Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Hej3tbr-VP3_0aCW6X40uU4fqW8.roa
File: Hej3tbr-VP3_0aCW6X40uU4fqW8.roa (raw, json)
Hash identifier: FADAoqTfOCY9OufOSRFtHed/aWiQYJRhV6uyQZZ4WeM=
Subject key identifier: 1D:E8:F7:B5:BA:FE:54:FD:FF:D1:A0:96:E9:7E:34:B9:4E:1F:A9:6F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C3E
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Hej3tbr-VP3_0aCW6X40uU4fqW8.roa
Signing time: Mon 15 Jan 2024 21:08:40 +0000
ROA not before: Mon 15 Jan 2024 21:08:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.219.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3134 (0xc3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:08:40 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1DE8F7B5BAFE54FDFFD1A096E97E34B94E1FA96F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:df:92:a7:85:f9:0c:81:22:e3:fa:e9:40:6c:
7f:c5:0b:91:78:ed:48:1c:e3:c3:e6:83:be:a8:90:
2f:de:52:61:e8:4c:90:3c:06:7a:af:02:72:e7:e5:
ab:3b:75:a2:e5:36:87:4b:02:51:4c:f7:c5:a8:57:
46:bd:1c:49:86:01:fe:68:7d:82:66:11:70:06:eb:
b8:3d:05:7b:29:d9:47:38:ed:20:7f:cd:02:6a:ba:
27:d7:74:bb:80:bd:6c:60:90:71:06:af:73:58:97:
c7:b9:fd:7c:d9:9f:04:3c:0d:15:b1:2f:97:33:65:
2e:91:7f:42:b3:2d:b6:7f:b3:5a:15:13:67:af:c6:
0a:fb:43:fd:7b:8e:8b:1b:7a:4d:68:b4:30:71:09:
45:3d:c3:32:14:b4:63:44:22:3e:0c:3b:2d:25:9f:
33:7f:07:1b:63:61:49:32:c7:ad:d8:03:b9:07:d1:
0b:83:15:7c:39:fe:5a:55:ac:80:1c:1d:5d:9a:48:
6f:53:6e:dd:11:82:b3:d7:88:c2:90:bc:b4:45:25:
01:b1:67:8e:1b:01:f2:32:0b:97:90:32:56:1d:37:
9a:ab:c9:7d:5d:7d:85:30:f9:71:fa:eb:4c:96:db:
e9:04:70:ce:96:c2:69:64:9f:2c:ea:ce:79:5f:66:
2c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E8:F7:B5:BA:FE:54:FD:FF:D1:A0:96:E9:7E:34:B9:4E:1F:A9:6F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Hej3tbr-VP3_0aCW6X40uU4fqW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a3:15:02:a6:a9:7f:c9:bc:c2:9e:ad:7b:cf:65:32:30:de:e0:
5a:6c:ff:7d:07:87:b8:12:85:b4:a3:85:40:a6:c0:b8:80:6e:
a2:ab:66:3d:53:25:80:94:ab:99:e5:1a:b2:13:79:91:09:95:
83:04:55:14:df:f4:5f:b1:af:ba:1e:bb:ff:3f:f9:bc:01:16:
e5:ab:ba:e9:5d:18:a5:2b:95:85:c4:65:64:9b:e5:31:ce:a8:
fc:04:a0:8b:80:da:39:e3:1d:95:50:0a:c6:2d:4e:b9:18:d5:
58:23:bb:81:72:0a:09:58:5b:35:50:cf:89:99:cf:37:5b:bf:
ee:e2:bc:21:ae:7b:45:3e:c8:62:3b:d5:31:42:c1:8f:2d:42:
62:df:ba:ef:40:9f:25:70:61:57:79:9d:79:cc:ed:58:30:e6:
a4:73:c4:9f:fa:63:b3:92:4b:df:a9:fa:5a:94:d0:db:a4:01:
92:9f:cf:14:e9:39:da:6e:1f:7e:c6:e7:1c:98:9e:7d:5c:39:
0a:70:88:1f:46:f3:f4:92:e8:b1:98:74:d2:8c:3c:f8:d7:9d:
91:79:f9:bf:5f:1b:7e:78:d7:4f:e1:9d:65:b9:b6:d6:34:14:
c0:91:be:7f:7e:39:a8:eb:3d:54:13:ff:e1:67:79:18:75:0e:
cf:ce:d0:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org