Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/4E6dsRHzEFJY7U9d5639FF22Iss.roa
File: 4E6dsRHzEFJY7U9d5639FF22Iss.roa (raw, json)
Hash identifier: KPU93N32IOgk3xNW+7iOLZVHOxH63aGmP27U9lcavjs=
Subject key identifier: E0:4E:9D:B1:11:F3:10:52:58:ED:4F:5D:E7:AD:FD:14:5D:B6:22:CB
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C32
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4E6dsRHzEFJY7U9d5639FF22Iss.roa
Signing time: Mon 15 Jan 2024 21:08:30 +0000
ROA not before: Mon 15 Jan 2024 21:08:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 60.244.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3122 (0xc32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:08:30 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E04E9DB111F3105258ED4F5DE7ADFD145DB622CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9e:03:d7:bd:9b:b3:75:81:61:4b:50:9b:18:
4e:2e:4c:ee:25:56:66:6c:b6:80:ef:7f:08:b5:b6:
bb:9f:f8:6b:dd:14:e2:5b:f6:dd:fc:6a:29:06:31:
ef:10:8e:b3:62:8a:47:f0:d4:8e:34:b6:5a:f8:f5:
21:8f:4a:dd:4c:cf:d9:a9:b0:15:95:d2:3d:c1:03:
8f:38:89:8d:bd:f7:18:1d:5b:4f:fa:63:e2:cf:70:
94:80:3d:ed:34:e5:3b:52:e1:6f:91:cf:16:08:0f:
50:e1:a2:75:dd:1e:e3:f2:c6:33:06:10:dc:98:bb:
e7:e5:93:aa:cc:77:45:7a:e8:b3:ad:21:c0:66:47:
13:49:f5:73:30:8b:83:fa:f3:26:92:bc:f3:10:80:
3f:84:79:a4:1a:c0:61:e3:73:bb:2c:b2:bf:66:e8:
42:8d:b8:41:71:b9:5b:d9:61:c0:f5:c6:38:72:dc:
66:08:15:89:27:45:2e:d4:9a:8e:37:97:99:19:44:
ee:58:ba:b9:ae:43:94:db:b7:0b:a1:2b:b1:8c:aa:
b8:c7:f9:48:80:77:c8:64:6e:01:25:c6:35:21:76:
ae:8d:c4:51:db:f2:d5:f9:d1:84:d3:55:96:5e:9b:
12:5d:41:4a:5d:18:7f:75:66:69:fb:d0:6c:83:e9:
1d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4E:9D:B1:11:F3:10:52:58:ED:4F:5D:E7:AD:FD:14:5D:B6:22:CB
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4E6dsRHzEFJY7U9d5639FF22Iss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/17
Signature Algorithm: sha256WithRSAEncryption
12:34:3f:6c:fb:89:47:9e:a7:2b:8a:66:cb:5a:8b:a2:0c:87:
2a:4e:8b:54:80:bf:70:ec:3f:63:bb:17:c7:6f:e3:5b:71:5d:
bc:ea:67:65:cb:41:0f:5d:a4:af:0c:9f:2e:6c:c4:be:6c:68:
c0:90:91:59:71:8b:82:4b:1b:a9:41:0a:7b:e8:70:8b:7e:f4:
76:d1:d9:08:f8:82:06:27:fc:08:86:bc:4d:47:f3:1a:63:76:
3e:0d:0c:3c:53:c3:7f:65:7a:65:6f:3f:2f:e9:bb:3c:8f:15:
27:e0:0b:cf:7d:ae:5b:f3:1f:e7:6a:82:de:6a:13:9a:1d:f4:
f4:ee:18:31:83:06:9d:4b:cf:1c:cd:4e:db:4c:32:49:40:ec:
47:61:62:18:27:3d:e2:5c:4b:7f:83:3f:d1:70:ca:d3:bf:b9:
0f:f9:64:d7:79:4d:16:5a:e8:bd:e2:ed:c5:71:39:6e:89:9f:
07:89:e1:72:0d:bd:44:50:f3:bd:6e:88:39:63:6d:ce:8a:74:
79:79:4e:4c:f0:3c:ba:e0:17:e7:0b:1d:e2:b9:06:57:f8:1a:
f4:c4:47:f0:d6:b5:8b:e2:76:1e:6a:30:63:59:84:19:a0:98:
9c:93:8b:54:8e:db:10:c2:1e:53:9a:34:3e:74:a9:89:c7:9a:
e3:f2:03:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org