Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rCTdvBZ7QgCxf697uNeYARtHA-o.roa
File: rCTdvBZ7QgCxf697uNeYARtHA-o.roa (raw, json)
Hash identifier: QG78nMWUYXOKyslQsxq8rJiWP45TsPOl6Kiokih6Xsw=
Subject key identifier: AC:24:DD:BC:16:7B:42:00:B1:7F:AF:7B:B8:D7:98:01:1B:47:03:EA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29F5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rCTdvBZ7QgCxf697uNeYARtHA-o.roa
Signing time: Fri 01 Sep 2023 10:07:19 +0000
ROA not before: Fri 01 Sep 2023 10:07:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10741 (0x29f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AC24DDBC167B4200B17FAF7BB8D798011B4703EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3b:37:bf:6b:14:f9:8f:95:a7:fb:1c:63:42:
04:40:ee:29:0c:30:a8:b3:0c:69:61:53:73:52:4b:
6b:62:6f:36:12:98:77:fd:16:93:99:21:e1:74:7b:
45:a8:c1:e6:66:88:de:58:7e:fa:60:2c:84:18:6f:
94:23:d4:11:12:5e:19:86:c1:76:dd:1c:44:5b:22:
74:22:11:7d:03:a9:13:3b:8e:a9:91:6c:cf:a6:f1:
11:64:80:e7:05:4c:20:ad:fc:e2:84:16:52:83:59:
18:3d:dc:e5:b1:85:52:2a:55:a0:f2:25:ce:02:16:
bb:cd:ba:23:c3:d6:bd:16:0f:fd:64:4c:91:e5:bf:
e0:d5:ca:e4:7a:79:92:b0:d9:38:eb:d6:5f:ff:9c:
6a:24:62:72:a3:41:f2:d8:d1:52:58:0e:02:d0:8c:
6e:54:92:07:ee:e3:3d:64:ed:2c:1f:55:aa:dd:66:
b8:74:14:f1:12:bd:b1:6c:fc:0d:2a:7d:af:bd:aa:
bb:60:5c:05:d9:a6:0b:40:31:2e:10:a6:be:a7:00:
c3:cc:73:01:e9:35:63:34:33:e5:15:2f:90:96:f0:
19:de:e7:ea:d4:32:f4:c0:44:cf:55:b2:dc:30:1b:
97:cc:4e:0d:8d:5f:95:09:f9:ce:54:bd:07:99:26:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:24:DD:BC:16:7B:42:00:B1:7F:AF:7B:B8:D7:98:01:1B:47:03:EA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rCTdvBZ7QgCxf697uNeYARtHA-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.68.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:11:8b:55:c9:37:f5:8b:21:1d:7f:b9:2d:73:fa:b1:a3:a3:
82:ce:5a:45:0d:6f:86:ea:2c:fe:0b:21:f9:75:73:0d:87:9d:
76:c4:d5:48:9f:16:85:de:fb:60:0b:78:9f:4d:60:c3:59:75:
c0:73:7f:3e:2b:d1:67:8c:4f:fc:ab:c8:e3:d6:c0:db:20:a6:
0d:bc:6c:84:58:6a:fe:2a:ce:74:a3:f8:f8:a3:4a:81:1b:c4:
68:0a:86:fa:53:85:21:00:c4:57:c9:81:09:c6:e1:c9:60:9b:
b4:23:9e:f9:22:20:8f:14:d2:2e:60:06:16:ac:6f:fe:51:e0:
c5:7b:c0:bb:1c:0d:fb:68:3c:f9:06:49:a7:51:70:ec:a7:14:
88:26:31:d7:9f:2f:e5:fe:22:6b:3b:73:64:3c:62:3f:7b:c8:
ce:8e:38:ba:fa:e2:d7:43:99:b8:dc:b1:11:b9:e4:83:c3:b9:
13:17:74:bc:a3:9b:f5:fd:5b:98:93:04:00:8a:87:44:6e:7f:
fb:3b:ff:75:64:70:de:43:2d:9c:bb:e3:b7:a0:63:07:eb:2f:
ea:cf:a1:89:dc:18:84:92:bb:f3:8a:ee:ac:00:91:c7:d6:e8:
7f:b5:3b:f0:8c:c2:bc:db:d0:74:28:7a:a1:a4:b3:71:63:ad:
7c:be:86:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org