Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/6D1ceYFVIy7yAstauqqlz7tzywU.roa
File: 6D1ceYFVIy7yAstauqqlz7tzywU.roa (raw, json)
Hash identifier: fPgDE/EIdY3hKwzZNWz8W5OQUu5h4jM2bbSHGunt43g=
Subject key identifier: E8:3D:5C:79:81:55:23:2E:F2:02:CB:5A:BA:AA:A5:CF:BB:73:CB:05
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C30
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6D1ceYFVIy7yAstauqqlz7tzywU.roa
Signing time: Mon 15 Jan 2024 21:08:28 +0000
ROA not before: Mon 15 Jan 2024 21:08:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 60.244.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3120 (0xc30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:08:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E83D5C798155232EF202CB5ABAAAA5CFBB73CB05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4d:e5:23:eb:5d:6c:2e:09:8f:70:80:9f:f4:
62:93:f4:e6:78:13:68:58:2e:06:66:6b:18:bf:f7:
09:b5:38:7a:21:e8:20:5d:f6:fd:c0:0f:26:7a:35:
09:4f:e8:23:ef:ac:26:b8:6a:43:0b:64:d1:75:73:
0e:9f:cd:15:9f:3c:86:8a:9c:ff:ac:c5:b0:cc:91:
f8:69:34:0a:39:6a:ac:5c:4e:8d:57:4d:81:aa:7d:
d4:84:39:e3:d6:a6:8a:e8:1c:5e:24:1f:70:31:1b:
d3:e7:55:8e:2f:85:9f:8a:3b:b6:a8:cb:fa:4a:9a:
1a:8b:3a:3f:29:00:c8:82:4d:a8:fb:2e:16:15:b4:
5d:3e:c8:c7:c6:c3:98:79:34:7d:d5:c4:63:e4:b0:
fc:7b:b7:29:c2:05:b1:d2:53:3a:e3:64:96:fa:6b:
a2:a2:26:1e:44:e5:d7:3e:c4:9e:c6:77:17:a0:d1:
33:ef:5d:42:db:d2:07:f8:6d:a7:2d:dd:4f:db:47:
e0:79:52:ea:7e:b7:cb:d8:07:e0:63:17:c6:b4:6f:
f1:65:48:be:eb:6d:30:04:8e:43:f5:87:78:d1:94:
f0:19:ec:96:f0:c3:17:ab:a9:c9:73:a0:d1:75:e6:
c4:72:1c:22:e3:33:08:8e:b1:2f:3a:92:dd:52:9a:
eb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3D:5C:79:81:55:23:2E:F2:02:CB:5A:BA:AA:A5:CF:BB:73:CB:05
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6D1ceYFVIy7yAstauqqlz7tzywU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
4d:f9:fe:9a:22:b1:f8:03:3e:4b:14:89:71:13:1e:b1:71:2c:
05:70:29:0f:e7:32:34:f7:a9:ce:42:2f:64:a9:df:ae:ac:3b:
91:c6:48:d3:d1:86:12:92:09:d3:4a:30:ee:cd:57:a4:51:5c:
bc:a1:43:15:bf:15:30:28:60:4d:45:4b:08:88:dd:30:01:7e:
43:19:b5:96:1e:9c:44:fe:d6:f0:c0:de:73:05:cf:ba:26:16:
87:33:80:a0:f9:17:29:ba:e7:13:39:a5:e8:a7:7f:ff:1f:28:
97:ac:79:a1:2e:ea:d6:34:6d:65:ea:9c:a8:a9:9b:23:e7:98:
e8:79:df:d4:4a:63:86:23:2a:49:04:8c:7d:26:ce:af:02:fb:
28:be:fd:e8:e7:36:fa:bf:d3:f9:1c:d9:55:9a:68:86:7f:93:
f4:e8:6d:73:f4:24:50:a5:7d:2e:22:64:97:52:0b:4f:79:08:
7e:d0:05:52:a0:9e:09:c9:22:21:d4:20:8e:95:8b:98:ef:54:
e4:85:d8:1e:fe:11:60:8d:ca:9b:22:0d:1d:ab:65:73:d4:d0:
40:b0:7d:4a:e4:0b:67:3b:8e:db:dc:5b:80:39:81:d0:2a:c5:
6b:5e:37:16:32:90:9c:a1:23:78:e5:da:50:4f:ee:26:49:16:
ea:e1:b6:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org