Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8cDD5q3N5ozBZxjjp29of6W_Irg.roa
File: 8cDD5q3N5ozBZxjjp29of6W_Irg.roa (raw, json)
Hash identifier: vpKDhxc6h9Osb47VO9XcKheobe/GBs5Vd1YMDU7YmME=
Subject key identifier: F1:C0:C3:E6:AD:CD:E6:8C:C1:67:18:E3:A7:6F:68:7F:A5:BF:22:B8
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DB8
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8cDD5q3N5ozBZxjjp29of6W_Irg.roa
Signing time: Mon 15 Jan 2024 21:30:23 +0000
ROA not before: Mon 15 Jan 2024 21:30:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3512 (0xdb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:30:23 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F1C0C3E6ADCDE68CC16718E3A76F687FA5BF22B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:06:a1:8b:d7:58:8d:08:b4:a7:c8:0c:a0:11:
3a:63:87:fb:94:49:dc:3c:d4:77:1e:75:00:ac:04:
7c:97:89:1a:d3:27:27:55:43:71:8a:6d:d9:ec:64:
86:f7:7d:8e:83:12:c4:9f:22:3e:07:5d:38:2b:31:
1d:32:12:28:5e:41:b0:3b:60:ab:73:bb:52:bf:a6:
a0:a3:45:e8:20:f6:19:e3:92:81:1d:f9:17:96:e9:
1d:52:cb:34:ff:08:84:55:f4:47:82:0f:04:c6:d1:
63:74:fd:30:45:9f:9a:28:df:da:ac:0b:94:d3:12:
de:82:d4:7a:d1:d6:9f:e0:03:dd:a5:b8:c4:54:b4:
d0:0e:d6:01:9b:0f:9e:a6:30:d2:25:9a:9f:87:0d:
b7:22:8e:ca:ac:28:a0:8e:93:6b:22:71:70:da:d7:
ff:8f:8a:1c:51:67:37:21:a7:18:05:a3:6f:d2:cd:
5a:32:21:54:29:8c:73:cf:ad:64:8d:b5:df:ae:c8:
eb:cd:13:87:7c:c8:19:34:46:f3:3d:c1:1c:d7:88:
84:23:7b:15:a8:c7:ff:8a:82:dc:c7:2d:20:49:5b:
48:36:90:22:59:53:f3:5e:46:a5:7e:11:e3:45:23:
8b:0d:3f:07:21:d8:af:c9:9a:61:b6:2e:95:3b:41:
95:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C0:C3:E6:AD:CD:E6:8C:C1:67:18:E3:A7:6F:68:7F:A5:BF:22:B8
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8cDD5q3N5ozBZxjjp29of6W_Irg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.108.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:a8:d9:04:71:12:a8:c5:fc:03:04:76:fb:c3:15:97:95:c0:
90:47:90:c7:79:18:b6:7d:f4:15:02:bd:0c:a0:61:54:49:4c:
21:6f:87:4d:16:97:c8:cf:79:37:13:52:dd:52:f5:cd:37:e9:
3c:bf:e9:90:89:bf:d0:1b:45:64:8e:8d:0b:94:61:1c:b8:24:
86:2d:11:73:9b:e3:5c:e2:b3:d3:04:19:de:dc:46:10:44:dc:
25:8e:a3:e2:b7:50:82:72:07:d2:ff:df:1f:51:b1:cf:bd:1c:
66:9d:c6:7a:7d:46:29:7a:02:0b:69:3e:02:99:7d:ff:f9:7c:
1e:c4:ae:26:29:98:56:46:d5:79:61:9c:df:4f:56:6e:a7:fb:
9f:92:01:bd:f1:b5:7d:a8:cd:a8:98:1a:37:63:9f:5f:6f:cb:
e9:12:f3:16:a0:ec:6b:04:d0:28:f1:58:e5:54:37:c4:e3:9d:
a7:56:9d:64:6b:90:85:cf:cc:5d:88:7d:15:a8:8e:5c:b2:6d:
ba:d8:41:a9:1c:f3:1a:fc:e3:85:bc:88:14:94:86:8e:7f:95:
1b:2b:29:be:ee:54:68:78:29:f3:38:e7:08:7c:92:ee:0c:01:
85:6c:94:50:a5:98:fb:9b:f2:ff:0e:78:2a:70:10:0e:b2:a3:
2b:fb:bf:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org