Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa
File: o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa (raw, json)
Hash identifier: kEfQUvXiB8sGV+R0/evBMmgIwQmm7AdOa7SnsmU5TzY=
Subject key identifier: A3:F2:B2:16:3D:D8:A3:24:F0:0B:97:F2:CA:EA:B1:1E:02:BC:0E:DC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A59
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa
Signing time: Fri 01 Sep 2023 10:07:48 +0000
ROA not before: Fri 01 Sep 2023 10:07:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10841 (0x2a59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A3F2B2163DD8A324F00B97F2CAEAB11E02BC0EDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fb:1e:7c:b1:c4:ce:4d:ef:f7:6d:7d:02:da:
5d:8e:23:3c:42:25:cf:3a:5f:ac:2c:cd:61:15:2a:
cc:56:40:3f:88:35:5a:64:9b:f5:84:c8:dd:ef:d9:
b4:e0:b6:81:e2:7b:05:67:74:ce:71:d2:ec:3d:5a:
cf:e9:b2:11:10:5a:68:be:97:3d:30:03:02:52:a7:
1c:34:20:e0:a0:2d:c1:f6:29:ec:78:45:3c:81:e6:
24:c1:ae:09:57:55:d2:f4:09:3c:f1:fb:5a:c6:9b:
3a:d5:2e:e9:ab:63:db:ef:e1:46:b2:ca:c9:da:65:
d1:fc:92:1e:d0:e8:72:8d:f3:17:2a:b9:66:ce:2d:
a9:1a:a5:e0:5f:28:9f:b0:4d:66:66:55:c9:3f:19:
4d:ae:58:4c:c1:bc:97:12:4e:d6:e4:5f:35:86:c2:
61:0f:32:75:d0:9e:ea:3c:0c:09:23:e3:a1:b6:78:
a9:4d:14:99:16:a0:13:ba:53:55:c7:a8:6b:d7:cc:
69:e4:17:ad:3b:4f:31:e8:50:70:14:fa:53:4c:10:
dd:d0:b3:60:8a:3c:84:2b:6e:a8:23:3f:bd:3c:e5:
87:2e:d9:ee:41:33:52:ab:2c:bd:cb:08:bb:60:d9:
f4:80:5f:41:51:d8:00:64:32:67:80:55:fe:dd:fd:
da:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F2:B2:16:3D:D8:A3:24:F0:0B:97:F2:CA:EA:B1:1E:02:BC:0E:DC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.128.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:e2:0b:61:fb:b1:78:0d:57:24:a2:96:cc:56:20:52:55:0d:
42:b6:75:75:e5:18:80:7c:1a:01:e2:fc:7d:b8:10:d9:e1:c2:
f0:65:ae:b1:a7:cf:1f:e2:56:54:85:01:97:1c:5a:1c:b3:69:
07:65:e0:db:1f:2b:54:38:26:b8:b8:8c:0f:24:ef:5d:c6:3b:
40:2f:67:93:00:5f:bd:fc:b4:b3:48:2b:f8:75:5c:b9:56:54:
2c:3d:2c:e2:77:72:68:a0:c4:8b:6e:a9:9b:66:69:f5:5a:bd:
d6:a1:49:bf:86:1c:6c:66:78:19:d4:0a:46:44:e8:7c:fe:a9:
84:70:04:27:94:2f:54:6c:0f:2f:b4:67:fc:be:2b:bc:a2:f1:
c6:fc:6f:1d:01:b3:cc:3e:3e:42:ce:16:f9:ad:59:a5:2e:2b:
b3:aa:a1:98:e7:5f:25:5b:92:e7:8f:d5:8d:48:4f:96:68:49:
bf:94:e7:e2:e7:38:1e:ef:8b:b0:78:bd:7c:72:da:0e:80:79:
a1:d7:ba:7c:90:f0:7f:be:8f:4a:90:8a:17:7a:ad:77:25:0a:
db:3e:66:03:07:90:de:40:28:6b:a7:6a:7c:2f:30:ad:19:b3:
6f:f5:7f:46:41:9b:1e:bc:43:42:05:71:a6:20:5d:d5:2d:a4:
db:42:a2:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org