Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/3pnHNW4RiNFVYcw4-PhW4F_1liY.roa
File: 3pnHNW4RiNFVYcw4-PhW4F_1liY.roa (raw, json)
Hash identifier: pmk3rvBV7mm56ZfQYEoWgQ3/z6Y3AT0G7JNL/3pM1K8=
Subject key identifier: DE:99:C7:35:6E:11:88:D1:55:61:CC:38:F8:F8:56:E0:5F:F5:96:26
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BA8
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3pnHNW4RiNFVYcw4-PhW4F_1liY.roa
Signing time: Fri 01 Sep 2023 08:50:51 +0000
ROA not before: Fri 01 Sep 2023 08:50:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18412
IP address blocks: 2401:e180:8c00::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2984 (0xba8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DE99C7356E1188D15561CC38F8F856E05FF59626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:df:f9:53:c8:4f:3d:ba:f7:4d:d4:40:bb:b2:
72:1b:c2:67:f2:25:80:ef:cc:2e:71:14:a9:53:37:
05:f3:9a:9e:f2:77:89:a5:60:be:e1:ea:4a:92:d2:
17:e9:6e:f3:1b:13:89:88:86:e1:c0:30:6d:07:74:
e5:c6:ff:33:54:29:ad:ff:a2:c4:53:03:f5:bb:f5:
ec:4c:ad:08:82:07:7f:70:a7:8b:8e:39:45:98:50:
d1:5d:be:9a:4a:4d:6a:62:f7:99:7a:3c:12:7d:50:
cc:f8:58:86:ab:08:38:d1:da:8d:c1:95:7c:ff:3e:
ee:cf:86:89:6e:e0:58:f9:cb:3f:65:10:d0:1f:1d:
1a:bc:2a:39:46:86:d2:03:e8:e1:d4:58:ca:97:8b:
d7:03:a5:fd:32:c3:28:7a:0f:87:f3:97:28:c1:b0:
ab:c2:7a:4e:41:07:41:14:06:1c:73:71:c0:74:e6:
cd:89:92:98:49:c8:33:71:41:ce:81:b9:71:04:22:
61:fe:59:cb:b4:92:53:fb:dc:94:04:f4:a4:ee:4b:
6f:56:4f:ab:11:e1:4f:04:b0:78:bd:2e:21:fc:ba:
b5:82:c4:25:a6:dc:1d:cb:a2:bf:e6:97:12:6f:5b:
10:3a:ff:21:92:b0:3b:9a:75:6c:1a:45:63:32:45:
45:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:99:C7:35:6E:11:88:D1:55:61:CC:38:F8:F8:56:E0:5F:F5:96:26
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3pnHNW4RiNFVYcw4-PhW4F_1liY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180:8c00::/44
Signature Algorithm: sha256WithRSAEncryption
39:0a:d4:0d:5b:e8:c5:dc:9a:42:28:e0:65:9e:c3:23:bc:a0:
0a:c0:33:9d:33:ef:8b:f2:45:a5:39:c8:a7:b0:03:08:9e:cc:
da:90:9b:83:90:d5:92:4a:0a:63:33:dc:ef:df:af:2c:24:ff:
dd:ac:09:98:80:0a:9f:64:23:61:34:85:b2:13:2f:eb:37:f1:
03:37:da:91:b6:7f:8b:ce:32:6e:cc:4a:5c:be:48:77:d3:68:
ed:48:a6:32:18:1f:9f:b9:af:ed:da:5f:87:b4:44:f8:b8:94:
72:56:69:eb:3b:bf:ae:d0:c7:69:ab:ec:4a:eb:e5:ee:1c:44:
1a:2c:c1:9a:a4:c8:b0:97:3e:4c:1d:15:39:3a:32:33:ff:e5:
c7:35:dc:cd:c8:16:af:04:05:81:8d:34:fb:3b:88:44:51:57:
91:9a:ed:9c:ff:ef:2e:95:ab:a6:8d:82:9d:70:2e:bb:38:c5:
de:d1:29:2f:d1:08:84:83:19:6f:8d:19:c0:83:e7:f5:7a:8a:
b6:67:d8:7a:d8:77:d2:bc:4f:2c:5f:c9:22:49:67:7c:73:dc:
58:a0:11:33:b1:6f:65:f7:58:b8:59:d9:bb:ad:c1:2e:b1:82:
74:6c:1f:51:64:ab:2e:58:30:7b:6a:fd:23:bc:eb:b9:85:80:
03:cf:24:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org