Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XwXgI4gZr5GWgqE1ZsofFq841qQ.roa
File: XwXgI4gZr5GWgqE1ZsofFq841qQ.roa (raw, json)
Hash identifier: 3+bpg0bs2vQ71L/A8dBAVHihh/jet+wGzPJVpkmpciQ=
Subject key identifier: 5F:05:E0:23:88:19:AF:91:96:82:A1:35:66:CA:1F:16:AF:38:D6:A4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29BD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XwXgI4gZr5GWgqE1ZsofFq841qQ.roa
Signing time: Fri 01 Sep 2023 10:07:01 +0000
ROA not before: Fri 01 Sep 2023 10:07:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10685 (0x29bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5F05E0238819AF919682A13566CA1F16AF38D6A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d1:05:6c:30:87:90:d9:1a:5a:8d:b8:3b:e8:
6e:65:de:26:6f:2f:ae:95:a4:52:ee:61:b0:4f:56:
e6:b2:f5:36:dc:d5:f1:bd:71:e2:1c:60:bd:e4:63:
c3:b2:91:0e:3f:36:6b:a4:a1:89:7f:8b:05:06:a4:
87:b5:be:d3:13:38:1b:a2:07:f4:e1:c5:2f:61:a5:
9c:fe:8f:8a:95:2b:c4:ac:7c:6d:09:ce:b6:5f:15:
6e:84:4d:5b:a5:71:f2:f4:b7:f8:46:53:2f:16:76:
b1:06:a6:e4:e8:56:46:e9:b2:23:10:63:42:93:07:
7e:04:ae:8f:d8:0d:b1:83:28:fc:ae:b3:5c:c9:0c:
6a:63:9e:55:13:8e:f6:c7:66:a8:91:fa:00:3a:ac:
3f:4b:0e:df:37:9c:ce:c8:52:e5:6c:d0:e8:ea:bc:
fa:43:cf:3e:24:c2:d3:87:08:66:3f:f7:3b:5c:48:
e0:da:9a:9b:f3:fc:6a:14:bd:83:fd:0f:70:6c:4b:
73:17:24:dc:5a:0d:42:e2:65:05:eb:c4:1d:3e:df:
7f:23:fe:a4:49:11:4b:6e:eb:0f:74:5f:8b:7c:e6:
38:77:96:93:6f:35:8f:21:ca:bf:ff:e6:dc:6d:2e:
f0:1e:db:ec:87:63:61:e0:d5:a7:1d:cc:8d:94:f7:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:05:E0:23:88:19:AF:91:96:82:A1:35:66:CA:1F:16:AF:38:D6:A4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XwXgI4gZr5GWgqE1ZsofFq841qQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.95.0/24
Signature Algorithm: sha256WithRSAEncryption
07:5d:38:11:aa:5e:69:5f:f8:6f:4f:54:88:eb:ee:c0:1c:29:
b4:a6:69:74:a7:0d:0f:dc:8d:0e:8c:38:78:c9:25:a3:0c:9a:
59:e6:3c:55:97:82:2d:07:1f:14:8d:41:66:26:9a:e6:9a:3c:
a2:16:e9:0b:d7:3e:17:16:a3:f1:3a:94:69:28:73:b9:55:4c:
0c:82:9d:d8:32:29:dc:7c:24:10:71:4b:87:25:55:44:ec:87:
50:f5:b7:7d:5b:41:c9:ed:8c:a4:f9:90:37:a2:ba:11:f0:22:
90:7b:23:3a:ad:57:84:48:5e:7e:65:76:13:04:c6:1c:a0:65:
12:f7:2b:05:4b:a5:0f:76:a0:8b:71:e1:41:22:07:8f:ee:8d:
da:84:8c:8c:17:de:b6:f9:77:06:7d:d1:80:06:04:c2:2d:e9:
b6:e1:0b:0c:fa:a8:f8:ad:94:c9:f3:0a:27:ac:e7:2a:77:54:
2d:c8:4f:67:e8:1e:50:f1:b6:37:b3:0c:11:72:65:43:16:31:
eb:72:f3:f1:eb:27:1c:6c:91:cb:d7:0f:c0:66:15:c2:b0:82:
a6:ec:1c:ef:b7:6d:9d:21:c7:ec:e2:b5:b3:e9:c2:b6:ac:2a:
08:2d:d9:42:de:f3:80:4f:34:0f:dc:71:46:93:32:28:ed:6e:
ce:2e:94:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:25 2024 by rpki-client on console-fra.rpki-client.org