Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1yM7gE-xFQooYIO-ujfBT9LXU1g.roa
File: 1yM7gE-xFQooYIO-ujfBT9LXU1g.roa (raw, json)
Hash identifier: 8TwwCY/Hf5f4/dpYvn1RyY62c5F/CuEtWJmTEus9XhM=
Subject key identifier: D7:23:3B:80:4F:B1:15:0A:28:60:83:BE:BA:37:C1:4F:D2:D7:53:58
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DDA
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1yM7gE-xFQooYIO-ujfBT9LXU1g.roa
Signing time: Mon 15 Jan 2024 21:35:00 +0000
ROA not before: Mon 15 Jan 2024 21:35:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3546 (0xdda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:35:00 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D7233B804FB1150A286083BEBA37C14FD2D75358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:11:81:ce:44:8d:40:1d:ba:f9:4f:61:57:ff:
ce:3e:0d:35:ff:6e:f1:7b:23:d5:e6:1a:a1:c8:1a:
99:a1:14:02:4d:76:78:8e:b6:e3:dd:13:13:af:5f:
5a:7a:dd:bd:4e:e4:80:54:55:f6:15:6f:b6:c4:79:
38:b2:d9:bf:64:6e:bd:db:93:d7:a7:7d:56:3d:94:
3a:b8:af:be:1c:ff:76:e6:d0:4a:f6:f1:2d:31:11:
ae:a4:eb:5d:7d:bd:30:7b:23:dc:eb:6d:9e:87:42:
81:b9:78:d1:4b:6d:02:c8:a0:23:90:18:fb:af:61:
3f:20:98:5a:ca:73:76:84:76:06:c5:a1:2d:4d:53:
c0:9e:80:46:f5:5a:3d:45:c4:06:46:79:b0:9c:8e:
32:a0:79:38:78:dd:2f:3b:e9:f7:d7:b9:71:e6:34:
29:09:6b:a6:03:51:ec:38:ad:f0:5c:4d:ac:92:50:
8b:3d:e2:db:ac:2c:fc:11:37:bd:ce:ed:e6:84:2f:
f7:b9:98:a4:f0:81:c8:41:7f:6c:33:4a:34:10:4d:
bb:b6:ce:61:d6:73:16:0b:08:22:65:2a:ef:80:eb:
33:e7:10:cb:48:53:f2:a4:52:04:7c:8c:d2:78:f7:
bd:45:b4:c2:76:e2:a2:4d:d7:43:92:b9:a5:bc:32:
11:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:23:3B:80:4F:B1:15:0A:28:60:83:BE:BA:37:C1:4F:D2:D7:53:58
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1yM7gE-xFQooYIO-ujfBT9LXU1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
38:98:3c:44:d8:16:de:84:ee:57:84:98:76:af:79:27:f4:70:
f2:8d:a1:b8:01:59:d5:25:65:2f:0d:b0:8e:dd:e6:f0:f3:b1:
ed:9b:ca:92:21:63:74:6f:b2:22:c4:0b:95:3b:ee:fc:de:2d:
ee:9d:74:a2:b4:c8:25:e7:7f:3f:16:56:46:12:db:b1:c8:68:
eb:eb:47:f7:9d:c8:76:6f:e8:4a:42:d1:81:86:d1:e4:19:c1:
49:b8:61:cc:3b:9e:e0:bb:0f:ec:0b:30:ea:68:a8:0a:a3:5e:
9c:ae:78:a5:0b:7e:47:1e:2f:0c:47:9d:4f:65:c1:6d:63:05:
b7:ac:22:54:79:88:35:c7:12:d9:98:52:ee:09:5b:cb:78:06:
99:86:e7:cd:f2:0a:75:fb:08:74:f3:ca:98:5e:dd:d6:35:6c:
7e:49:ec:a1:d1:fe:77:cb:b4:5c:ea:b0:95:9a:0f:71:2f:d9:
fc:e0:0e:2d:ac:a4:b5:e2:e2:81:9c:d1:6a:43:50:89:e2:1c:
04:90:c6:1a:ce:d7:d9:e3:c7:2d:a8:ae:74:71:7d:12:0c:7e:
e1:b5:6c:c7:43:ee:4f:84:bb:60:83:4a:9f:b6:33:80:db:0b:
04:67:48:87:a1:a6:fd:8a:81:57:5f:60:83:d5:61:71:76:a4:
0d:1c:39:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org