Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kVC-OuNuk0h2UII3_B4wY-RgYDE.roa
File: kVC-OuNuk0h2UII3_B4wY-RgYDE.roa (raw, json)
Hash identifier: pwQw0Kd+3waSrUZkj/Oh/QSs/e/1pzRLz+B7363D+P8=
Subject key identifier: 91:50:BE:3A:E3:6E:93:48:76:50:82:37:FC:1E:30:63:E4:60:60:31
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28C8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kVC-OuNuk0h2UII3_B4wY-RgYDE.roa
Signing time: Fri 01 Sep 2023 10:05:45 +0000
ROA not before: Fri 01 Sep 2023 10:05:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10440 (0x28c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9150BE3AE36E934876508237FC1E3063E4606031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:50:d8:4a:61:4a:b3:c7:24:db:1f:11:23:d4:
92:2c:7f:8a:31:4d:2a:83:dc:3d:5b:d3:c3:0d:92:
27:4d:25:20:53:70:10:41:63:10:86:eb:81:f2:a4:
0e:31:19:ab:fa:00:76:5b:40:60:ef:08:2c:6b:33:
5a:ac:5c:03:b8:aa:12:7b:c7:9f:59:d3:fd:6f:b4:
7b:ce:d9:a1:64:cd:eb:b0:e0:9f:08:e3:0a:5e:3f:
b5:c3:80:ab:03:60:58:02:e0:11:13:bc:a0:23:ff:
2e:b1:03:96:57:6b:e9:57:49:80:e6:0a:07:de:20:
79:62:3f:3d:8c:ce:ac:8a:57:20:62:02:2d:b9:28:
9a:0b:02:9c:d7:5f:83:e2:98:96:c5:60:32:b4:da:
fe:59:8d:bc:f8:f3:df:3b:9f:e3:88:53:da:4d:f3:
84:0c:fb:a8:37:d0:5d:0b:05:5b:0c:f4:c4:e4:e7:
03:fb:c8:04:03:3f:0c:d8:28:5a:80:60:23:f9:a0:
44:e7:bd:c8:ae:4d:ba:2c:4d:03:a0:9d:1c:1e:6a:
90:50:a6:3c:f8:ec:a1:4e:a3:9f:04:74:d3:22:b4:
5a:07:b7:07:26:70:ab:53:51:f4:68:54:3c:87:79:
c5:c9:2b:a8:a7:ff:61:88:92:37:dc:5b:ef:90:75:
03:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:50:BE:3A:E3:6E:93:48:76:50:82:37:FC:1E:30:63:E4:60:60:31
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kVC-OuNuk0h2UII3_B4wY-RgYDE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.40.0/22
Signature Algorithm: sha256WithRSAEncryption
57:f3:6f:3e:29:b4:f4:91:52:8f:31:b6:88:6f:ca:50:4e:4c:
84:ab:b4:9f:84:ea:bd:c7:c4:4f:12:d0:b1:e6:ff:00:46:89:
33:61:b0:61:f6:27:34:8c:60:65:f1:d9:42:7e:b8:72:d0:e2:
33:65:b0:57:9b:e3:79:2d:ef:b3:99:dd:06:3d:38:15:8b:91:
d4:29:53:b2:7b:50:7d:f7:f1:a6:b3:5d:85:4e:d8:62:c5:f6:
d1:95:87:9c:36:3a:c8:be:90:c2:98:1b:83:87:e9:99:8e:a8:
df:c0:1e:64:3d:d2:71:50:10:83:99:e9:f3:76:54:c8:2d:53:
91:a9:90:46:ae:25:ca:8f:94:7c:29:68:58:b7:25:f8:94:32:
4a:d0:71:32:df:d0:42:1c:41:fb:71:42:82:06:1e:aa:59:b7:
3a:e8:94:0a:ad:d9:86:9e:ca:27:af:ef:ab:cf:1c:cf:02:1e:
47:e5:80:fc:79:bb:3e:24:32:11:70:b6:01:47:29:d3:0c:2b:
96:f4:e3:6a:02:9a:fa:be:fb:e5:c8:95:4e:ce:2a:ab:b9:89:
71:22:c8:50:95:a8:8b:46:f3:e5:4c:46:bc:af:10:bc:07:88:
41:40:6d:0c:d1:b0:a2:0b:14:d6:96:87:7a:e7:b5:b3:cd:28:
cb:bf:93:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org