:
75:dc:4c:71:5e:9c:02:44:99:6a:b8:3e:a8:14:45:27:5c:40:
c7:d6:fb:57:d6:17:d4:82:10:f3:2c:e8:79:67:74:61:45:1b:
1e:4a:55:b4:92:ab:d3:4f:ce:c3:98:1c:6f:bd:d0:48:26:c9:
d1:b5:e1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:25 2024 by rpki-client on console-fra.rpki-client.org