Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1IyMJmjO71U5ElQdihOXzs-2T1k.roa
File: 1IyMJmjO71U5ElQdihOXzs-2T1k.roa (raw, json)
Hash identifier: JeDDcD7ny+nItnywnMYQrrjmKVqiJW9VbzcIoYcOSPE=
Subject key identifier: D4:8C:8C:26:68:CE:EF:55:39:12:54:1D:8A:13:97:CE:CF:B6:4F:59
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DCE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1IyMJmjO71U5ElQdihOXzs-2T1k.roa
Signing time: Mon 15 Jan 2024 21:34:43 +0000
ROA not before: Mon 15 Jan 2024 21:34:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3534 (0xdce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:34:43 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D48C8C2668CEEF553912541D8A1397CECFB64F59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cd:aa:f0:31:d6:90:37:d3:88:a9:4e:2a:b2:
7a:bf:e4:4b:f2:08:8d:96:0c:a9:ae:fc:6f:76:66:
b6:41:3b:e0:e5:65:14:ca:61:8a:b6:48:87:67:f7:
58:8b:07:f7:46:33:12:96:6a:d5:3a:d0:b9:51:fe:
88:72:a3:4b:ec:80:91:26:ab:44:b8:75:78:6f:81:
f3:3f:a7:62:af:5a:d2:3c:34:c1:a1:b6:be:25:52:
6e:5c:49:d0:b1:ef:eb:77:ff:5c:fc:76:31:88:60:
8e:18:38:a2:77:ac:45:ed:fb:93:92:92:5d:a7:e0:
3a:a7:77:11:af:50:85:19:2b:8c:6e:fe:e4:d8:46:
77:d3:32:18:83:89:8c:ac:23:1e:1d:db:e5:87:75:
df:12:fc:9d:b7:58:5f:27:c3:8e:39:09:52:b9:ae:
7c:a2:ba:2c:97:3f:07:de:13:f0:d1:43:31:ef:d2:
fb:16:6d:53:44:a6:21:6f:0f:71:f3:19:33:9a:71:
71:c2:0f:93:3a:95:33:d6:a4:15:38:b8:e3:fa:e0:
45:92:46:25:a7:5a:e6:bc:c2:15:c8:ad:b7:73:82:
46:4c:e6:d3:4f:57:74:0b:c1:0b:bf:18:38:6b:e1:
de:23:70:c6:0d:ef:fd:14:7f:8a:a5:4d:a7:19:18:
4c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8C:8C:26:68:CE:EF:55:39:12:54:1D:8A:13:97:CE:CF:B6:4F:59
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1IyMJmjO71U5ElQdihOXzs-2T1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:0f:8c:b4:33:2d:64:75:12:f8:39:de:aa:f0:3e:cb:9c:d5:
c5:f7:00:da:eb:48:2a:f8:ee:dd:31:5e:a9:1c:71:c2:d0:90:
8e:60:2c:83:95:2a:05:32:1e:58:9c:11:07:cf:f1:5e:fc:04:
34:06:c9:25:51:8d:a5:4f:5a:8e:68:11:7c:07:a1:96:4f:cb:
0f:cc:1f:53:46:ce:ac:8b:03:36:31:d5:01:58:03:98:c9:e0:
76:8c:f1:e0:15:74:c3:87:5c:05:a2:58:9f:74:8b:d6:38:f1:
51:9e:8a:2b:ff:c2:c5:c1:c4:c7:34:d5:6e:43:cc:70:12:2a:
3b:d5:a3:b3:d1:fc:48:98:c7:90:2d:4e:1f:29:b1:61:45:17:
40:1f:9e:30:d8:54:28:d9:f8:83:6b:83:c9:07:ac:bd:c4:7a:
56:53:0b:ef:44:4b:43:34:12:c4:2e:2b:3e:f1:de:17:2f:fb:
b9:05:df:d6:7f:8d:c8:f5:77:69:e4:1a:d5:b3:c1:7c:61:4c:
11:bd:0c:da:d1:7c:14:e9:3b:96:b5:0c:2b:3d:a0:86:56:b9:
50:a7:d1:13:73:44:7f:07:48:93:72:b0:cf:20:cb:59:c6:38:
16:6f:b2:a4:ea:20:12:22:9b:9c:27:d7:e7:33:46:b5:01:51:
34:7e:59:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org