Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa
File: 5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa (raw, json)
Hash identifier: /DCh3SJWiZrN6YAUj1eVX4T+d1bIrhP0v4DGWVlvKgg=
Subject key identifier: E6:54:C6:35:AD:D6:44:CF:2F:41:E2:3D:9D:4B:72:95:63:50:67:A4
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C76
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa
Signing time: Mon 15 Jan 2024 21:09:38 +0000
ROA not before: Mon 15 Jan 2024 21:09:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.200.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3190 (0xc76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:38 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E654C635ADD644CF2F41E23D9D4B7295635067A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c4:24:48:14:f7:ce:aa:78:40:3f:65:3d:df:
df:a3:61:70:87:2b:97:87:a1:0e:04:c2:a1:b7:a5:
5b:3d:8d:93:5d:34:64:e0:4f:55:1d:f2:08:20:1a:
4a:33:10:99:ad:e4:38:c9:e4:0a:7d:6f:fd:d6:08:
6c:52:e4:2f:e7:11:42:59:69:5f:82:2f:92:91:96:
eb:e1:05:59:09:bc:28:31:53:06:d9:91:2b:fd:6f:
50:9b:16:7e:67:f5:5d:ce:8c:08:36:d5:41:dd:e6:
2f:e0:c4:72:33:5a:01:c9:22:42:01:a4:ea:89:e5:
56:77:ea:0b:7e:cc:dc:f3:a6:fd:03:55:23:99:49:
2c:8a:41:b0:9b:19:af:20:06:a6:a6:35:a1:73:a7:
5f:8e:94:c0:b1:cb:33:a7:e9:d3:0b:2b:b9:7e:4d:
43:6a:69:b2:d6:0f:b2:ba:9d:31:25:0d:23:e2:f4:
9f:81:b4:02:99:bb:3c:ba:f4:c3:0c:c3:fe:fd:9c:
a0:da:aa:da:35:cb:20:7b:04:f3:61:9d:f1:fe:f0:
a6:c1:91:b4:0e:1d:71:f6:2e:4f:ce:77:5f:5a:94:
c6:f0:84:54:de:47:cc:85:d4:dd:d6:6a:9e:71:98:
f3:80:ba:36:23:86:36:ec:05:9f:05:41:be:4a:f2:
c5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:54:C6:35:AD:D6:44:CF:2F:41:E2:3D:9D:4B:72:95:63:50:67:A4
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.4.0/22
Signature Algorithm: sha256WithRSAEncryption
54:59:f3:f9:4f:1c:fa:d3:43:d9:50:26:75:e6:23:77:34:03:
99:e7:c1:6f:e7:c9:d6:85:6e:0c:85:db:cb:e1:a2:3f:3b:16:
e8:86:7c:8f:9c:b1:a8:96:90:0d:ba:a6:86:9a:bf:05:02:4e:
59:a3:86:ca:58:21:f8:01:d3:fb:aa:fc:16:85:50:b9:a4:0b:
94:71:47:fe:ae:27:5e:45:34:53:1a:0b:06:5d:4a:14:3c:79:
f7:5e:fa:4c:33:48:9a:f9:4d:cb:9d:4c:05:54:83:e0:d5:ef:
e4:45:52:c5:ec:88:ef:d1:d0:fe:9a:8f:22:88:04:0d:cf:ed:
38:4f:c7:ae:d9:0d:42:63:dd:d9:a7:d3:bc:dc:c6:a7:13:af:
d2:a3:45:4e:5a:cd:1b:f2:aa:79:0d:28:23:f6:c0:b5:e8:c0:
01:f3:d2:ba:f0:a4:a1:37:a0:a3:d8:6f:0c:68:d9:fc:ab:80:
0b:db:ab:08:87:63:f8:98:25:ea:68:26:88:62:71:dd:55:27:
3f:3a:2a:36:02:64:32:fc:a9:e7:41:b3:99:5f:6a:93:e1:6c:
c1:6f:8f:f7:60:cf:85:03:1f:84:5e:02:5d:2b:3f:1a:b0:23:
fb:3f:3b:05:69:1e:e9:79:8e:9f:80:fb:ba:48:04:9a:ad:da:
48:49:30:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org