Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xwkyBSW2t0K3R27pNzoegDdZ68Q.roa
File: xwkyBSW2t0K3R27pNzoegDdZ68Q.roa (raw, json)
Hash identifier: 1pFgakyTR+h5KedrRW6hI51tn1PVf+ctvba/NMzNric=
Subject key identifier: C7:09:32:05:25:B6:B7:42:B7:47:6E:E9:37:3A:1E:80:37:59:EB:C4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2ABC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xwkyBSW2t0K3R27pNzoegDdZ68Q.roa
Signing time: Fri 01 Sep 2023 10:08:14 +0000
ROA not before: Fri 01 Sep 2023 10:08:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 118.232.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10940 (0x2abc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C709320525B6B742B7476EE9373A1E803759EBC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ec:e4:31:29:48:7a:98:a0:05:65:56:ea:be:
c7:f6:45:36:ba:be:4f:65:8a:42:4c:e5:69:6f:f4:
64:93:be:38:e0:87:5e:12:53:92:80:e1:a5:5b:85:
8a:ae:c7:11:b4:3b:bf:ea:39:44:56:66:c2:60:8b:
0d:5a:df:84:78:49:25:65:8a:90:49:94:c1:69:4c:
bd:b5:b1:e9:e4:d5:c2:a3:51:4e:40:55:e0:4b:b4:
d8:94:76:60:73:bd:3c:01:65:3b:76:38:9c:1f:d6:
51:c2:27:2c:f8:db:b5:dc:66:8c:76:a6:fa:47:ac:
c6:3a:56:73:17:63:7c:d9:63:e6:71:dd:01:5d:d5:
b2:af:d2:bc:9f:60:e8:2a:b2:d6:02:65:fe:f0:91:
6d:16:ce:36:5b:dd:cc:83:04:ea:fd:cd:c4:d0:2b:
f7:44:5c:54:8c:20:2e:92:8a:58:7a:57:4d:74:8c:
e6:af:31:1f:95:ff:2c:0f:5c:45:60:61:d4:2a:b7:
4d:a5:7e:72:c4:bf:89:fc:2e:15:49:73:72:76:f4:
7f:12:93:e9:8c:8e:33:d3:9f:a1:97:4c:cb:6a:6b:
c4:5f:67:15:e7:4b:83:cf:be:be:5b:46:29:ef:6b:
a1:79:72:bf:fc:f6:1b:6b:66:86:5a:53:f3:6f:c9:
b0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:09:32:05:25:B6:B7:42:B7:47:6E:E9:37:3A:1E:80:37:59:EB:C4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xwkyBSW2t0K3R27pNzoegDdZ68Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.244.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:7a:6f:71:28:5c:89:80:9e:a4:fb:0a:e8:aa:89:76:c2:0a:
f2:c4:d9:0a:92:84:44:ed:9d:50:30:6c:4b:78:e5:55:f3:2f:
5e:88:d7:36:cf:c6:0f:95:9c:0b:03:22:eb:53:0b:6d:80:0f:
42:ca:f7:21:98:ac:32:1d:e7:6d:06:88:01:99:f1:0f:9b:56:
24:f8:1e:f3:97:d1:9d:23:f7:ba:3d:2a:fb:73:3e:af:8e:b6:
9c:d7:dd:f2:dd:29:a6:f6:2e:83:ce:d7:2c:74:ae:68:13:99:
f3:8b:94:6d:c9:a6:56:98:80:46:4b:f2:9f:c9:b1:5f:a0:0a:
05:ed:9d:b2:6e:be:55:ad:68:84:7b:ac:ed:aa:20:ad:1e:fc:
df:4c:b5:e7:50:0b:e6:4f:f0:f9:4f:cd:76:2f:37:4f:fb:40:
db:69:4b:b6:d7:2e:80:05:69:73:41:fd:0e:75:9b:19:11:bf:
75:e5:62:1a:b0:af:f0:ab:7a:86:e9:f8:0e:0b:57:c2:0e:ef:
05:08:a5:ae:fb:97:9a:34:93:5d:44:65:b6:4b:83:6d:d6:6c:
f1:d8:1c:5a:a6:83:05:e6:cf:9d:d5:bb:d3:9d:69:d4:55:9d:
00:03:e8:93:e1:fe:06:c4:31:cb:7c:6b:d9:f5:2f:03:40:0d:
71:94:33:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org