Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_HE-2kC18vyb_ywX1RC-V2dQOYM.roa
File: _HE-2kC18vyb_ywX1RC-V2dQOYM.roa (raw, json)
Hash identifier: 7c+t+Y6IT32xk831+fIwrKLBbkTBcWO/R66bv2Ijh0w=
Subject key identifier: FC:71:3E:DA:40:B5:F2:FC:9B:FF:2C:17:D5:10:BE:57:67:50:39:83
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29DB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_HE-2kC18vyb_ywX1RC-V2dQOYM.roa
Signing time: Fri 01 Sep 2023 10:07:10 +0000
ROA not before: Fri 01 Sep 2023 10:07:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.232.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10715 (0x29db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:10 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FC713EDA40B5F2FC9BFF2C17D510BE5767503983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e7:2d:a5:07:dd:74:5c:89:04:1f:9a:9a:85:
c4:a3:a4:33:62:56:f6:6b:93:88:a8:12:db:f1:b1:
bc:36:da:3b:24:2c:5c:6e:48:fe:fa:29:c8:52:bb:
f3:7f:f7:6e:09:cd:3d:cd:91:90:97:2c:65:51:44:
0b:22:5b:e3:0c:ab:89:e0:b1:a9:70:d1:17:60:c0:
5f:43:45:83:06:1b:d1:d0:17:f1:39:e2:87:b0:f1:
40:8e:fb:46:c2:4b:02:30:47:bf:e3:94:ed:a1:dd:
54:16:11:59:3f:ce:17:e9:f8:ad:d1:e4:54:11:1c:
a9:78:85:74:3c:de:eb:a4:c4:29:87:b2:9b:08:04:
82:e0:8a:b3:ce:b0:d4:e4:03:73:14:ff:0c:49:7c:
dd:4a:55:56:9c:aa:18:4c:67:b2:3f:60:e5:58:e6:
ea:09:a7:0e:d0:4c:b7:1e:1c:78:e7:b3:a5:40:fd:
04:65:7b:b6:66:22:30:42:fb:e9:61:01:66:6b:d8:
af:0c:34:32:e3:e6:a2:ad:94:bc:17:86:30:01:ef:
2a:4f:5f:b7:c9:df:65:f3:da:70:32:16:ce:3c:8e:
c5:81:53:93:0c:1c:59:bc:2a:f2:d7:88:3a:af:40:
24:57:ba:a9:30:56:d6:f1:aa:7a:8c:19:7c:f6:f0:
2e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:71:3E:DA:40:B5:F2:FC:9B:FF:2C:17:D5:10:BE:57:67:50:39:83
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_HE-2kC18vyb_ywX1RC-V2dQOYM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.232.0/23
Signature Algorithm: sha256WithRSAEncryption
33:dd:57:2b:db:7b:01:65:73:bb:5d:e7:23:e9:f5:3c:72:1f:
00:8a:91:13:a3:49:c8:cd:f8:26:e2:ca:1f:21:b8:63:99:77:
ed:16:cd:fa:b7:1d:ec:3c:1c:c6:cd:7a:12:f9:f9:b4:79:13:
8a:8f:23:56:4d:29:41:7e:f4:83:25:e0:e3:bd:71:d7:78:a6:
43:f0:27:9d:bf:6a:62:75:59:b7:cc:48:cd:03:2a:e1:62:03:
d4:da:71:37:4b:05:19:d5:19:a0:1b:d1:75:98:49:c6:29:b1:
0d:0b:3f:82:4e:eb:46:87:36:06:78:12:f0:7e:10:cf:07:d8:
6b:8d:6e:c4:77:db:99:f4:4b:1b:9e:7c:62:6d:79:a3:fe:32:
b3:86:7e:58:ee:00:b8:a3:b2:c1:72:ee:a5:61:e9:06:b4:6b:
b0:06:37:96:6a:df:1f:5c:a3:cb:2a:80:e3:46:f4:96:f6:d0:
6c:fa:71:f0:b4:09:00:09:d1:86:02:3e:ff:5a:fb:f3:07:b5:
6b:86:d1:4d:76:b7:d1:51:d1:d2:91:fa:03:33:47:9e:29:ae:
a2:1a:1d:b6:a1:ee:9a:88:25:33:ac:a6:bd:63:af:3b:02:98:
31:ff:30:59:91:ed:d5:30:c8:70:80:ee:52:9f:b2:81:2a:42:
1a:da:a5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:25 2024 by rpki-client on console-fra.rpki-client.org