Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNYznlYdfw8o5-fvrlSpNf-qLKU.roa
File: aNYznlYdfw8o5-fvrlSpNf-qLKU.roa (raw, json)
Hash identifier: +u8/eeUDnqBv4lRAE5bzmjM+bLwkppmKG2RlfsrB4Yk=
Subject key identifier: 68:D6:33:9E:56:1D:7F:0F:28:E7:E7:EF:AE:54:A9:35:FF:AA:2C:A5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A9E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNYznlYdfw8o5-fvrlSpNf-qLKU.roa
Signing time: Fri 01 Sep 2023 10:08:06 +0000
ROA not before: Fri 01 Sep 2023 10:08:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.193.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10910 (0x2a9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=68D6339E561D7F0F28E7E7EFAE54A935FFAA2CA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:27:cd:ed:39:8e:67:85:d3:58:99:3d:86:40:
93:aa:4d:a0:7c:b8:20:99:f8:1c:8c:b6:a1:9d:67:
b1:96:21:82:e1:d3:f0:fb:ed:ac:0f:d8:c5:e3:87:
21:94:cc:b6:e1:e6:1d:1b:af:b1:56:82:80:0b:c4:
06:3b:02:81:7a:bd:5e:04:69:4d:f5:b2:7a:be:3e:
59:08:83:ff:b8:6d:5a:a9:67:6e:0a:63:a4:cc:43:
b3:5c:16:9c:81:56:ea:4d:db:00:56:0c:b0:6d:8e:
6c:12:9a:fa:d1:1e:95:b1:6e:c8:a7:a9:95:fb:93:
a3:ae:f7:f6:e0:34:5b:90:04:2b:59:2a:54:86:c9:
9b:2c:ab:8b:87:08:0a:59:1c:87:c5:37:76:e2:5c:
6d:36:cd:a6:54:d8:a1:96:99:bc:40:2c:3b:06:62:
42:be:c1:ad:65:60:b1:e6:14:93:9c:49:e8:1f:d7:
df:cb:c7:52:65:bb:67:1d:35:8f:a5:e3:51:02:b1:
68:67:c0:95:d7:02:9b:c0:57:8b:d5:62:a8:7a:d8:
c3:5d:9e:06:7c:a4:f2:c7:9a:22:18:e0:1d:06:7b:
5d:48:ec:a7:e8:88:83:b9:27:bd:c7:b4:e0:c5:4f:
af:e9:63:4f:4c:a8:7d:41:ec:26:e8:34:45:81:0d:
43:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D6:33:9E:56:1D:7F:0F:28:E7:E7:EF:AE:54:A9:35:FF:AA:2C:A5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNYznlYdfw8o5-fvrlSpNf-qLKU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.128.0/22
Signature Algorithm: sha256WithRSAEncryption
71:16:5d:46:b3:21:22:66:33:b3:a4:e0:a8:fb:cb:a8:ed:a5:
72:96:5a:fb:f9:1b:e4:07:45:8d:af:38:c3:11:6b:a5:2b:5f:
f6:4e:72:29:30:68:bc:b2:3b:5f:ef:d0:62:f4:48:52:86:9a:
8b:b9:e1:f1:a4:ff:4a:4d:ba:b0:f6:71:eb:ab:59:4c:60:28:
72:c3:0a:67:58:cc:bb:df:77:a8:38:05:05:2a:73:fa:81:bd:
31:1b:80:46:0b:32:d1:8f:0c:78:c1:ce:3a:73:35:20:9b:54:
c0:35:1d:35:4c:4f:a4:47:be:12:c8:d2:96:23:21:a7:10:db:
47:2d:62:72:b3:da:ec:de:79:4c:e6:cf:e1:5d:ac:a0:58:37:
dc:c5:ac:0b:eb:99:1e:59:ee:ea:44:e1:a8:fc:a2:14:f0:d8:
1b:f6:e6:4b:1c:c2:b3:f5:ce:c3:27:89:de:06:f0:76:5c:61:
33:c8:75:b8:69:77:38:12:8b:db:da:8d:3c:af:90:11:d1:27:
e8:15:e9:66:25:01:bd:d3:f8:3b:fb:ee:63:c9:1b:6c:c5:73:
fb:a8:75:e6:87:d5:ae:96:9e:b5:18:17:26:3c:1b:19:1a:5c:
f4:dc:c4:44:45:68:a9:b0:c2:02:d7:a0:30:b3:0c:6a:1a:0a:
dd:0f:f6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:25 2024 by rpki-client on console-fra.rpki-client.org