Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YR0XGn-Mj-3tz4Pi1cZebhTv-q4.roa
File: YR0XGn-Mj-3tz4Pi1cZebhTv-q4.roa (raw, json)
Hash identifier: mFFVfkgk7biGj5kVwntf0WbgTqn1xcY+fWnnUs//2RY=
Subject key identifier: 61:1D:17:1A:7F:8C:8F:ED:ED:CF:83:E2:D5:C6:5E:6E:14:EF:FA:AE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28B7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YR0XGn-Mj-3tz4Pi1cZebhTv-q4.roa
Signing time: Fri 01 Sep 2023 10:05:41 +0000
ROA not before: Fri 01 Sep 2023 10:05:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.160.0/20 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10423 (0x28b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=611D171A7F8C8FEDEDCF83E2D5C65E6E14EFFAAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8c:8e:3d:28:6b:9f:23:cd:0f:ab:06:50:4d:
d0:26:c3:62:cc:ee:8e:b6:df:b0:84:c2:e8:cb:2a:
74:df:1f:0d:fc:61:cb:a7:a7:4d:3a:70:0b:53:e1:
0f:bc:db:6a:fe:26:72:50:5b:94:09:e4:cb:27:c8:
60:6e:ba:52:4a:ed:21:35:10:b6:3f:0b:99:fc:90:
15:32:0a:f8:09:d7:dc:bd:7c:d1:06:f4:ec:4d:7d:
38:01:2d:73:fc:0f:07:a7:55:7f:4d:b2:84:37:c7:
a8:45:77:82:50:a7:00:ca:83:79:f0:98:f1:0b:be:
cc:36:98:84:6a:f7:73:6f:11:b9:7e:3c:46:2e:d7:
8f:99:c1:5e:5f:36:68:60:1c:2f:5b:97:82:3b:bb:
2e:84:4d:b7:68:cd:2c:90:fd:37:bf:d4:8a:31:bd:
68:f2:78:da:bb:71:fc:54:26:b3:bf:8f:8b:10:9a:
81:87:04:93:1e:d1:e6:67:d6:d1:f9:bb:ad:cb:ef:
79:5b:c2:d7:cb:66:ef:d5:0a:d7:d6:8d:bd:c9:1c:
0c:0d:aa:ab:c7:93:46:91:d6:15:0c:f9:80:7e:07:
36:53:fa:d3:c6:59:06:82:6e:b5:34:c5:4f:5d:e7:
18:09:87:d0:3f:06:64:d7:9e:9c:dd:af:04:6f:93:
f0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1D:17:1A:7F:8C:8F:ED:ED:CF:83:E2:D5:C6:5E:6E:14:EF:FA:AE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YR0XGn-Mj-3tz4Pi1cZebhTv-q4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.160.0/20
Signature Algorithm: sha256WithRSAEncryption
28:b4:33:c4:72:a3:73:4f:80:6b:3a:14:58:07:87:b9:c1:9c:
f6:3c:bf:e0:c0:ea:f5:95:0e:c2:ba:1f:de:17:74:c5:74:32:
49:1e:bd:ca:79:24:13:6b:68:50:84:18:92:b5:7b:21:f5:21:
a1:20:85:b7:e4:0a:d6:2d:ce:7a:20:7a:e4:0c:c0:7d:2f:25:
52:a2:cd:8b:74:9d:59:d0:b7:c7:94:f2:56:d3:32:c6:7b:9d:
4f:c1:a0:4b:0b:c7:dd:19:93:b4:ff:1b:be:a7:da:b7:30:59:
23:43:b6:5e:43:81:0e:12:5a:12:eb:0b:2c:db:7f:6c:5e:25:
b2:78:30:72:f5:4e:04:6d:c9:0d:46:fb:31:57:28:2c:a9:fa:
6e:dd:b2:69:70:d9:9b:cc:66:e9:71:38:ab:55:2c:54:a5:b8:
f1:8a:0b:2e:66:ff:28:a2:be:f7:63:e5:c5:d1:c3:dc:9a:b1:
bc:5e:c7:79:39:cb:03:92:ec:63:28:d3:e8:c1:68:8e:60:6c:
70:c4:57:f9:8a:35:30:58:79:46:d4:74:22:87:72:ea:24:ad:
d1:d8:0c:fb:af:0b:31:7a:42:35:6e:d1:40:e3:e9:62:3a:0b:
af:43:0c:f9:8b:d4:52:35:cd:73:3c:a2:8c:ce:3f:34:cc:21:
de:9b:18:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:18 2024 by rpki-client on console-ams.rpki-client.org