Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/5sSAcQ9SFmerb5auQjdMemBOXVw.roa
File: 5sSAcQ9SFmerb5auQjdMemBOXVw.roa (raw, json)
Hash identifier: MMz5Sm2bU5ZF7LZtqPMSD8a/IaC/TvNuN3cj3qah/K0=
Subject key identifier: E6:C4:80:71:0F:52:16:67:AB:6F:96:AE:42:37:4C:7A:60:4E:5D:5C
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C64
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5sSAcQ9SFmerb5auQjdMemBOXVw.roa
Signing time: Mon 15 Jan 2024 21:09:20 +0000
ROA not before: Mon 15 Jan 2024 21:09:20 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 203.79.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3172 (0xc64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:20 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E6C480710F521667AB6F96AE42374C7A604E5D5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:06:b3:be:49:8b:18:b3:e0:58:d0:eb:21:20:
20:7a:3f:fd:ac:7f:31:df:cf:90:9a:ac:7d:6f:41:
38:51:c9:f3:22:51:9c:40:95:ea:58:74:a9:31:83:
e7:e1:6d:d7:4b:b6:35:71:28:b6:c2:b7:df:f7:53:
7f:f3:82:e9:f2:c9:e8:66:9c:1c:56:6b:1d:d1:7a:
66:39:50:2c:9f:52:25:86:9e:5c:de:b2:ad:4d:60:
09:db:9d:8b:e5:61:00:86:d9:78:e6:2e:f0:21:c5:
88:77:47:0e:ab:81:ae:85:2d:27:ca:a5:0f:29:54:
2c:9d:8e:df:86:ec:7f:41:45:6c:bb:93:fd:95:0a:
e7:62:9f:1a:bf:84:ac:42:f7:df:3d:d4:a3:5b:ed:
f9:fb:1e:70:40:ef:08:d6:23:9c:11:71:64:a5:97:
3a:75:8e:0e:0f:b4:74:32:ba:ad:76:3c:d0:fc:3c:
4c:eb:ba:bd:57:43:ba:96:07:49:db:8e:4c:91:a0:
d3:37:67:a5:a1:d7:98:79:92:5a:68:49:dc:7d:db:
2f:0c:8a:c3:a1:e2:42:b3:9c:90:30:7f:7e:1c:d9:
da:3f:10:ec:ff:3e:7d:67:b4:d4:bb:d5:e7:18:56:
56:47:5b:b3:fb:4d:a6:78:cc:30:35:66:90:f6:ed:
6b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C4:80:71:0F:52:16:67:AB:6F:96:AE:42:37:4C:7A:60:4E:5D:5C
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5sSAcQ9SFmerb5auQjdMemBOXVw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.220.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:23:e5:18:1b:e6:1d:0e:09:8c:08:09:55:6e:2a:77:cc:e1:
95:4c:46:a5:9d:cc:f1:ef:e4:58:72:08:1e:03:57:ff:8e:84:
21:03:68:8c:8f:39:44:2e:8a:63:34:6e:db:15:11:7d:52:b5:
d9:b5:d7:f8:6b:47:df:d8:d7:66:c8:ac:4d:55:53:4a:ee:61:
46:63:f6:ab:8b:2e:7d:da:ee:83:eb:ac:04:3a:44:0f:36:70:
6c:0b:9a:8b:24:5f:1f:eb:70:be:22:2b:e4:58:8a:58:d7:a4:
6f:03:0d:0b:26:54:ca:ad:1e:27:54:f8:6e:f2:1c:9a:ba:a4:
f7:bf:68:bf:8a:d8:44:13:33:be:30:37:4e:38:f1:00:71:56:
a3:7b:25:75:29:4c:8a:97:1e:52:65:48:cf:cb:e6:06:17:3d:
78:48:6a:74:06:7f:37:4b:40:75:29:b5:3d:c8:56:c7:75:a7:
49:7e:43:14:05:37:bb:0b:93:c9:71:d1:5b:28:69:1b:6f:83:
ce:f1:39:30:29:42:59:48:24:a4:13:fd:f3:2c:05:d5:6a:a9:
e9:49:af:b2:5d:a3:94:17:06:e1:7a:c6:d8:2f:3f:cf:a3:3a:
89:94:ad:d2:93:b3:54:21:11:0a:a2:b8:68:79:ce:8a:53:eb:
22:30:2d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org