Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa
File: rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa (raw, json)
Hash identifier: SUs5JVflT4osU1VtrJnNpMe/eU8BS6bzv0WcV4yF584=
Subject key identifier: AE:33:15:2C:28:D5:27:31:6E:17:53:79:B9:8A:FB:47:F2:81:22:DE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A3F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa
Signing time: Fri 01 Sep 2023 10:07:39 +0000
ROA not before: Fri 01 Sep 2023 10:07:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10815 (0x2a3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AE33152C28D527316E175379B98AFB47F28122DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:e2:c6:6f:a2:73:cf:20:94:37:85:2e:be:
09:06:6f:59:a1:3a:0f:49:01:d3:11:96:ff:4b:88:
cd:02:41:df:39:c1:73:bc:b6:9d:bf:ea:d2:28:96:
c2:58:73:2f:87:87:1e:55:40:ec:52:8c:85:27:1d:
43:e5:77:de:9e:23:fb:ca:4d:d9:36:32:f2:43:a9:
c1:7a:0a:78:c2:55:e1:e7:68:61:c6:d0:38:6b:d8:
93:d2:16:a0:56:a8:89:35:dd:ca:cb:8d:83:90:af:
a1:8d:93:1a:86:44:6d:f0:c9:52:dd:cb:29:8e:18:
40:4c:60:68:d9:7f:99:14:f3:9f:d7:df:39:ed:78:
e4:3c:89:e8:18:c0:21:93:ba:8a:59:06:19:a6:39:
d0:93:30:ef:a2:6a:cd:56:18:d8:d4:f5:f5:58:2f:
2b:72:fa:f0:cb:7d:b4:5d:73:4d:05:6d:d7:c4:4c:
e9:f7:9f:6a:a6:52:b1:8b:03:e5:d2:bd:08:1b:14:
bf:87:da:6f:e2:8d:a9:ff:eb:18:e0:59:ad:49:ca:
a4:00:c3:d6:25:2c:ea:03:c4:8b:47:27:01:75:9c:
5f:db:a4:fa:d2:da:2e:d5:45:86:e4:7b:c5:a0:3a:
5f:13:f1:b6:11:b7:b4:84:a0:69:9b:79:d3:7d:42:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:33:15:2C:28:D5:27:31:6E:17:53:79:B9:8A:FB:47:F2:81:22:DE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.112.0/21
Signature Algorithm: sha256WithRSAEncryption
06:13:c0:2a:4a:93:42:61:22:cd:33:bd:92:52:52:3d:0a:2e:
a0:3d:41:77:40:c3:8d:19:dc:85:e2:37:f7:30:2a:eb:92:89:
b6:9f:d7:b9:dd:ee:f6:0a:fb:82:74:2f:13:b7:99:21:3f:af:
5c:7d:90:db:7d:40:c8:d6:9d:9d:2a:12:6b:47:0b:6a:73:dd:
9b:79:bb:a9:a4:15:eb:e2:0e:d3:dc:50:a7:a1:2a:f2:ad:2f:
cb:90:a5:56:7c:60:3b:ee:26:f0:82:2e:ec:1e:e7:04:3d:f0:
2a:91:2b:cb:7d:93:d2:04:70:94:52:f4:f6:7b:bf:b6:4e:9b:
88:29:9e:7c:bb:6a:65:4e:cf:40:8d:fd:15:56:2c:19:7c:a8:
72:cc:32:c4:c2:48:1c:b1:0a:44:ea:87:76:53:01:b1:97:c1:
bf:78:b2:9f:ca:ab:19:e2:42:f2:36:27:26:a1:41:01:54:af:
3c:2a:64:2f:4e:de:53:fc:3e:18:17:4d:bf:29:ce:9c:50:7a:
61:f0:23:32:99:9e:dd:85:fe:cc:f5:8f:f6:5d:64:1b:ca:d2:
8c:04:dd:3f:fd:01:2f:50:7e:f8:7a:5e:d3:b7:e3:a1:0b:d1:
1d:46:c5:97:52:67:1d:e1:eb:0c:24:1d:3a:26:b5:36:57:57:
42:0d:15:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org