Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/NsYfuCMgfYaYTgu9olqf5M2KLp8.roa
File: NsYfuCMgfYaYTgu9olqf5M2KLp8.roa (raw, json)
Hash identifier: W8mj5ZT5vAWzX2si1GICe4Tu2iDnE580aF5Wikx4FAI=
Subject key identifier: 36:C6:1F:B8:23:20:7D:86:98:4E:0B:BD:A2:5A:9F:E4:CD:8A:2E:9F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BA7
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NsYfuCMgfYaYTgu9olqf5M2KLp8.roa
Signing time: Fri 01 Sep 2023 08:50:50 +0000
ROA not before: Fri 01 Sep 2023 08:50:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18412
IP address blocks: 2401:e180:8800::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2983 (0xba7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:50 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=36C61FB823207D86984E0BBDA25A9FE4CD8A2E9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:69:60:74:66:7b:23:8e:43:89:b9:6e:91:d4:
03:cf:59:54:3e:da:1b:40:df:3e:d5:3b:3c:dd:62:
54:5f:97:bc:db:6c:f4:f8:34:a6:fd:1b:de:47:8f:
62:fc:b4:5c:c0:f1:81:9d:03:54:18:64:50:45:e5:
bf:35:67:5b:06:27:26:75:7a:9c:98:82:1e:80:30:
57:02:71:e6:e5:6a:ec:37:c4:c0:0f:ee:d6:94:c3:
3e:ec:64:0d:a3:b5:47:86:9e:bd:53:86:e4:0f:8b:
da:86:dc:8d:1a:d8:48:93:7b:3e:2d:11:44:08:fc:
a9:86:9d:32:c8:12:08:4f:8f:97:74:43:f2:69:dc:
03:3a:53:2f:16:1e:5c:1d:1f:bf:6e:10:8d:27:d1:
21:33:f1:ba:0a:bc:4a:9e:ff:9d:dc:7a:57:84:4d:
f9:d6:c9:1d:70:e1:37:06:8f:62:06:02:3c:26:5a:
ec:42:b9:f7:92:b0:b8:26:c8:85:e7:4d:53:3c:fd:
21:23:63:28:4f:4a:3e:5f:a3:c8:bb:fb:6d:29:8b:
05:a0:21:40:fc:41:27:cf:83:b3:f9:e3:70:e6:42:
2a:ce:2e:47:52:47:fd:65:26:8a:84:0c:06:d1:86:
aa:73:38:3f:07:fe:e6:1a:98:c5:c4:2c:fd:29:c1:
5a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C6:1F:B8:23:20:7D:86:98:4E:0B:BD:A2:5A:9F:E4:CD:8A:2E:9F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NsYfuCMgfYaYTgu9olqf5M2KLp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180:8800::/44
Signature Algorithm: sha256WithRSAEncryption
1e:e7:1c:03:81:1e:f8:e7:e2:ca:cb:de:13:5e:64:f8:42:a4:
32:57:c0:94:e1:8f:4c:38:70:57:cf:78:80:0f:f4:d3:48:30:
d8:38:ad:8c:06:b0:5a:b3:0a:0e:72:8e:6f:07:47:0f:00:27:
8f:f2:ce:08:cb:ac:f8:48:12:c6:fc:99:d9:c9:5c:20:59:df:
95:fa:b4:41:07:e2:d5:90:e9:1e:7f:75:b1:41:47:93:44:ed:
cd:a8:09:0e:43:09:0c:bf:ee:45:64:47:2a:87:9d:11:e1:8a:
aa:9f:c9:78:f2:00:75:bf:3c:9c:9a:49:c9:7e:0e:b0:2e:d1:
eb:1a:eb:53:93:7b:68:c1:fb:65:19:8d:e7:68:80:28:16:3b:
76:08:5e:f3:af:05:3c:4a:bc:a5:71:0b:07:bd:79:e2:1d:e8:
1e:74:42:4e:cf:07:eb:1c:4f:20:50:31:4b:aa:22:08:55:31:
3d:55:be:ca:39:53:b1:cd:5d:34:b0:1e:27:ee:ad:cd:c0:d6:
98:00:f3:6f:07:fd:c3:3f:73:d6:09:94:cd:14:b0:42:d0:42:
e3:ff:62:5b:16:4d:1b:1c:ed:01:4b:bb:41:19:5d:1c:12:2e:
6d:f0:ba:3e:c3:c1:e0:69:b4:48:1d:10:fc:85:70:12:4e:89:
1c:f2:a4:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org