Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/AKGxtVDRxYqrWfRlEpACNa4hOdI.roa
File: AKGxtVDRxYqrWfRlEpACNa4hOdI.roa (raw, json)
Hash identifier: WUY2u/OkeIMSF80vEeSI5gRWAsRkPvj/S4hkrHbdmN8=
Subject key identifier: 00:A1:B1:B5:50:D1:C5:8A:AB:59:F4:65:12:90:02:35:AE:21:39:D2
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DD0
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AKGxtVDRxYqrWfRlEpACNa4hOdI.roa
Signing time: Mon 15 Jan 2024 21:34:46 +0000
ROA not before: Mon 15 Jan 2024 21:34:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.218.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3536 (0xdd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:34:46 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=00A1B1B550D1C58AAB59F46512900235AE2139D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0a:47:a1:76:e3:24:5a:92:8c:d2:4f:8c:53:
1a:45:2e:41:67:8a:78:64:e9:46:c1:86:28:77:56:
f7:37:b6:16:e1:d8:62:97:f4:b2:c7:6f:6c:b6:64:
2d:83:3f:eb:9c:b8:df:f3:de:66:d3:f3:49:d9:91:
14:8d:9e:e9:2b:33:61:e5:ef:90:21:54:b6:3a:d0:
76:c3:87:0e:8e:15:b2:77:13:2a:71:03:8d:3c:dd:
ed:95:3a:a7:56:91:60:3e:79:af:3c:ae:99:8d:0a:
ed:ed:36:58:29:3d:8c:d7:fa:d7:1d:a0:db:fe:e3:
b6:eb:1c:01:29:95:ea:75:de:b6:90:c0:fb:3e:b4:
93:d3:ff:75:7a:1a:00:68:d4:ae:92:cf:60:fb:bc:
bb:58:58:b0:14:06:1d:e2:f1:69:3c:9c:91:6b:03:
92:61:75:4a:7a:74:82:23:77:e7:7c:be:1c:25:e2:
9e:6a:d2:3a:fc:8f:c3:8a:b0:e5:26:12:aa:0e:a4:
01:39:24:4e:68:05:8a:2e:a7:8a:d6:12:ad:d1:3b:
13:88:3f:e8:cf:05:77:be:cc:28:44:77:32:6d:ee:
76:fe:20:bf:2f:38:57:f3:08:25:6e:91:05:4b:45:
07:17:f6:5e:1a:ed:79:88:58:1a:5d:fa:80:55:85:
5f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A1:B1:B5:50:D1:C5:8A:AB:59:F4:65:12:90:02:35:AE:21:39:D2
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AKGxtVDRxYqrWfRlEpACNa4hOdI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/16
Signature Algorithm: sha256WithRSAEncryption
73:26:68:42:d3:2a:31:d6:ea:8b:d3:d7:55:a8:4c:46:a1:fd:
a9:12:b4:11:a6:a1:03:92:75:09:73:3b:8d:96:48:a2:03:08:
68:f0:4e:8d:04:bb:76:4d:93:13:78:bc:c8:b3:64:8c:3e:8f:
1f:8e:40:42:2c:42:3d:9f:c6:ca:7a:3c:10:5d:45:1d:de:07:
cf:21:0f:03:a1:d1:2d:0c:26:3b:a3:66:04:f8:26:55:f1:45:
81:cc:6f:9e:62:28:90:43:a6:56:89:5f:da:49:e0:c6:45:53:
30:b0:d2:de:0b:87:6f:91:99:31:c6:ff:ac:a8:81:64:71:ce:
4a:31:40:4d:25:c4:7b:00:96:81:0b:85:0d:e6:a4:79:4a:49:
57:03:40:c3:4a:22:18:a7:4c:0e:57:a8:28:59:a5:60:c0:88:
58:b0:84:a3:55:f4:e1:eb:2c:a3:32:ac:77:fc:d5:4b:18:a3:
f6:2d:c3:c4:02:a3:62:5d:e6:11:37:dd:67:15:b8:f5:88:0f:
a5:5e:f5:aa:c3:7b:55:ad:40:39:a0:f5:7d:f9:bb:85:70:64:
82:5f:12:6e:eb:18:92:d5:05:a6:94:77:ba:f3:fb:11:dd:37:
20:e5:47:19:4b:f3:4d:61:91:81:85:4b:03:98:76:87:b5:12:
97:68:31:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org