Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa
File: aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa (raw, json)
Hash identifier: Tu2gLmr2BDLH1kfz3cSehVzAervMMdVbeizGDqzlQIE=
Subject key identifier: 6A:89:92:2D:0C:CF:D5:72:F3:CD:9F:D4:6C:D8:8B:DE:F0:09:CD:0B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29BB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa
Signing time: Fri 01 Sep 2023 10:07:00 +0000
ROA not before: Fri 01 Sep 2023 10:07:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10683 (0x29bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6A89922D0CCFD572F3CD9FD46CD88BDEF009CD0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:14:19:e3:65:39:66:01:62:73:df:af:84:62:
23:fc:e7:cd:cf:22:14:dd:14:6e:33:c9:8b:ec:98:
de:fe:e2:a0:a2:af:71:6f:b2:65:f1:e2:20:7e:18:
30:8d:c2:7d:fc:98:ef:0f:da:96:78:30:03:44:91:
57:97:b7:bc:81:7b:ab:0f:c2:1c:1b:aa:86:e7:2a:
09:e7:22:07:5e:bc:ce:a1:b6:3d:00:f1:2a:32:15:
a3:94:9c:a4:92:3c:7f:a2:ec:f9:7b:e5:5b:b1:78:
4b:78:53:c9:2c:25:05:1e:3c:59:1a:a5:c1:90:d8:
71:6b:09:cc:45:4d:c8:43:37:7d:15:f8:e4:ab:cf:
7e:5a:22:2f:ed:26:0a:26:24:ba:b3:dd:e6:68:0e:
79:75:d5:0b:c1:85:ac:72:e6:21:74:5f:c1:db:d0:
44:3e:c8:7c:c9:9c:58:3c:4a:87:dd:3e:22:cc:21:
cc:73:99:b2:56:0b:8a:50:86:29:5b:a8:7c:82:e7:
37:eb:5d:ab:7a:d7:e2:73:ad:8d:bb:d5:74:90:67:
08:5a:a8:81:26:4b:46:58:0d:5f:04:99:91:8e:40:
0b:32:b8:41:07:e5:11:99:79:6b:22:5d:9d:43:6f:
50:09:4e:e3:22:41:fc:5e:b9:23:c5:91:b2:c6:9e:
14:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:89:92:2D:0C:CF:D5:72:F3:CD:9F:D4:6C:D8:8B:DE:F0:09:CD:0B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.149.0/24
Signature Algorithm: sha256WithRSAEncryption
42:cf:05:0c:e5:f5:f6:e9:d7:ee:0b:d7:93:48:fe:60:cc:22:
20:84:bb:09:67:f7:41:f2:28:4e:df:42:24:06:6a:36:d8:fd:
3c:fc:7c:f7:ce:b1:ae:f9:fd:da:65:84:07:a7:28:11:5a:8b:
24:aa:fe:d5:a2:80:1d:ed:6f:eb:aa:51:4e:55:91:23:e4:a2:
9e:be:77:73:55:a7:74:d7:5f:36:50:5a:f9:49:3c:af:20:3b:
09:76:ec:6d:e4:47:42:31:44:5d:e0:70:c2:1c:f0:1b:3b:82:
5b:d7:9b:04:8f:89:94:4e:7a:3c:6f:d0:74:b4:88:f1:a2:99:
80:6f:0d:01:75:a6:04:29:82:16:23:fc:c5:a9:c2:0e:74:8f:
d0:9f:b7:cd:bf:e2:28:0c:50:6d:a9:f7:2f:75:6e:56:fa:2b:
17:1f:27:83:4b:8f:aa:8f:02:a1:4c:4c:8f:5f:69:2a:09:44:
b7:54:a4:09:04:7b:11:cd:d0:66:d6:9a:34:ce:d8:80:03:c1:
85:7c:d0:c5:85:f7:94:2b:5d:ca:30:3e:12:59:fc:b5:0f:07:
29:6f:b1:09:8b:e2:b4:7f:be:df:23:5e:57:7e:9a:44:af:e4:
e3:39:47:50:69:ce:cc:d9:2c:58:d7:7c:79:a7:bc:0f:05:a9:
23:22:6e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:19 2024 by rpki-client on console-ams.rpki-client.org