Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa
File: i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa (raw, json)
Hash identifier: F5XXCA+fiHQyXEFnqkgm4gUT1RgtVdoOMHgF1gXPAgM=
Subject key identifier: 8B:F3:E4:D9:5F:64:50:51:58:D4:DF:B4:16:FC:03:A2:CD:05:32:BD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 292D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa
Signing time: Fri 01 Sep 2023 10:06:15 +0000
ROA not before: Fri 01 Sep 2023 10:06:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.193.80.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10541 (0x292d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8BF3E4D95F64505158D4DFB416FC03A2CD0532BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:12:6d:3e:79:e9:58:79:cd:e4:5e:62:9f:80:
ed:5d:86:99:2b:d2:ea:dc:dc:50:4d:f0:e8:8d:c7:
9f:e0:c5:4c:7d:5d:44:0a:d9:4b:5d:ea:90:18:8d:
8a:cc:c1:d4:5f:9b:be:47:75:ef:cb:25:75:cd:ed:
da:e2:e6:fe:9a:32:16:f3:e8:eb:80:46:30:0b:24:
35:51:d1:a8:3f:10:d3:8e:98:90:fe:17:a5:5e:16:
34:ba:75:2a:e8:70:38:3a:3b:a6:69:16:8e:39:d7:
a0:ec:8f:74:5a:13:b6:91:06:d0:94:dc:63:e5:5f:
47:67:aa:96:fa:ae:f0:de:d0:40:c0:99:49:ff:cf:
87:7c:e7:1c:be:5a:2c:af:51:2c:e9:5b:a3:35:b6:
12:ac:19:f0:f1:a7:b0:fc:71:fb:42:e5:64:f1:b4:
59:22:ed:65:9c:f6:db:7c:3f:07:d8:c6:b5:83:3a:
6d:ba:eb:59:f7:21:79:3a:dd:ba:3b:9f:48:f0:ea:
f6:a3:a7:a9:ca:4c:f0:40:a1:a1:c4:06:ed:71:54:
3a:fa:a9:47:b3:a0:9d:5f:40:73:1f:54:e4:23:eb:
41:a6:6c:a8:da:8b:5b:2a:f9:2b:f3:1b:1e:ec:70:
c2:cf:f7:07:84:6c:a2:4f:41:2c:34:c8:98:24:e0:
2b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:F3:E4:D9:5F:64:50:51:58:D4:DF:B4:16:FC:03:A2:CD:05:32:BD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.80.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:55:75:c6:b4:3e:69:27:5d:27:8b:c8:a9:07:94:57:0d:a3:
b7:62:89:1b:62:67:50:a0:e7:72:07:45:5b:c9:f5:41:4a:81:
1c:05:00:38:48:2b:b8:56:91:b9:c5:5d:91:2e:07:9c:80:1d:
09:2e:90:f4:a8:bc:20:45:c0:79:b9:b8:fb:1e:e9:86:bf:dc:
ce:59:d7:b3:c7:30:12:10:c5:68:7c:14:2d:79:55:17:d7:ba:
1f:86:38:82:de:78:57:ee:10:28:55:8c:7a:42:dd:fa:81:03:
68:3d:6c:10:33:7f:be:70:41:4d:e5:fc:35:07:c5:f7:b4:9a:
57:81:f0:5e:43:eb:68:5d:b3:8b:6c:f2:74:d0:f1:1b:6d:1e:
7d:ce:53:b3:cf:a2:dd:01:f1:c6:9e:35:11:a4:2f:88:bf:94:
f1:a8:8d:2c:88:6b:d0:f0:64:3a:91:a5:6b:6c:72:84:af:29:
97:db:28:16:75:6c:e1:46:83:a1:56:11:bc:ed:c6:d3:59:d7:
62:fe:ee:cf:e7:1a:f6:78:da:13:7b:4a:4c:ce:2f:a1:82:f6:
3a:1b:fc:fd:e0:30:5c:be:82:8d:3f:b4:b7:50:7b:af:15:64:
1f:74:45:be:7e:ea:a3:24:6e:e6:dd:b5:ce:e0:86:39:f7:fa:
ef:9d:f8:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org