Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uUYgfsgeKu7CuwDcy2cnnDm3eC4.roa
File: uUYgfsgeKu7CuwDcy2cnnDm3eC4.roa (raw, json)
Hash identifier: qM5lid5NI6lbmhz9vPkhDC/ikwOq4Iu3eTkJknHnYjM=
Subject key identifier: B9:46:20:7E:C8:1E:2A:EE:C2:BB:00:DC:CB:67:27:9C:39:B7:78:2E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2976
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uUYgfsgeKu7CuwDcy2cnnDm3eC4.roa
Signing time: Fri 01 Sep 2023 10:06:38 +0000
ROA not before: Fri 01 Sep 2023 10:06:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.80.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10614 (0x2976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B946207EC81E2AEEC2BB00DCCB67279C39B7782E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fa:51:92:88:bb:31:ba:d4:53:80:3d:52:c5:
e3:9e:07:0d:36:52:78:04:80:a6:03:d6:8b:b2:2a:
4f:2a:21:1d:6a:ab:b3:9b:5e:91:4c:ea:30:c1:99:
7f:fb:b7:66:87:4b:cd:09:00:11:6a:d7:46:ae:b5:
00:2c:49:86:31:07:b1:56:02:70:e5:e8:ff:a3:ab:
10:fc:b3:5d:62:d4:b3:a8:28:e9:ef:80:73:01:65:
9f:a3:c3:49:65:54:34:3a:34:49:fe:3a:45:94:d4:
3b:0c:fe:81:83:a7:d4:4e:4d:d4:87:52:de:62:2c:
e1:ff:ec:5e:95:e2:92:c0:98:4b:a0:1d:f0:bb:d7:
05:8c:d3:7b:88:a3:64:ee:db:68:57:05:ff:b8:11:
eb:47:2c:16:e5:98:4b:c0:5a:db:dd:ce:79:37:84:
1d:07:63:ac:a8:a8:93:09:00:a1:97:43:e6:50:25:
69:0b:7c:1f:d3:cf:f5:31:3c:b8:e9:e7:c9:d2:a7:
6b:e0:43:ad:7b:9f:ba:d2:1e:c4:42:27:fa:0a:4a:
d1:8e:3b:1c:4d:37:7d:d7:cb:34:a7:27:97:54:cf:
f0:12:c5:e3:ce:07:a6:aa:b8:fc:7b:6c:ae:da:bb:
44:1f:37:e4:73:79:d0:f6:4c:fa:c5:2d:ea:8b:d6:
45:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:46:20:7E:C8:1E:2A:EE:C2:BB:00:DC:CB:67:27:9C:39:B7:78:2E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uUYgfsgeKu7CuwDcy2cnnDm3eC4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.80.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:de:5c:2b:25:7a:b9:9f:d7:e6:ce:f0:36:c7:dc:e8:9c:a3:
52:4f:fc:8c:e0:8f:ad:06:1a:94:c5:22:7d:72:24:c4:a2:b5:
58:37:a1:03:35:f3:fa:96:56:d7:54:99:7c:fa:4c:a4:25:fc:
2d:aa:7d:fb:a3:87:54:d1:c6:90:73:0b:75:9b:00:2a:b6:15:
49:05:f9:71:f5:40:83:e0:d6:c6:6e:c5:6c:e1:35:e6:3f:b3:
5e:bb:09:d1:48:93:3a:0d:f7:f0:ff:e1:b4:98:d7:81:31:dc:
0b:39:a6:95:bd:ac:fe:42:20:37:55:b9:ff:5c:96:19:c5:0a:
7f:1c:28:88:22:41:36:78:35:5d:68:bc:b1:20:3e:4c:df:91:
f2:9b:54:2f:a5:0b:52:9b:40:1b:3f:9b:5c:24:5e:ec:7b:c4:
e0:c7:76:ef:33:61:86:d4:66:e7:7f:c2:62:06:a3:60:08:44:
51:d9:14:ac:b7:ed:ba:83:64:4e:cd:4e:f2:f6:48:e9:20:6f:
0f:89:c9:a6:d1:93:c7:41:df:96:06:fd:b7:92:da:af:53:32:
5e:fb:8a:8f:80:41:65:b8:1d:86:ce:4c:37:2d:77:e1:5f:01:
6b:72:77:cc:89:30:16:b0:dd:d0:2f:29:dd:23:41:c2:74:05:
54:78:2c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org