Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa
File: zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa (raw, json)
Hash identifier: md/TIF4jb9sZajWW8i9vZCxBmhYabPEUuvgrmiUvXjI=
Subject key identifier: CC:B1:A5:0E:1B:4F:55:52:0A:EE:70:15:C8:EC:FE:17:75:2B:18:E5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AD3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa
Signing time: Fri 01 Sep 2023 10:08:19 +0000
ROA not before: Fri 01 Sep 2023 10:08:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 118.233.200.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10963 (0x2ad3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CCB1A50E1B4F55520AEE7015C8ECFE17752B18E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:03:57:bd:c3:52:ec:9f:c2:7b:1c:fe:4b:e3:
84:e4:20:8b:31:8c:ef:35:f8:8f:d9:5b:8c:9c:5c:
47:f1:4c:e0:cc:96:ff:25:f5:cb:0b:25:81:74:4d:
c8:ff:6a:d8:f7:d5:96:44:a7:bb:07:42:08:3f:fb:
7c:19:35:04:c7:f6:d3:b6:7f:1c:45:a4:6a:94:eb:
5e:03:6c:5b:df:44:ae:f4:a3:37:3c:30:06:71:be:
c5:4d:90:e8:69:29:b1:c9:98:00:34:e2:1e:43:e2:
bc:27:0c:66:57:f8:a5:56:52:11:72:dd:d5:72:fa:
fb:a9:21:80:86:bf:1f:f6:0f:1d:3c:9f:73:4c:ce:
7f:1d:ea:53:f8:3f:85:b8:1e:7a:95:33:b8:0c:f8:
54:5a:9b:25:93:f7:e6:7e:2d:3b:83:be:89:c6:93:
80:f3:86:41:8e:41:8d:1a:b8:32:11:7c:ca:47:35:
ef:84:42:9d:8f:4b:02:82:1e:e6:d3:b5:29:b7:ce:
be:2e:ee:8f:e1:a4:2a:bf:41:64:fe:31:b8:66:82:
7d:53:2c:96:f6:1e:f3:cd:13:60:fe:de:91:6f:10:
1c:b2:de:c0:41:40:d9:eb:ad:0f:45:03:cc:5d:d6:
a0:cc:8d:7e:ba:0f:b6:db:9d:68:93:c4:f0:8d:7d:
71:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B1:A5:0E:1B:4F:55:52:0A:EE:70:15:C8:EC:FE:17:75:2B:18:E5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.200.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:af:0c:97:2b:1c:63:70:49:96:0b:73:db:ba:66:39:89:32:
8b:c4:86:d9:a1:cf:f8:00:35:3c:b0:80:fc:dd:78:67:c3:51:
e7:7c:ce:49:74:6b:18:0f:82:85:70:45:e8:88:18:29:99:9c:
57:38:b3:96:d3:98:b0:68:69:46:4e:5f:34:59:db:aa:b2:4d:
4e:cf:81:9a:8f:07:06:a7:8d:f6:be:69:fa:d5:60:93:16:89:
07:da:df:e3:d9:81:b5:a3:33:7f:27:5e:ba:d7:eb:07:d6:43:
f3:2b:15:d6:ec:a4:2e:87:85:e3:5e:1a:41:23:39:17:e0:d7:
57:bd:1f:8f:cd:3e:3a:c2:b1:e4:cc:43:45:61:b1:58:1e:c0:
cc:bc:7f:a5:e9:f3:62:16:4e:fd:77:ef:91:30:43:d5:27:d5:
f3:90:00:b3:48:eb:00:e4:db:87:45:a6:27:02:32:ea:ef:8d:
68:42:c7:ca:35:01:32:6d:ef:71:c9:c6:8f:8f:1c:dd:e4:9d:
c9:0f:bb:69:a1:80:c5:a4:db:53:3f:50:f5:42:1c:4e:4e:6a:
2a:fa:37:00:00:15:3a:33:54:18:f9:bb:a3:a8:5e:0b:57:22:
32:c2:c6:d3:86:fa:02:5f:c4:1d:27:45:ed:8e:65:29:dc:02:
76:3d:2d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org