Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vYbicPxVm9XxQTy2BnqFU5vylxs.roa
File: vYbicPxVm9XxQTy2BnqFU5vylxs.roa (raw, json)
Hash identifier: bQJC1Bk9cOAmI7sbH040RJT5d6UMghpyUva/Cjsek6w=
Subject key identifier: BD:86:E2:70:FC:55:9B:D5:F1:41:3C:B6:06:7A:85:53:9B:F2:97:1B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 283A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vYbicPxVm9XxQTy2BnqFU5vylxs.roa
Signing time: Fri 01 Sep 2023 10:05:05 +0000
ROA not before: Fri 01 Sep 2023 10:05:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.192.120.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10298 (0x283a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BD86E270FC559BD5F1413CB6067A85539BF2971B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:54:58:62:b7:2f:e4:6a:d4:df:c8:f7:56:ae:
6e:16:2f:42:2b:a7:fc:47:6a:68:3a:a4:9f:57:cc:
62:e9:ee:4f:ef:ab:9f:6d:e4:34:b2:60:45:05:08:
65:2d:34:3d:dd:46:ac:3f:1c:43:a4:2a:db:af:05:
66:29:20:be:b7:d6:72:cc:c6:af:65:f2:f3:3e:96:
6f:5f:55:58:87:1a:70:72:1e:3c:89:09:a8:9f:a9:
da:80:f0:f1:a4:19:17:90:f5:2d:7e:83:fe:0a:74:
2f:c0:b3:c0:52:a3:a5:50:a8:82:65:16:f6:53:4d:
01:09:d6:a9:7b:5d:9b:25:3f:d5:e9:d5:64:c1:b1:
b8:3d:f9:3c:4a:85:b7:1b:64:9a:af:05:e6:38:90:
97:dd:90:ca:a7:89:05:44:41:67:ea:2e:38:06:cb:
a8:63:12:7f:20:4a:f3:de:d4:9e:a3:b4:38:34:ce:
da:a6:ca:a2:8d:b0:d6:4c:bd:3c:c3:a4:64:78:4b:
6b:f5:14:02:79:4d:10:4f:7f:eb:9d:e1:81:6e:ee:
f4:f3:c5:eb:af:1f:c4:eb:94:ce:78:07:47:18:b5:
ac:e0:18:c9:7d:0c:67:4c:38:69:94:32:f3:ae:46:
26:c4:42:cf:72:c9:47:c7:db:18:38:bd:c8:1c:9a:
bf:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:86:E2:70:FC:55:9B:D5:F1:41:3C:B6:06:7A:85:53:9B:F2:97:1B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vYbicPxVm9XxQTy2BnqFU5vylxs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.120.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:c7:f2:c8:58:31:95:ae:e0:13:2c:00:27:6d:d4:28:4c:83:
dd:71:05:f5:e9:95:f8:06:d9:31:51:c2:a3:05:3c:0d:b8:d8:
5f:21:89:3c:60:c3:c5:82:eb:b7:6d:f9:4b:d4:bb:70:00:7f:
4a:22:58:16:3a:53:6d:40:42:64:56:36:01:92:3c:02:bf:d9:
bf:a4:12:92:a1:37:93:a7:5a:2c:d6:35:86:d7:e4:5a:0c:c5:
9b:1c:fb:13:00:fd:65:b5:50:89:9c:94:8c:1c:4f:82:8c:bd:
00:fd:fa:e0:64:a4:9d:90:8d:13:fe:f8:6f:f1:0b:b4:20:29:
85:09:8b:b5:bc:49:be:5f:0a:3f:9d:b4:12:ac:16:1d:6d:72:
c1:46:77:83:e0:44:7d:fc:c2:2a:6a:ae:a6:d6:19:f7:0f:a4:
98:94:c8:88:e3:ce:48:7a:7a:f1:14:8c:7c:52:5a:53:85:e3:
7e:5f:c5:78:c4:7b:2e:1a:69:93:95:e0:55:9d:7b:d3:ad:7f:
cc:3f:9e:0b:e7:42:11:73:84:c9:a0:72:99:3b:6d:90:56:5e:
26:8c:f1:c7:09:78:f6:e2:66:fd:da:23:52:d2:31:1e:e3:58:
b1:a6:7e:3d:33:2e:be:38:e3:e2:1d:f3:90:5e:f6:93:d0:e6:
c3:9e:5c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:26 2024 by rpki-client on console-fra.rpki-client.org