Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/88fUDKvIm9QsRObav0GyN71ISCA.roa
File: 88fUDKvIm9QsRObav0GyN71ISCA.roa (raw, json)
Hash identifier: +mxIzPfzEvLl1I72+CfokOhyQ/VHHDdf6w9irnBzJvk=
Subject key identifier: F3:C7:D4:0C:AB:C8:9B:D4:2C:44:E6:DA:BF:41:B2:37:BD:48:48:20
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CD8
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/88fUDKvIm9QsRObav0GyN71ISCA.roa
Signing time: Mon 15 Jan 2024 21:11:28 +0000
ROA not before: Mon 15 Jan 2024 21:11:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.63.192.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3288 (0xcd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:11:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F3C7D40CABC89BD42C44E6DABF41B237BD484820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c7:73:c7:c5:f7:2b:7a:66:7e:c2:51:2a:02:
c6:12:65:49:10:76:b3:e0:fb:12:28:16:d6:88:0b:
90:b8:c4:bd:02:6b:d8:b5:19:de:25:af:dd:1e:41:
91:b5:b0:84:08:b1:67:ab:f2:e8:24:03:4b:08:4e:
62:2e:17:cd:63:8a:f7:31:e7:da:9e:8a:ae:e1:c6:
10:02:a6:f8:eb:f4:ae:dd:04:e0:f9:56:c5:4b:0b:
da:16:3e:d5:3e:eb:30:a3:e6:45:fe:f5:cf:02:77:
05:2c:35:00:73:20:f3:f1:7a:f0:ca:ed:51:d9:60:
6e:32:2a:2f:68:a9:65:87:ae:23:09:b3:be:80:9c:
90:00:04:08:b7:40:21:6c:cf:7f:9d:13:14:8c:1c:
72:66:0c:f6:24:c8:85:4c:db:fc:7b:c1:88:01:7d:
40:b7:78:85:0c:b1:e9:ab:58:af:fd:e9:b4:48:05:
e5:77:c9:1d:3e:30:f2:8c:83:fe:8d:5d:e2:ae:2e:
a0:78:d0:f2:b8:02:5c:d1:7d:c8:01:18:62:4a:5c:
06:e9:c9:3b:48:ca:f6:71:25:44:f4:d9:26:6a:fa:
2b:72:98:30:1c:be:26:f2:2b:09:f7:b7:78:85:dc:
a4:07:65:08:b3:1c:f4:24:b1:13:f3:c8:de:2c:ca:
87:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C7:D4:0C:AB:C8:9B:D4:2C:44:E6:DA:BF:41:B2:37:BD:48:48:20
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/88fUDKvIm9QsRObav0GyN71ISCA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/21
Signature Algorithm: sha256WithRSAEncryption
22:3e:e1:e8:bf:a9:51:7d:b5:87:41:7d:3e:92:fc:66:29:49:
2a:ef:86:73:43:9a:c2:76:67:1c:8c:8f:c4:05:13:97:fb:f5:
3a:74:47:16:b3:d6:f2:18:3e:49:ee:ff:e7:b2:ed:df:e1:52:
24:a9:db:00:e4:2c:0e:d6:bb:48:26:a0:b2:14:2b:57:fa:8e:
16:85:ce:6e:90:d1:81:fb:43:b2:b4:cd:22:34:5f:d6:cf:c3:
1f:be:50:cb:26:04:20:b6:1c:ca:3e:63:4b:c8:79:d2:db:f7:
2a:59:03:4d:6f:21:08:c2:18:46:6c:5f:3d:83:ae:9f:ec:81:
63:64:29:bf:78:4e:ad:1f:e1:d5:c4:b4:49:23:10:3c:a0:43:
0f:64:9d:50:9b:59:b0:d8:c0:e0:43:6c:d0:3b:e5:b0:cc:bb:
b9:1d:0f:e8:da:c1:4e:b9:f2:4e:2b:ca:e1:a9:82:03:a1:af:
84:1f:2f:ba:50:a3:78:c9:47:db:2b:93:25:61:f5:85:99:50:
b5:a6:33:79:c8:84:79:5c:4f:45:37:2c:de:de:dc:6d:53:15:
df:81:dc:30:14:4b:b9:1b:2a:21:5c:2e:c2:d2:88:7a:3e:e9:
92:fd:03:62:ff:be:3e:b9:10:3b:c9:97:6c:33:60:b4:fe:6a:
1f:7d:55:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org