Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa
File: iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa (raw, json)
Hash identifier: 8pVN1qXb6ErBJF4i1wE/2lvrwLjToSH5YcHcY02p64M=
Subject key identifier: 88:BC:63:DB:37:73:49:8C:26:B9:7B:98:F9:3E:5C:5E:A4:90:5A:E4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 27CE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa
Signing time: Fri 01 Sep 2023 10:04:34 +0000
ROA not before: Fri 01 Sep 2023 10:04:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.192.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10190 (0x27ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=88BC63DB3773498C26B97B98F93E5C5EA4905AE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:90:e9:e0:15:88:c1:9f:91:c9:0c:92:08:60:
c3:27:15:72:c7:f3:8f:58:86:85:8a:02:62:df:64:
56:9e:c8:47:25:28:f1:03:ff:7e:96:8a:3f:60:15:
4f:82:a0:c5:70:41:d3:92:45:0e:c1:63:23:8c:a8:
f1:45:8a:82:6c:e3:88:80:02:42:d0:9d:68:5d:32:
22:14:41:62:e9:a4:dc:13:54:61:89:ac:49:28:e4:
df:b8:8c:f2:56:50:6b:dc:9e:1f:75:68:9d:e0:81:
ab:25:c4:76:02:11:ef:6f:2a:bb:23:18:97:e7:90:
7a:24:09:16:87:86:57:01:d3:33:e6:9d:88:b1:b3:
b6:ab:51:1b:e9:31:62:a8:c0:32:ce:73:aa:44:6b:
f8:e7:0e:ff:ec:fe:30:07:0a:c3:b6:37:3d:73:a9:
f4:76:30:03:49:b3:c0:ea:8c:fa:e1:c5:dc:76:c2:
38:f7:90:c8:2c:2c:45:e6:f1:18:3d:13:1e:e5:97:
29:a3:4c:80:4f:3c:d3:d7:1c:c7:f8:3a:2c:e0:07:
bd:75:96:d1:52:a5:53:1e:4e:f6:3c:f1:4e:02:9d:
4c:32:95:85:c9:d7:53:ae:b2:32:35:9b:92:31:a2:
6d:58:43:19:2b:ba:0a:4e:0f:fb:7f:1b:24:b8:c9:
cb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BC:63:DB:37:73:49:8C:26:B9:7B:98:F9:3E:5C:5E:A4:90:5A:E4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.204.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:19:1b:51:51:e6:c3:95:31:5b:24:c7:87:16:38:c9:07:58:
84:78:5c:40:6d:0f:d2:fa:35:68:1e:c7:8c:fa:d7:95:6b:69:
7e:e0:7d:b1:2d:3e:86:b9:15:d4:86:67:a2:16:4b:45:a5:e2:
a5:de:4b:2d:a4:92:2c:0c:29:f4:a4:3f:56:e5:f5:1d:45:54:
c0:21:96:d8:14:d1:b4:c5:f8:bc:93:f5:cc:22:d3:43:8a:cb:
b3:ac:9d:49:e5:df:e9:ee:02:70:ae:5b:a2:04:bc:8b:a7:74:
b9:19:ae:0e:d6:b0:fe:d6:27:e7:d3:10:80:4e:52:c8:79:40:
44:28:66:02:70:d5:e5:a3:85:80:69:b7:35:9c:c1:e0:49:bb:
6e:a1:0b:dc:e9:39:c6:23:ba:51:82:a2:c0:24:d2:03:55:d9:
8e:ac:3b:db:e3:f4:25:79:6d:7f:dc:f7:a2:74:8d:6a:b6:89:
96:94:21:be:fd:26:8e:b4:82:d7:f2:3f:5e:0d:9e:1b:fd:e5:
c0:5c:d9:25:b4:e3:98:31:61:4c:f7:3c:c1:fa:0a:15:22:ae:
e5:29:91:08:1c:1e:bc:0d:60:b3:87:0a:ca:cb:95:93:35:ab:
c3:12:38:b6:a3:a9:6a:01:1d:b6:4b:ec:83:27:0c:af:57:c1:
8b:5e:b4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:19 2024 by rpki-client on console-ams.rpki-client.org