Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t1DEj02EZppNQ9i3TGTewHqf6d8.roa
File: t1DEj02EZppNQ9i3TGTewHqf6d8.roa (raw, json)
Hash identifier: P85aMgvoT3YJKYbsAZDvJcNhYWxrS/j9VmzpIuX4Lx8=
Subject key identifier: B7:50:C4:8F:4D:84:66:9A:4D:43:D8:B7:4C:64:DE:C0:7A:9F:E9:DF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A08
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t1DEj02EZppNQ9i3TGTewHqf6d8.roa
Signing time: Fri 01 Sep 2023 10:07:24 +0000
ROA not before: Fri 01 Sep 2023 10:07:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10760 (0x2a08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B750C48F4D84669A4D43D8B74C64DEC07A9FE9DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0f:e4:38:be:48:84:05:9a:02:ec:40:30:a4:
1d:e0:4f:ef:50:2a:b6:86:22:16:94:e4:82:bf:b4:
0d:ae:3c:42:7a:10:36:fe:91:d5:64:e0:cf:15:bb:
4d:af:4a:ae:ce:a8:23:df:6d:78:ea:13:7e:5e:b0:
0e:90:a4:51:6b:29:72:f8:2e:2b:28:52:16:06:82:
ab:b1:3a:b0:1f:df:fe:7d:b3:10:0a:fd:c3:20:41:
1e:ca:8e:14:ef:f2:73:33:ab:97:82:24:1c:ff:06:
1e:a0:09:48:fd:e1:18:e7:2a:96:ba:ca:bb:97:ff:
6f:d6:87:a9:fd:0d:90:bc:57:ff:b6:c7:28:3d:13:
e7:58:21:cd:6f:55:67:d2:ae:9e:82:ed:cb:fd:65:
0c:b5:98:1c:dd:c5:87:5c:25:cb:8e:bb:61:64:e4:
8a:64:20:5b:50:31:22:64:ed:04:b3:fd:0b:6f:c9:
98:db:ba:8b:21:69:a3:6a:fe:ba:cd:ca:aa:cd:e7:
94:bd:85:c4:c4:ae:9a:18:1f:2b:0a:db:1d:06:b7:
4a:6c:65:d8:eb:5c:90:d7:d0:6e:ad:52:d6:6b:6c:
73:a2:53:88:b6:9c:d2:96:af:70:c2:e2:0f:7f:97:
77:df:97:d7:c4:ff:57:32:28:bc:f6:e1:cc:69:f5:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:50:C4:8F:4D:84:66:9A:4D:43:D8:B7:4C:64:DE:C0:7A:9F:E9:DF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t1DEj02EZppNQ9i3TGTewHqf6d8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.28.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:03:85:ca:2a:00:b1:fc:21:1e:e7:5a:b1:1f:13:df:c3:ff:
89:b6:52:f8:72:b3:b8:cb:55:bb:da:94:2f:5b:be:08:39:79:
a0:50:62:fc:fb:9d:fd:3e:f4:88:6b:cc:cf:61:8c:26:22:17:
03:32:6a:9d:a3:4a:a6:f1:b0:9b:90:8b:f3:89:b8:c0:4f:62:
83:2d:bc:b6:b4:97:c1:1a:bb:e6:2d:bc:ce:76:a2:0d:58:8e:
fd:a4:21:46:a8:78:d8:66:e6:bc:61:a0:e4:73:50:e5:a6:86:
3f:83:ab:40:2b:fe:00:fb:c6:53:a5:71:bc:f8:f2:f2:cb:e2:
7c:dd:23:35:91:d5:33:4b:6c:7e:91:bd:ef:e2:6a:32:74:28:
cd:78:f1:e7:cb:34:fc:da:bf:a6:cf:62:38:ac:a3:e9:69:67:
f8:4a:2b:8b:23:6c:48:a1:28:2d:2a:39:90:d0:a3:c3:d2:5b:
d0:16:ae:aa:12:38:91:5c:9d:22:d6:1a:e6:2b:bb:9e:6d:45:
cd:6f:6d:ad:aa:d3:c9:74:d4:d6:b6:56:ea:f6:74:31:44:38:
94:2c:99:69:e2:37:0f:99:7d:db:d9:eb:85:bc:e3:88:89:a6:
4f:fe:18:f8:b4:67:7f:2f:d4:a3:b6:7e:a9:86:7b:fd:d6:9b:
55:ca:8d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org