Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa
File: 5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa (raw, json)
Hash identifier: R33D/6lveTCxTwEH3l/m5ziv9urhGsQFcFtBksaMwKw=
Subject key identifier: E5:FA:82:B8:F0:73:F8:B0:95:5C:9B:EB:A9:5A:A0:C1:21:E0:38:07
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D36
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa
Signing time: Mon 15 Jan 2024 21:25:19 +0000
ROA not before: Mon 15 Jan 2024 21:25:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.202.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3382 (0xd36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:25:19 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E5FA82B8F073F8B0955C9BEBA95AA0C121E03807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4d:b9:b2:c9:93:5b:fe:06:81:d3:20:a9:11:
c1:02:6e:77:02:63:fb:43:65:af:06:bd:d4:4e:e0:
13:9f:05:56:ae:24:7c:4a:df:8f:76:00:ed:bf:4d:
c9:ed:ce:9b:c0:36:62:14:fc:26:4f:67:f6:67:4c:
8b:21:ef:95:36:39:b2:49:67:f3:b2:ae:f5:47:b4:
6d:ac:df:e9:aa:f8:c3:ab:fd:0f:62:aa:c9:d5:23:
a7:6b:61:07:5a:82:4c:86:6c:45:ee:6e:88:e9:ce:
0d:a6:fc:a9:f8:23:f4:d6:0b:c0:90:b2:98:b7:be:
35:a9:13:55:0b:0c:e6:22:a8:1a:79:98:76:66:77:
71:b8:49:d7:cf:3f:c9:a3:18:ba:fa:3d:c0:96:e3:
c5:3b:79:a1:7c:5e:65:da:55:2c:95:46:63:e3:53:
ae:6e:97:10:8b:99:7b:c3:55:84:c4:11:63:8f:af:
13:74:63:99:0e:78:70:b2:23:6a:24:3a:fb:69:f8:
81:1e:52:6b:6f:b6:24:96:76:12:03:c4:d7:e9:a6:
62:5c:69:12:58:c8:71:29:a4:8b:e6:3a:f3:d6:59:
74:02:13:c5:fe:eb:c5:e5:c8:97:c2:6d:d4:66:00:
75:32:8a:05:31:1f:c4:2c:44:13:33:7c:5a:fd:50:
1f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FA:82:B8:F0:73:F8:B0:95:5C:9B:EB:A9:5A:A0:C1:21:E0:38:07
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
50:62:11:8b:8e:35:67:b7:48:52:d2:f3:05:c1:f1:f2:30:6b:
d2:98:93:2e:b5:0b:c3:52:d3:df:f1:71:66:66:0a:cf:d0:8f:
54:56:f1:23:9e:26:e8:1a:d7:16:98:3d:f9:af:a7:4f:3d:b2:
e3:95:3b:3e:7f:5f:cd:2d:aa:d1:82:db:67:31:39:78:92:20:
f2:58:ef:74:9d:40:11:a3:1c:c5:86:f2:15:0f:43:9b:f0:c1:
52:6d:ab:9e:56:d4:7a:62:e4:c3:02:83:9d:ac:35:93:51:28:
c8:b8:32:ad:73:37:c4:e9:3f:6d:f9:6c:75:0c:75:30:f1:54:
a1:22:e7:87:b2:17:f6:e9:94:da:42:32:77:1d:d5:65:60:08:
7c:84:24:d6:56:8a:83:5c:b3:b9:64:2c:4f:a6:61:ac:40:f3:
59:55:22:7f:b6:fd:b0:62:67:84:b1:a5:42:1f:9c:9a:1b:01:
e8:4f:cb:b3:63:48:c5:7e:c3:5f:93:5f:6c:03:4f:c2:81:81:
c5:00:1c:b3:53:b6:f7:cf:0e:2c:d0:00:54:46:57:10:48:b6:
53:2b:66:4b:3f:8a:d8:e2:c6:c7:31:37:74:c7:21:91:fe:1e:
33:25:9c:75:c3:96:d8:82:05:57:d8:8b:e3:12:85:4f:91:ae:
55:8c:ee:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org