Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Bi0uuubn39mbri1NI-vcU1C3e1w.roa
File: Bi0uuubn39mbri1NI-vcU1C3e1w.roa (raw, json)
Hash identifier: 3NJAf5Sc7vGcIDs2vKQI2tzi4NPrLppMnKShd+K7Qxc=
Subject key identifier: 06:2D:2E:BA:E6:E7:DF:D9:9B:AE:2D:4D:23:EB:DC:53:50:B7:7B:5C
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CB8
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Bi0uuubn39mbri1NI-vcU1C3e1w.roa
Signing time: Mon 15 Jan 2024 21:10:51 +0000
ROA not before: Mon 15 Jan 2024 21:10:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.202.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3256 (0xcb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:10:51 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=062D2EBAE6E7DFD99BAE2D4D23EBDC5350B77B5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8d:88:dc:7e:4e:88:40:73:31:86:e7:07:2f:
d5:dd:2f:a9:20:ba:de:12:b9:78:83:d6:30:2e:7a:
ce:dd:d5:ad:54:60:86:38:31:37:d6:1c:b0:52:0d:
40:51:97:25:22:83:13:57:26:8c:da:70:fa:90:da:
d1:28:8c:21:f0:09:09:0f:f1:bc:3d:fa:14:35:1e:
c1:f6:db:70:7c:c9:db:21:c2:30:62:85:88:a6:81:
f7:63:2a:e3:21:a9:30:b7:c4:45:57:d7:a7:2d:2c:
dd:20:40:a6:7d:7c:4e:09:9f:c2:db:02:bb:84:7a:
87:4c:2e:d3:af:44:ee:15:c7:5e:03:89:a2:77:11:
4d:6d:b5:da:a0:3b:ad:72:e3:33:f6:f9:4e:93:4b:
3d:be:c1:79:de:c4:81:68:18:22:bb:f9:14:aa:cb:
69:02:5e:b0:73:de:c6:70:c9:b9:05:01:3a:c0:44:
83:f6:71:3c:1a:80:70:95:01:38:f4:d9:42:4c:c4:
91:1b:d0:08:3c:dc:f5:49:95:0d:a5:cd:06:69:77:
ae:d6:a1:15:41:c4:2a:03:d1:24:95:36:56:51:e5:
bf:8b:8f:5a:92:1c:b6:59:ec:46:ec:df:af:ef:5a:
99:ba:e8:7d:28:ad:f4:57:2c:9a:b4:71:5b:8e:d9:
bd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2D:2E:BA:E6:E7:DF:D9:9B:AE:2D:4D:23:EB:DC:53:50:B7:7B:5C
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Bi0uuubn39mbri1NI-vcU1C3e1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
52:09:ce:27:cd:7b:ec:bd:ea:b9:03:cf:7e:ba:f9:71:df:48:
c9:71:27:fd:65:40:8f:8b:a4:c9:3c:f4:e1:21:74:3a:e8:06:
09:db:aa:02:ea:78:a5:0d:30:41:b5:34:8a:12:70:74:49:cd:
cc:af:8a:c8:9e:8a:f3:05:54:d8:29:f9:c5:e2:b8:52:0f:8e:
58:aa:c5:38:e5:a1:94:cb:34:0f:d8:f0:c2:05:2e:16:2b:36:
bf:59:7a:33:19:d8:b3:ee:f0:98:16:9d:5c:21:32:a8:9c:f3:
8b:85:e3:f2:b5:7d:77:55:31:4b:f1:cc:bc:30:3f:ef:e9:ef:
f7:de:e3:46:80:5d:64:db:99:5f:f3:02:9d:6e:78:63:79:48:
47:cb:ea:68:ee:89:54:32:af:a6:21:cf:76:66:b8:29:56:f3:
d6:6b:47:30:00:39:76:68:ca:d7:ce:79:5d:c1:c5:e3:bd:b0:
ca:6e:87:3a:b0:e4:0a:4c:40:7c:6b:68:bf:35:e4:aa:20:d3:
8c:cc:37:78:4b:86:c7:e3:6c:61:48:13:7b:36:0a:8f:cc:23:
11:a5:2f:b2:1b:27:ce:2a:b5:fe:fe:9b:6c:28:30:66:70:83:
aa:20:a9:7a:ce:88:1c:12:73:ec:36:48:a9:72:23:9e:8f:97:
a1:5a:31:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org