Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mszrQDhO6b_yYF5IOsrWYjuRg90.roa
File: mszrQDhO6b_yYF5IOsrWYjuRg90.roa (raw, json)
Hash identifier: tBszqxR8j1DkBPlxDgnKSc1qALbU7agHU7kwGVL8XPs=
Subject key identifier: 9A:CC:EB:40:38:4E:E9:BF:F2:60:5E:48:3A:CA:D6:62:3B:91:83:DD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 282B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mszrQDhO6b_yYF5IOsrWYjuRg90.roa
Signing time: Fri 01 Sep 2023 10:05:02 +0000
ROA not before: Fri 01 Sep 2023 10:05:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 118.232.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10283 (0x282b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9ACCEB40384EE9BFF2605E483ACAD6623B9183DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9f:93:35:29:2f:01:8f:37:0d:f5:49:aa:3d:
e0:52:72:0b:ce:94:a8:57:97:6e:c8:c4:b4:d1:0c:
2f:0b:df:64:12:15:d3:84:be:b7:fd:bd:39:4f:b9:
68:c5:f7:de:1f:6c:0a:17:ff:f1:a3:f2:ef:08:c3:
36:36:42:dd:19:13:fb:4d:b6:0e:06:c7:b3:da:d5:
19:b9:ff:19:c7:da:25:dc:e6:5d:0c:d2:6d:46:b3:
a9:a7:85:ba:51:75:4b:8a:13:01:fd:71:f1:98:56:
35:b2:03:92:7d:21:50:83:a9:89:00:cd:72:8e:18:
81:fb:c3:06:c2:aa:fe:39:69:e7:93:da:06:71:eb:
06:60:06:b7:80:fd:e1:8a:07:76:27:22:4c:7a:6a:
5b:21:f5:a2:16:bc:c4:80:5a:f3:9e:09:44:67:cf:
2f:79:19:e1:0c:38:21:b1:36:e0:c9:02:28:54:72:
f2:4b:06:2a:ec:6a:bb:ea:23:c8:fc:d1:4a:55:1f:
53:73:38:af:ee:68:fb:54:06:1d:fa:c7:e2:2d:fa:
fc:a7:08:5f:cf:98:cb:f7:5e:9e:df:35:47:7e:4a:
15:e9:c7:c9:93:be:9d:ae:ad:93:ac:4a:5e:f8:b7:
1c:0e:69:01:1d:15:5f:4b:85:0e:d6:f1:b9:6e:73:
c8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CC:EB:40:38:4E:E9:BF:F2:60:5E:48:3A:CA:D6:62:3B:91:83:DD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mszrQDhO6b_yYF5IOsrWYjuRg90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
02:dc:01:c5:04:46:b7:15:3e:a9:88:33:69:7b:7b:50:cd:7e:
3c:b2:e9:98:9e:4b:ac:92:46:53:1e:71:1c:17:69:c0:c3:c5:
c3:11:8d:fe:a7:c7:0f:b1:75:81:21:ed:a4:dd:58:a9:ef:b1:
5f:db:3c:b2:c8:03:c5:f7:a3:eb:73:24:1c:9c:69:93:c7:21:
08:d0:60:22:e8:dc:a2:1b:d9:5a:18:8b:0c:57:14:7a:1c:04:
df:c0:8f:00:42:d7:5f:42:d4:f3:9f:2e:f2:28:7c:e0:d9:25:
aa:39:51:b6:c8:6e:87:19:c0:25:64:08:9a:df:24:52:8b:db:
d2:98:ad:7c:0b:df:f4:f7:2d:f4:8b:cd:39:39:7f:90:f0:21:
d1:97:5a:c4:d3:74:43:bb:35:ba:e4:4b:0c:6e:c0:b2:5d:be:
e4:7b:a2:3f:7e:4f:68:85:9c:ec:23:b4:aa:3a:19:be:55:97:
f0:cd:92:7b:7d:70:b0:fc:6c:51:95:c8:cf:e7:8d:58:de:6f:
64:5a:8d:07:51:46:8b:30:72:ee:ab:c6:6c:f1:b2:ee:7f:df:
8e:f4:b9:4b:b2:e7:31:33:7f:04:66:2e:95:9e:48:fa:88:78:
cd:50:52:03:74:54:06:eb:bd:9c:4f:56:72:74:c1:35:60:92:
21:d8:ad:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org