Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XXgl11ta7RGguFVRq2Qig6TB0TI.roa
File: XXgl11ta7RGguFVRq2Qig6TB0TI.roa (raw, json)
Hash identifier: IGbC233oFUwpovbRpNouhVZuoS82SMubUCrep2GYC5E=
Subject key identifier: 5D:78:25:D7:5B:5A:ED:11:A0:B8:55:51:AB:64:22:83:A4:C1:D1:32
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29BA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XXgl11ta7RGguFVRq2Qig6TB0TI.roa
Signing time: Fri 01 Sep 2023 10:06:59 +0000
ROA not before: Fri 01 Sep 2023 10:06:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10682 (0x29ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5D7825D75B5AED11A0B85551AB642283A4C1D132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f1:fe:c2:e6:a3:2e:ea:a7:93:4f:61:59:ba:
a2:3e:9b:a1:99:e0:ad:0a:b1:eb:c1:95:ec:53:da:
d5:3f:dd:26:d7:6d:e1:8c:6d:d3:18:a3:cb:5c:48:
48:c1:5a:b4:4d:d1:30:37:67:07:3b:df:25:19:8a:
60:fb:8d:70:81:9a:bb:3c:41:f9:f6:46:5f:65:11:
14:7f:a2:46:05:a9:3f:79:62:ce:e6:a9:52:dc:c7:
d8:69:2a:8c:0d:50:84:07:49:7b:cd:42:cd:40:a9:
13:ec:8f:b2:5f:24:d4:c2:b1:54:3a:32:0c:75:09:
78:be:25:9d:93:5d:4f:85:16:7c:c2:8d:15:cd:89:
69:82:b3:31:33:c9:e0:bd:6a:65:91:81:54:1b:cf:
17:35:7b:f7:b2:ba:b7:e6:e6:f5:26:e2:bb:df:c7:
94:b5:67:96:1c:ce:3a:3e:42:11:9b:e3:9f:b7:d8:
be:32:5f:c3:c2:b2:e2:8c:9c:ab:d4:22:0d:ca:a0:
2a:41:cd:e0:05:3a:77:41:f7:f9:3e:27:48:7d:91:
98:6d:1c:12:bc:18:3d:1c:73:68:1d:09:cc:55:d1:
fe:40:93:3e:fb:f5:da:28:1f:ad:f8:b7:86:29:06:
50:8d:63:ed:42:cb:66:75:74:ed:e0:58:67:ad:05:
25:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:78:25:D7:5B:5A:ED:11:A0:B8:55:51:AB:64:22:83:A4:C1:D1:32
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XXgl11ta7RGguFVRq2Qig6TB0TI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.72.0/21
Signature Algorithm: sha256WithRSAEncryption
48:db:64:0c:e2:27:ba:96:25:1b:a9:0b:f0:29:19:4c:7a:58:
34:9a:fc:a1:e2:5e:2f:2d:b3:0a:82:70:d0:a6:5d:76:4f:de:
8d:e3:70:18:97:3c:00:fb:19:5a:62:c7:7a:84:74:9f:7b:26:
71:71:85:0e:7b:89:4f:c0:8b:8e:0c:08:ba:0d:a2:b1:66:a6:
44:23:05:4d:d8:8b:76:98:24:a7:b7:7d:c0:ad:81:f9:29:e8:
1f:86:2b:ef:07:86:f2:b3:a2:05:50:f9:de:02:5d:10:f7:96:
89:7b:8d:9a:f0:e3:16:7f:1e:34:5b:94:b4:f1:94:5f:98:fd:
f5:18:ed:be:c9:7f:49:54:69:21:d4:46:26:b0:c7:8b:ee:40:
3f:35:33:fe:79:c9:a1:bc:f9:38:6d:94:86:eb:da:09:26:2f:
f8:4c:38:5c:f0:e5:c9:db:4a:7f:88:c0:20:7a:fb:88:46:88:
a7:3c:59:50:df:cc:a5:e6:93:4c:af:a7:c2:bc:df:84:cb:52:
b7:88:14:a0:a4:5c:ac:6b:5d:59:ce:3e:ae:f7:4e:2b:36:16:
7c:b6:09:68:34:43:f6:d0:48:d5:8c:03:f2:59:87:e1:95:05:
ea:66:cd:a6:6e:43:23:3c:49:19:ba:bd:0a:08:6f:e3:86:8a:
ea:8e:13:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org