Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa
File: cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa (raw, json)
Hash identifier: abhUxlXjKTsmguEoQHXQHxIrtUj4CiF2OKr4KMYxR+Y=
Subject key identifier: 73:3F:9F:6E:B0:C3:A6:3C:AB:5F:75:6D:37:20:95:64:C1:59:36:46
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 293F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa
Signing time: Fri 01 Sep 2023 10:06:19 +0000
ROA not before: Fri 01 Sep 2023 10:06:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.16.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10559 (0x293f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=733F9F6EB0C3A63CAB5F756D37209564C1593646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:58:ad:c4:2b:d9:21:c1:af:69:c5:c9:fe:52:
67:fa:95:ad:17:e2:af:04:04:ae:ab:38:c1:4f:db:
c4:cb:83:12:c0:fc:7b:97:25:6c:17:a0:58:e9:52:
32:3b:4f:6e:e6:f1:dd:3d:5c:77:84:ef:61:64:63:
14:f7:ef:df:de:82:00:07:30:17:11:6e:83:03:67:
68:29:b9:01:50:66:00:72:f8:97:87:bc:94:92:ed:
ed:4a:ed:eb:1e:37:24:29:4e:3b:08:9b:e7:c6:6e:
2f:3a:cb:eb:eb:c0:ef:a3:99:a4:79:88:d8:28:f0:
ce:6a:76:58:e8:98:23:58:f2:eb:c0:5b:a2:c2:15:
93:ea:5e:65:ca:7e:22:93:47:1c:54:cb:b5:c4:ed:
00:00:f0:b3:7d:b9:9b:49:cf:c6:79:e7:2a:2f:d5:
35:32:ab:a1:23:44:b6:ef:c3:5a:fa:29:0b:af:6d:
66:ab:72:cd:ae:9e:99:80:18:f5:db:05:c9:72:00:
65:38:46:1f:0a:12:c6:89:8b:a3:77:96:55:c5:3a:
82:43:99:fd:dc:c7:b9:30:98:99:5f:29:db:46:10:
1c:52:73:b7:ed:da:0a:1f:c0:4b:ef:b9:57:24:f6:
38:98:6a:dd:c7:77:92:72:27:4c:3d:cc:98:f9:a8:
6b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3F:9F:6E:B0:C3:A6:3C:AB:5F:75:6D:37:20:95:64:C1:59:36:46
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.16.0/21
Signature Algorithm: sha256WithRSAEncryption
af:b4:48:c4:81:73:01:f6:26:e5:c5:1a:83:0b:d9:a7:a0:4d:
de:dc:ad:80:94:3d:eb:a8:6a:02:40:73:73:23:1a:46:5c:04:
41:4e:b5:29:34:d1:9a:92:b7:0c:46:1b:d1:19:18:2b:5b:4a:
7f:4e:6e:84:89:a6:63:81:fd:06:be:e6:eb:40:3e:bd:72:ed:
93:2a:5d:c4:a8:4f:13:b3:d1:6b:e1:66:28:7a:d5:c0:d9:a3:
2d:c7:84:3e:0d:d5:e4:f8:72:3c:8d:02:71:bb:bd:8d:af:5b:
65:d0:eb:52:48:a8:8d:ad:3d:09:db:35:f6:d7:cc:94:c5:b4:
b9:f2:3f:b9:5b:84:0b:c4:51:63:de:a8:d2:36:29:54:44:3a:
c3:e2:2e:78:a0:02:50:3a:cb:a5:74:30:c9:2a:63:d4:d5:14:
48:8c:f9:31:43:e5:bd:f3:fd:55:de:e7:90:ba:4c:4d:7e:4b:
9b:6a:71:be:d7:cd:5c:4a:9e:e7:58:8f:d2:a1:ca:c5:cd:78:
38:ac:46:3c:66:1e:3a:bc:7d:74:99:fa:32:f7:f4:d9:bc:b3:
24:70:0e:0d:87:76:a9:f9:af:09:1b:3d:49:53:cd:c3:38:dc:
e3:62:a9:92:bd:b8:21:47:e0:29:0f:cf:ee:56:25:9f:ad:1d:
b3:a6:84:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org