Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d3t0uDX0kmLe8uCUj2LxYvjYrSU.roa
File: d3t0uDX0kmLe8uCUj2LxYvjYrSU.roa (raw, json)
Hash identifier: esRgzFbHegYAa3oMyk/Nykl8+4F2b3OHb0RnvYgvHnI=
Subject key identifier: 77:7B:74:B8:35:F4:92:62:DE:F2:E0:94:8F:62:F1:62:F8:D8:AD:25
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28E5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d3t0uDX0kmLe8uCUj2LxYvjYrSU.roa
Signing time: Fri 01 Sep 2023 10:05:53 +0000
ROA not before: Fri 01 Sep 2023 10:05:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10469 (0x28e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=777B74B835F49262DEF2E0948F62F162F8D8AD25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e1:ac:ad:39:d0:88:32:9d:54:29:78:47:c4:
2d:a0:ca:a5:7a:41:67:94:ab:4d:8a:3a:e9:fa:b1:
86:30:24:2b:16:14:64:27:93:02:19:c3:67:16:ea:
c4:de:5c:b5:c0:5a:6e:3c:51:7c:ed:46:af:82:69:
ac:02:dd:56:5a:75:6b:5a:3c:38:a1:ac:44:c0:37:
15:10:b6:4d:3a:c4:32:15:6c:b1:7c:24:28:a9:57:
b7:26:e2:eb:a3:64:e7:48:0e:93:37:ec:ab:26:6c:
c3:d5:39:30:34:9f:f1:30:10:76:f4:6b:a8:21:35:
a1:4f:b7:dc:6d:7c:48:26:cf:14:e8:5c:59:a2:bd:
89:a9:c5:51:ba:67:9f:e9:52:41:e9:49:9d:06:c7:
5c:f7:92:1a:0d:92:d3:15:dd:dc:d8:0f:93:b3:6b:
56:24:21:4e:69:e2:0b:3d:75:f8:18:d7:1c:31:73:
58:61:00:bf:cb:e9:7b:a8:55:e5:69:ff:a8:7b:5e:
c7:c7:e1:06:e3:ac:43:f7:33:3c:78:fe:09:92:12:
d4:52:d9:d3:a5:f9:2d:b7:82:8c:b1:38:14:85:9a:
a8:ff:57:75:e6:ed:76:44:f6:fd:88:a9:64:09:59:
50:73:59:32:e0:80:ae:1a:b0:03:fb:11:f6:ef:04:
05:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7B:74:B8:35:F4:92:62:DE:F2:E0:94:8F:62:F1:62:F8:D8:AD:25
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/d3t0uDX0kmLe8uCUj2LxYvjYrSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.212.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:51:11:b2:c5:3f:e9:d5:94:79:01:36:73:59:9f:df:53:73:
6d:ed:e0:a6:dc:b9:e1:65:6c:21:0c:d2:bb:18:da:0d:48:4b:
6c:2b:83:9a:c6:d9:33:a6:7d:b0:cb:41:47:db:ca:57:fc:a6:
d9:32:26:76:95:6a:38:21:6c:55:95:71:17:4e:df:fc:a2:0b:
8e:51:4f:be:fc:40:c2:40:48:9c:2f:a6:99:a7:eb:79:0b:36:
c2:57:df:13:02:e7:b9:30:ce:06:1f:6c:5b:18:e8:e0:ce:9f:
84:74:53:26:ca:30:b7:d3:5f:da:e5:f9:5c:59:aa:f0:13:dd:
f7:f0:2a:d1:b9:ce:7f:d1:c8:5e:3b:92:4c:f4:ca:7f:8f:54:
41:d0:1b:04:35:80:fb:02:0c:f9:21:2e:7b:db:2d:9a:36:2c:
9b:fa:78:e5:b1:f5:f4:2d:94:bc:76:ab:0c:97:f9:54:c4:c9:
ee:a6:21:ae:b8:a4:4f:f9:ab:26:36:7a:8b:15:72:c8:d5:56:
0c:14:7f:d1:be:88:14:16:25:21:7b:40:00:20:0c:78:08:72:
23:54:32:9e:fa:0c:67:cc:fe:0f:15:f9:63:11:1a:0f:02:95:
61:67:57:4f:fa:70:3f:58:05:59:0a:11:5f:69:c6:89:98:63:
5e:51:6b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org