Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/LUI7dLN-axRaZSYmjlzQvmYc1XI.roa
File: LUI7dLN-axRaZSYmjlzQvmYc1XI.roa (raw, json)
Hash identifier: Yd5eZmlI9uYNXLQn7fl3st1F4RBCiDKyJLSiqy7BRgs=
Subject key identifier: 2D:42:3B:74:B3:7E:6B:14:5A:65:26:26:8E:5C:D0:BE:66:1C:D5:72
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C6A
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LUI7dLN-axRaZSYmjlzQvmYc1XI.roa
Signing time: Mon 15 Jan 2024 21:09:26 +0000
ROA not before: Mon 15 Jan 2024 21:09:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 203.79.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3178 (0xc6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:26 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2D423B74B37E6B145A6526268E5CD0BE661CD572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f5:5a:58:f7:f2:18:db:36:bd:1a:4e:f8:80:
14:36:16:99:e7:ca:bb:df:61:b4:a1:41:94:86:85:
f3:aa:f8:c7:74:ab:5e:33:75:f6:ce:a3:32:f8:1c:
60:51:ef:8f:3d:5e:ab:20:f5:e2:8e:4c:89:bd:21:
55:e2:6e:1e:22:4f:fb:b1:f8:ba:fd:ac:71:5e:00:
b4:14:65:5c:ab:f6:6f:da:e7:28:c3:df:89:90:03:
bb:0e:93:74:62:7a:ec:b9:00:fd:5e:3d:cf:ca:a8:
62:8d:e5:cf:75:f1:78:f8:c0:3c:49:ff:69:ab:1a:
54:08:3e:04:43:3d:44:9a:1f:3a:d2:6e:ef:86:a4:
b0:7e:64:15:10:be:90:0b:c4:a1:46:87:a9:08:16:
2e:a3:3b:5f:72:e4:51:88:ab:79:f1:f8:37:01:cf:
19:ea:d0:9c:74:33:57:c0:67:cd:3d:5e:41:8f:af:
e4:32:ee:de:de:23:02:6d:6b:40:62:c1:72:d2:39:
59:5d:6a:b1:6b:e1:b6:fa:6a:5c:e5:df:94:03:0a:
f9:30:e1:8d:e6:2a:d4:35:c3:4e:ea:f5:84:4c:8b:
68:c8:10:83:36:47:78:72:7f:68:55:f0:88:19:12:
38:18:3e:a7:e5:df:bc:f0:eb:ab:ec:fe:d5:6d:d0:
9b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:42:3B:74:B3:7E:6B:14:5A:65:26:26:8E:5C:D0:BE:66:1C:D5:72
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LUI7dLN-axRaZSYmjlzQvmYc1XI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.235.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ee:f1:88:4b:53:97:dd:9e:f5:5d:56:74:ba:b6:40:e9:1c:
ec:b0:d5:67:88:dd:5d:d0:a0:cc:4f:80:95:e0:79:e6:a4:19:
6e:a4:91:76:a2:4e:0e:23:6b:83:32:60:57:2b:34:e1:69:04:
60:2c:5f:df:d3:95:8b:34:d9:57:d9:44:90:17:c8:66:3a:c9:
12:b8:43:44:14:3d:23:31:51:33:78:90:57:85:cc:27:52:c5:
b6:c2:f2:ca:c7:92:17:39:64:3c:71:14:47:2e:cb:e7:6d:85:
11:4c:34:fc:0f:dd:25:97:ff:9a:26:ab:68:f6:79:55:c7:20:
a9:7f:96:02:0a:2f:79:d0:ff:c6:65:bd:0b:9e:48:49:ca:07:
f1:e5:2b:c1:e3:4e:8f:97:69:a6:54:53:2d:63:7d:18:dc:8b:
a1:63:83:b2:d0:69:a0:0a:20:11:03:70:ab:91:81:5a:72:17:
4f:18:f0:02:3a:88:f5:ef:88:f1:ad:df:be:a9:17:a8:b0:5d:
a2:4e:c0:2c:41:b1:39:f2:12:d2:43:89:f8:2c:aa:c4:0e:87:
52:26:c3:6f:21:13:9e:41:db:66:3f:8b:94:68:ce:6e:5a:3c:
b5:22:b2:37:8a:2b:17:59:69:32:70:5d:b9:a2:3f:11:55:02:
f9:4d:57:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org