Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/liOu2oMktvhtSwgPenzhXuxOWJs.roa
File: liOu2oMktvhtSwgPenzhXuxOWJs.roa (raw, json)
Hash identifier: R5xYUa/gmg4fWwn78WdiqSEmDn6EyY21bQrP5G5zzLg=
Subject key identifier: 96:23:AE:DA:83:24:B6:F8:6D:4B:08:0F:7A:7C:E1:5E:EC:4E:58:9B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 289D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/liOu2oMktvhtSwgPenzhXuxOWJs.roa
Signing time: Fri 01 Sep 2023 10:05:35 +0000
ROA not before: Fri 01 Sep 2023 10:05:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10397 (0x289d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9623AEDA8324B6F86D4B080F7A7CE15EEC4E589B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3d:b1:e5:a4:15:d0:ef:05:3f:8d:ad:eb:fd:
1a:f2:f1:0a:58:c9:d7:cc:98:ba:aa:50:0a:60:ce:
2e:82:4c:94:8e:23:24:95:a4:e9:5a:e7:4c:d0:70:
c2:91:dc:6e:a1:91:44:db:3e:a4:16:28:ed:0d:83:
68:c4:31:82:6a:59:3e:df:89:21:b1:b5:ed:ae:f1:
92:90:10:5d:48:73:0e:7c:2b:48:57:d3:68:47:1c:
60:41:15:23:b4:f9:3b:3c:cd:0f:c2:ca:8f:08:c9:
99:62:03:3b:8d:c9:81:6b:8f:ce:bb:5f:a6:c0:18:
da:07:1a:24:9f:d9:c3:dd:4f:7d:a7:57:ae:73:2e:
12:05:fb:b1:2b:63:30:17:ae:c4:6e:6e:e6:c5:79:
70:01:14:b4:72:6b:6a:0f:b8:26:08:4d:4f:d9:b4:
49:48:50:29:16:ac:40:9d:85:eb:0b:5d:e8:95:b3:
bf:10:81:b6:22:89:0c:55:a0:44:ec:2e:2e:0f:be:
91:f6:00:7e:05:3e:3b:fe:d7:aa:13:f9:03:e4:2e:
f4:4a:6b:f7:20:35:2c:a2:25:14:16:88:76:bf:bf:
ce:f1:71:82:d0:91:57:b8:c7:64:a9:35:65:ef:57:
99:93:8f:2a:3c:1a:a0:be:23:f9:15:b9:bc:8f:b7:
a4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:23:AE:DA:83:24:B6:F8:6D:4B:08:0F:7A:7C:E1:5E:EC:4E:58:9B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/liOu2oMktvhtSwgPenzhXuxOWJs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.248.0/22
Signature Algorithm: sha256WithRSAEncryption
38:84:43:6e:96:01:24:cc:c4:e7:9c:08:7e:de:12:28:3b:62:
16:53:0a:be:a6:f6:9b:16:a4:8e:f8:ef:3f:c6:96:bb:b0:96:
9f:52:5c:97:57:45:16:25:f9:b3:f7:2c:18:ca:c8:4e:e8:b6:
04:e1:d5:e9:49:2d:5f:a9:22:83:ee:f9:c6:b0:42:a1:78:53:
29:45:40:26:28:65:b4:d5:7e:51:e7:d4:89:07:02:b8:c7:0b:
07:b2:e6:ae:75:73:d4:ed:1f:67:58:a8:84:c3:42:aa:2b:e1:
88:87:41:7b:cf:3d:37:63:b7:e6:08:e2:0a:6b:d7:1c:16:12:
b7:db:fe:ff:4c:fa:ca:66:cb:38:7d:5c:5a:66:83:b3:04:5c:
6c:93:be:f7:b8:d6:ce:32:e7:c7:30:fd:10:05:d0:d2:ea:c7:
f9:95:a0:0a:b9:e4:73:10:71:26:fc:04:3f:1a:15:d9:62:34:
f9:d0:e9:74:1a:80:af:1d:57:c9:1e:33:0f:ef:dc:c8:3a:38:
89:b8:d9:bf:0c:21:ba:d7:e9:95:9a:ff:88:39:a1:58:7b:a1:
b7:e7:32:e1:dd:b5:8b:11:7d:e7:a0:3b:4a:c3:16:e2:4f:6e:
94:0a:f3:3a:13:f2:d0:f7:1a:6b:38:1b:70:90:8d:96:31:07:
95:6c:d6:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org