Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gMjlL_pcsrHv0IQq-hWmYDp0geE.roa
File: gMjlL_pcsrHv0IQq-hWmYDp0geE.roa (raw, json)
Hash identifier: vbMQ3TXxwpNjz4Ri/R+gzbo34lYSD6FYR0QteAgubdk=
Subject key identifier: 80:C8:E5:2F:FA:5C:B2:B1:EF:D0:84:2A:FA:15:A6:60:3A:74:81:E1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2946
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gMjlL_pcsrHv0IQq-hWmYDp0geE.roa
Signing time: Fri 01 Sep 2023 10:06:20 +0000
ROA not before: Fri 01 Sep 2023 10:06:20 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.152.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10566 (0x2946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:20 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=80C8E52FFA5CB2B1EFD0842AFA15A6603A7481E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a0:65:e3:01:e7:a6:20:bb:4a:a4:68:65:8b:
37:b3:cc:d9:6b:3a:ea:49:3b:7f:b3:d7:90:34:c3:
8c:7b:0d:5c:ee:69:df:46:80:77:48:05:65:a6:fb:
fb:ff:a4:ed:fc:c0:49:58:f6:00:4b:a8:41:ff:f5:
37:51:fd:f6:ba:17:37:13:2f:67:fe:38:df:fd:28:
0a:a4:56:74:c9:08:c1:da:7f:17:5d:0e:1d:d6:54:
a2:b4:25:d4:1e:98:21:9c:54:84:25:93:bb:4c:a7:
54:ff:09:17:4b:e3:bc:45:2c:6b:2c:c6:65:0a:94:
2b:0f:3e:16:7a:ff:c8:f2:58:10:94:d6:84:79:28:
16:f4:3a:6f:9d:76:6a:c9:f2:67:62:e3:42:25:92:
e4:0d:ae:ad:ca:0e:af:ad:77:e7:e2:8d:5a:08:ee:
a8:0b:e4:97:93:df:43:25:5f:eb:2a:5e:a4:94:e3:
12:e1:b6:c1:38:e8:47:9b:cf:41:52:8a:f9:76:d3:
9d:d2:ba:72:24:41:f9:2d:17:7a:2e:3e:20:01:d0:
17:b1:d0:30:2b:1a:8b:8f:f2:2f:7f:6f:c2:55:da:
81:2c:7a:74:e8:a9:92:77:88:cc:26:78:87:01:24:
81:f7:be:6d:13:c8:e4:d4:27:3c:78:cf:93:96:d2:
8d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C8:E5:2F:FA:5C:B2:B1:EF:D0:84:2A:FA:15:A6:60:3A:74:81:E1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gMjlL_pcsrHv0IQq-hWmYDp0geE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.152.0/21
Signature Algorithm: sha256WithRSAEncryption
14:8c:bd:d1:10:c6:77:cf:6d:1d:dd:6a:d7:57:38:59:d8:10:
21:64:f5:e4:50:8d:89:6a:bf:14:07:3c:42:96:5b:d3:c0:e7:
39:81:1a:a2:10:b6:0e:55:de:a0:e5:05:b7:ed:a4:1a:cd:f8:
f6:d4:ae:5c:32:b7:b6:fd:bc:95:ee:28:f4:d7:d1:b1:87:b2:
86:22:71:f1:24:05:8a:7f:1a:32:46:77:7a:26:b2:f3:9f:f8:
ef:e4:17:c0:8f:c5:66:a3:18:da:a7:77:44:d5:fc:31:0d:a5:
2d:22:dd:8f:96:d2:19:73:ba:55:95:83:ca:c8:bf:b4:33:79:
a3:39:cb:aa:7a:b9:21:c1:0e:54:19:83:03:ed:0c:ba:28:ec:
ff:7c:f3:42:70:d0:06:36:80:15:83:52:95:0e:ac:70:cf:1b:
8f:cf:7a:13:b2:19:1b:87:57:2c:e6:5e:04:4b:73:97:ea:11:
14:f3:13:1c:ea:59:6b:c4:0a:a9:6c:2d:72:6e:12:13:96:03:
79:ac:55:a7:95:d2:8a:50:29:74:75:ce:01:3f:a7:d2:09:f3:
0f:3e:61:c7:33:22:c5:54:85:51:9c:06:c1:5b:31:e7:37:55:
fb:f7:bb:b4:42:a3:fc:8b:8e:e2:9e:8f:e9:8c:5d:23:0e:55:
b2:19:e7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:19 2024 by rpki-client on console-ams.rpki-client.org