Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa
File: gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa (raw, json)
Hash identifier: 6lxmOKJwMj3+Acx8khci3iRyy+fA42dPAEpPE6YLCCo=
Subject key identifier: 81:5E:CA:F2:1D:8C:9D:B4:62:3D:68:E6:E9:9D:B6:50:E5:72:5C:DB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28DD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa
Signing time: Fri 01 Sep 2023 10:05:51 +0000
ROA not before: Fri 01 Sep 2023 10:05:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10461 (0x28dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=815ECAF21D8C9DB4623D68E6E99DB650E5725CDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b7:db:d7:c7:77:d8:b9:20:d7:39:8d:a1:d8:
9d:04:b1:2f:19:32:ed:cc:4a:1a:3f:e9:38:1a:10:
d9:76:6e:c4:81:d1:27:58:db:33:21:3c:36:81:3a:
25:77:ff:50:36:d9:be:78:bb:d0:86:94:36:38:1f:
57:cb:d4:99:c8:d1:f1:73:7d:67:54:05:de:ad:cc:
be:3a:90:c0:13:dc:3e:a3:ef:b7:fe:c3:fd:08:89:
5a:0d:de:d3:d9:78:7b:f2:54:41:7b:18:5b:ad:c7:
7b:63:11:95:02:34:20:6e:66:d7:bc:41:e2:d5:bb:
3d:29:6f:5d:1f:91:9b:55:73:de:28:5f:bb:87:09:
90:86:aa:cc:16:7f:df:0f:8f:47:db:f8:82:cd:d6:
4e:be:0a:e1:42:ac:1a:79:35:71:b5:54:ab:4c:07:
6b:1e:dc:6f:92:24:3d:41:2a:e7:ba:b2:c3:2d:24:
71:ac:c3:08:db:fd:3f:c6:0b:8e:45:08:54:88:36:
95:37:9c:0c:cf:70:1f:22:f0:97:61:b9:c8:1e:46:
4e:ac:77:69:66:a7:de:c7:5c:e5:34:c9:a1:df:a8:
98:bb:90:06:40:a6:3a:d7:da:8a:92:d8:70:b6:94:
fb:ef:38:53:d9:5f:96:97:be:b7:95:0e:1f:93:c1:
7c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5E:CA:F2:1D:8C:9D:B4:62:3D:68:E6:E9:9D:B6:50:E5:72:5C:DB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.56.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:5c:db:15:b1:1c:e5:82:0a:64:b3:dc:b5:b1:0d:70:bf:16:
fa:40:45:15:d5:f4:e8:0e:fa:6b:17:03:ef:56:71:10:ec:ec:
47:a7:82:1a:b7:35:e2:33:dd:2c:82:4b:2d:4b:b7:36:21:6a:
6b:a5:ea:f3:fb:ae:af:ea:d0:69:aa:10:04:10:0b:f1:d4:dc:
15:40:8f:c4:d6:db:4c:fc:53:6c:1b:32:3a:60:a6:16:ef:44:
e4:e7:78:10:59:75:6a:56:0a:7e:25:7b:96:a0:98:09:fa:a3:
0f:e0:ae:40:b2:2d:e7:91:a5:ee:9a:ae:63:57:fa:fe:22:3d:
e7:50:2d:92:e1:41:19:40:e1:f5:da:97:d0:8a:6f:8e:50:21:
00:41:43:f0:81:26:b8:e2:75:ed:05:ed:da:51:5d:30:b9:f5:
e3:72:dd:8f:80:df:c7:af:55:2c:68:05:be:26:da:1f:01:5c:
4c:2c:f6:02:f7:04:ab:25:20:c9:69:86:b5:2c:d9:bc:95:2c:
8f:0a:be:37:4a:ae:2c:28:57:1e:09:2d:42:83:51:75:1f:3a:
e1:51:e8:74:de:eb:ee:4f:18:a5:37:2e:d6:a0:79:33:35:6f:
90:41:70:3a:23:c9:e6:14:5f:c3:8c:b7:57:77:c6:c6:ba:78:
89:86:56:b2
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA1NTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgxNUVDQUYyMUQ4QzlE
QjQ2MjNENjhFNkU5OURCNjUwRTU3MjVDREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCYt9vXx3fYuSDXOY2h2J0EsS8ZMu3MSho/6TgaENl2bsSB0SdY
2zMhPDaBOiV3/1A22b54u9CGlDY4H1fL1JnI0fFzfWdUBd6tzL46kMAT3D6j77f+
w/0IiVoN3tPZeHvyVEF7GFutx3tjEZUCNCBuZte8QeLVuz0pb10fkZtVc94oX7uH
CZCGqswWf98Pj0fb+ILN1k6+CuFCrBp5NXG1VKtMB2se3G+SJD1BKue6ssMtJHGs
wwjb/T/GC45FCFSINpU3nAzPcB8i8JdhucgeRk6sd2lmp97HXOU0yaHfqJi7kAZA
pjrX2oqS2HC2lPvvOFPZX5aXvreVDh+TwXyhAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUgV7K8h2MnbRiPWjm6Z22UOVyXNswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dWN0s4aDJNbmJSaVBXam02
WjIyVU9WeVhOcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wjgwDQYJKoZIhvcNAQELBQADggEBAA9c2xWxHOWCCmSz3LWxDXC/FvpARRXV9OgO
+msXA+9WcRDs7Eenghq3NeIz3SyCSy1LtzYhamul6vP7rq/q0GmqEAQQC/HU3BVA
j8TW20z8U2wbMjpgphbvROTneBBZdWpWCn4le5agmAn6ow/grkCyLeeRpe6armNX
+v4iPedQLZLhQRlA4fXal9CKb45QIQBBQ/CBJrjide0F7dpRXTC59eNy3Y+A38ev
VSxoBb4m2h8BXEws9gL3BKslIMlphrUs2byVLI8KvjdKriwoVx4JLUKDUXUfOuFR
6HTe6+5PGKU3LtageTM1b5BBcDojyeYUX8OMt1d3xsa6eImGVrI=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org