Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tFRiowKLJiUW61iltQkGJu_A4rk.roa
File: tFRiowKLJiUW61iltQkGJu_A4rk.roa (raw, json)
Hash identifier: 9z3ttGM4hqvviXbupM5fd6RwDO9n9GS7jZ+ZV+kTOqU=
Subject key identifier: B4:54:62:A3:02:8B:26:25:16:EB:58:A5:B5:09:06:26:EF:C0:E2:B9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 288E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tFRiowKLJiUW61iltQkGJu_A4rk.roa
Signing time: Fri 01 Sep 2023 10:05:29 +0000
ROA not before: Fri 01 Sep 2023 10:05:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.96.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10382 (0x288e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B45462A3028B262516EB58A5B5090626EFC0E2B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:46:5a:ab:54:0a:ed:ef:f1:3f:5a:43:ad:05:
7e:57:c8:28:ee:a4:09:53:e4:1d:7f:e3:75:ff:8d:
ec:85:ac:cb:20:64:b5:b2:63:b2:a8:1a:66:78:d6:
26:c5:b9:a7:7a:d0:2f:05:01:b2:8c:b6:bb:e7:7a:
0d:7c:ad:1e:86:54:9e:1c:10:5a:fd:b2:3d:8f:58:
f1:91:f6:7c:55:09:ff:c9:be:52:2b:4c:c2:44:fa:
42:8e:58:5f:1d:06:e3:11:a0:a9:31:84:9a:f2:52:
9e:5e:57:38:29:26:df:a4:e1:25:5c:cf:5e:ec:3d:
7e:00:e4:17:98:58:d3:53:d1:fc:37:2e:cb:df:de:
60:6a:9b:a8:33:54:e5:db:ae:2b:d8:bc:c9:be:be:
c8:cb:73:95:6e:87:44:41:ef:67:54:9f:89:f3:6d:
50:04:c8:ab:28:cc:e1:b0:6f:a5:78:b9:c3:f8:17:
6d:d6:9e:aa:16:34:69:f1:b0:e8:2a:15:6e:0d:47:
e3:94:26:ca:9d:0f:fd:8e:e1:2f:57:1c:1b:e7:fb:
24:3a:81:41:33:9a:30:b8:34:fc:94:6f:c0:2d:0a:
74:08:9a:3c:fe:90:a8:ba:53:77:ee:6a:89:5e:93:
f5:59:0d:3c:ce:32:53:40:e5:32:8d:2f:00:d0:29:
f4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:54:62:A3:02:8B:26:25:16:EB:58:A5:B5:09:06:26:EF:C0:E2:B9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tFRiowKLJiUW61iltQkGJu_A4rk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.96.0/21
Signature Algorithm: sha256WithRSAEncryption
36:cb:eb:cb:31:34:6a:4f:5e:49:4f:14:54:af:47:cf:6d:3f:
d9:3e:cb:01:6a:e2:04:92:a0:bb:50:52:a6:dc:c5:6e:b5:00:
87:af:34:8f:ef:d3:49:5b:d2:e3:05:97:b7:96:f6:01:28:14:
0a:d7:3f:73:ab:69:19:4c:71:0a:19:0d:5e:6c:5a:0d:61:22:
08:d4:cb:5c:5e:a4:d1:a8:85:01:ad:ce:54:d0:5e:ba:ff:33:
dd:59:71:c6:06:5b:10:ea:1b:49:ce:78:a9:25:4d:46:4e:83:
c4:7e:a3:cc:92:04:fc:f8:27:c3:0e:f1:a2:54:e1:62:6d:63:
66:22:d0:cd:3e:95:55:0b:d2:b2:e0:a0:b8:e0:a1:5d:d5:b9:
1e:33:73:86:88:65:03:0b:79:d3:78:81:b5:44:6e:cb:aa:fc:
6f:d1:c2:24:06:c2:61:b5:ba:ff:73:bd:eb:9f:21:f5:1c:f4:
46:fb:d3:fd:30:66:80:02:00:6e:be:de:d6:e2:a0:15:aa:68:
73:f0:ab:0a:14:28:9b:d6:89:9b:1c:bc:b7:1d:1f:ed:cd:4e:
25:0e:2f:76:e5:60:9c:0f:49:af:c5:0c:1c:44:da:7f:cf:c0:
2e:57:32:11:d1:a1:68:ef:20:7b:c7:73:da:4b:2c:b4:c0:4e:
a4:b8:c1:e9
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA1MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI0NTQ2MkEzMDI4QjI2
MjUxNkVCNThBNUI1MDkwNjI2RUZDMEUyQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKRlqrVArt7/E/WkOtBX5XyCjupAlT5B1/43X/jeyFrMsgZLWy
Y7KoGmZ41ibFuad60C8FAbKMtrvneg18rR6GVJ4cEFr9sj2PWPGR9nxVCf/JvlIr
TMJE+kKOWF8dBuMRoKkxhJryUp5eVzgpJt+k4SVcz17sPX4A5BeYWNNT0fw3Lsvf
3mBqm6gzVOXbrivYvMm+vsjLc5Vuh0RB72dUn4nzbVAEyKsozOGwb6V4ucP4F23W
nqoWNGnxsOgqFW4NR+OUJsqdD/2O4S9XHBvn+yQ6gUEzmjC4NPyUb8AtCnQImjz+
kKi6U3fuaolek/VZDTzOMlNA5TKNLwDQKfR5AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUtFRiowKLJiUW61iltQkGJu/A4rkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3RGUmlvd0tMSmlVVzYxaWx0
UWtHSnVfQTRyay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wmAwDQYJKoZIhvcNAQELBQADggEBADbL68sxNGpPXklPFFSvR89tP9k+ywFq4gSS
oLtQUqbcxW61AIevNI/v00lb0uMFl7eW9gEoFArXP3OraRlMcQoZDV5sWg1hIgjU
y1xepNGohQGtzlTQXrr/M91ZccYGWxDqG0nOeKklTUZOg8R+o8ySBPz4J8MO8aJU
4WJtY2Yi0M0+lVUL0rLgoLjgoV3VuR4zc4aIZQMLedN4gbVEbsuq/G/RwiQGwmG1
uv9zveufIfUc9Eb70/0wZoACAG6+3tbioBWqaHPwqwoUKJvWiZscvLcdH+3NTiUO
L3blYJwPSa/FDBxE2n/PwC5XMhHRoWjvIHvHc9pLLLTATqS4wek=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org