Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/biw-0NwffCwRfFBT96gxYAihTo4.roa
File: biw-0NwffCwRfFBT96gxYAihTo4.roa (raw, json)
Hash identifier: 2Jwsz86MwcZklcwmEQhz/3cNm17J7Tmk7u1UMz+6iMQ=
Subject key identifier: 6E:2C:3E:D0:DC:1F:7C:2C:11:7C:50:53:F7:A8:31:60:08:A1:4E:8E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29F6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/biw-0NwffCwRfFBT96gxYAihTo4.roa
Signing time: Fri 01 Sep 2023 10:07:19 +0000
ROA not before: Fri 01 Sep 2023 10:07:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.195.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10742 (0x29f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6E2C3ED0DC1F7C2C117C5053F7A8316008A14E8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d6:c7:3d:73:41:5a:fc:57:9f:d5:7e:06:23:
0d:b5:74:43:99:15:27:87:71:de:39:1b:80:b1:d1:
95:22:1d:7c:ff:9b:9d:2a:b3:5a:47:9c:69:af:78:
d4:53:52:93:0e:be:b4:d7:af:27:96:18:f1:8b:10:
19:1f:b1:f8:a0:dc:41:3d:93:8c:ca:40:8a:07:e9:
54:e5:ab:84:9a:37:6c:a3:dd:a7:de:da:50:5d:ba:
ac:5e:d6:25:8b:60:78:97:9b:df:b6:02:c9:7f:bf:
2c:85:05:5a:14:30:be:6b:48:e0:eb:88:f9:a9:40:
79:4a:21:59:b8:e9:75:bf:b5:e3:8e:45:4b:66:d0:
df:43:f8:78:55:41:6d:25:c0:53:69:d1:92:26:80:
e4:b9:d8:8b:aa:9c:73:fc:bb:24:a7:49:cd:e4:36:
03:34:0b:e7:5d:0c:d7:f0:c2:b1:e4:2d:6f:3e:00:
a5:f9:70:c2:96:02:3b:bb:b0:6e:89:17:b4:54:a4:
99:c2:62:b1:bb:33:90:0c:8b:17:76:30:4b:78:28:
c5:30:33:f8:7d:64:37:cc:ed:0e:a4:fb:85:71:72:
10:b6:27:e4:78:8c:1e:ef:01:24:87:1b:ad:e7:ce:
d4:72:9a:58:09:05:bd:69:c6:75:47:d8:3e:e0:37:
a6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2C:3E:D0:DC:1F:7C:2C:11:7C:50:53:F7:A8:31:60:08:A1:4E:8E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/biw-0NwffCwRfFBT96gxYAihTo4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.237.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:0f:67:94:7e:b7:9a:bf:d3:04:ba:b7:58:0e:17:a9:ba:54:
5f:5e:8b:5e:a6:25:b2:0d:29:6d:73:6b:93:36:61:bd:28:14:
b1:78:01:5f:ce:96:d1:7b:82:15:ee:f3:50:94:dd:f4:88:76:
fe:cb:6e:79:68:f1:61:8a:11:df:36:d1:1b:3c:6e:09:e5:99:
94:91:80:42:6f:5b:d9:33:14:46:92:5d:f4:ec:0d:60:1a:fb:
b2:2c:f0:46:52:db:bd:70:4c:61:24:bd:cb:e4:cf:d3:52:a7:
c8:58:3e:68:7b:67:22:f5:0a:ee:c3:63:83:22:11:a0:03:f9:
6c:ba:b4:67:4f:74:5a:64:44:af:91:b9:ca:a2:fc:e9:0c:44:
a8:57:23:7b:0d:bf:9e:76:80:7c:8d:64:39:fb:3c:c5:1b:48:
f1:42:27:aa:f0:64:7c:f8:06:ee:73:e8:5e:a6:07:fb:88:09:
bc:01:44:7d:c2:44:a6:69:d9:fb:34:6b:36:52:81:09:d3:0b:
14:1e:66:75:33:65:ea:76:01:25:64:7d:28:fb:91:40:34:b2:
fb:71:ed:e3:6d:cd:b3:93:e3:d7:c7:68:86:ea:f8:3d:2f:87:
cd:25:4f:04:21:fc:23:e1:3d:82:5f:4c:f8:04:af:a8:0c:0d:
d7:fa:73:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:19 2024 by rpki-client on console-ams.rpki-client.org