Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xYpyenXd8iTzsIwXLyePxBtZnWU.roa
File: xYpyenXd8iTzsIwXLyePxBtZnWU.roa (raw, json)
Hash identifier: OGeitD5omsT6L6pQCwzAqOgnIYC8EiNyEl/mxo42CVE=
Subject key identifier: C5:8A:72:7A:75:DD:F2:24:F3:B0:8C:17:2F:27:8F:C4:1B:59:9D:65
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AF3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xYpyenXd8iTzsIwXLyePxBtZnWU.roa
Signing time: Fri 01 Sep 2023 10:08:28 +0000
ROA not before: Fri 01 Sep 2023 10:08:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10995 (0x2af3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C58A727A75DDF224F3B08C172F278FC41B599D65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:76:1b:77:5b:b8:98:2e:20:b4:aa:a4:35:38:
83:4d:15:c8:08:db:ad:12:94:15:26:db:d5:f6:e4:
f7:dd:2f:86:0f:aa:f8:e5:95:ae:0a:b2:4e:1f:64:
4f:51:24:b1:b4:db:da:5b:59:0e:03:e3:70:ac:7e:
41:12:de:4d:8d:cc:ed:b0:92:83:4f:21:49:47:ae:
53:9b:d6:d6:bd:e7:ef:e8:18:70:3b:a9:41:09:33:
41:ce:54:a1:7e:c1:0c:66:4c:33:db:b8:c8:21:0d:
5e:48:1c:d9:f9:b0:de:91:b2:19:b4:0b:ad:ec:c0:
44:e6:4c:07:5e:18:33:8a:af:d4:b7:ca:a6:2b:24:
9e:21:33:dc:f4:d2:0a:be:20:b3:c3:ca:a4:2a:7c:
5d:18:a3:6b:08:40:b0:22:14:05:15:30:cf:fb:ee:
c6:0f:d3:fd:ec:55:0c:cf:9f:3c:c2:04:8a:c8:da:
21:ba:d5:7d:42:26:0c:bd:01:4d:8e:68:42:88:04:
1d:45:c4:0c:7f:9f:98:cd:19:2b:78:5d:29:96:b6:
b3:29:35:f6:eb:aa:55:b2:8c:95:a6:b0:65:3e:3a:
21:82:6a:6f:1b:f3:54:02:7a:0e:18:5b:1a:3b:fc:
51:c2:0e:e4:83:5d:f2:0d:d7:59:18:44:b9:e2:68:
ca:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8A:72:7A:75:DD:F2:24:F3:B0:8C:17:2F:27:8F:C4:1B:59:9D:65
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xYpyenXd8iTzsIwXLyePxBtZnWU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.128.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:24:fd:ff:18:bb:95:53:35:0e:db:09:d0:f3:b4:b1:8c:29:
f5:1b:8b:45:22:82:ea:29:75:04:aa:84:e6:85:d6:cf:05:df:
4a:b8:61:ff:e0:ed:b1:dd:cc:3d:c8:04:01:4a:93:95:d2:f8:
69:31:b1:73:c8:48:69:ce:86:72:18:80:a6:d1:b4:53:1e:d3:
73:92:22:18:5c:3c:7c:2c:d8:e2:d9:43:1e:3c:cb:8b:ad:97:
fe:bb:85:d4:d8:05:27:b6:6f:a6:af:a0:5f:98:a3:a4:c7:70:
b5:1e:b4:fd:5b:be:c6:84:44:17:fa:07:27:3c:31:af:04:e4:
68:99:ac:78:72:e6:95:b6:a0:7b:d6:e9:51:50:50:91:fb:19:
6f:f7:0f:f6:e4:4d:78:55:5b:af:a1:05:f7:9a:81:5d:c2:aa:
47:57:e2:86:55:ea:df:49:66:de:f5:e2:ec:26:c5:d6:6b:b5:
f0:e4:f4:3c:18:3b:66:1d:94:d3:20:75:5b:29:bd:31:76:62:
0e:d8:6f:ae:35:0b:fb:01:93:28:ec:c4:5b:3f:c2:2c:f6:49:
10:b0:47:62:ff:87:ff:52:8a:4f:16:36:97:2c:d4:87:ea:a1:
6f:a4:48:e9:aa:d9:0e:b4:e2:dd:1b:44:56:c8:e0:71:d8:c7:
fe:e8:a3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org