Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/O_2Ps_6vS3-at-xLvnRbuoxtj6c.roa
File: O_2Ps_6vS3-at-xLvnRbuoxtj6c.roa (raw, json)
Hash identifier: lN3WwnzSLrFQCKaew6HRIzcUFtL29YkIUvc5vTOc82w=
Subject key identifier: 3B:FD:8F:B3:FE:AF:4B:7F:9A:B7:EC:4B:BE:74:5B:BA:8C:6D:8F:A7
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CBE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/O_2Ps_6vS3-at-xLvnRbuoxtj6c.roa
Signing time: Mon 15 Jan 2024 21:10:58 +0000
ROA not before: Mon 15 Jan 2024 21:10:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.202.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3262 (0xcbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:10:58 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3BFD8FB3FEAF4B7F9AB7EC4BBE745BBA8C6D8FA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:91:30:96:a1:68:3a:c5:a9:dd:e2:cd:4a:5d:
4c:43:45:34:a5:12:9e:ab:00:ae:c3:34:25:06:bc:
d4:eb:52:70:b2:63:ae:37:c2:e4:9d:27:17:b1:0e:
4d:1f:1e:62:fb:86:2f:2e:fc:72:8d:48:d5:95:2a:
88:b6:a1:b6:36:3a:5b:ea:5b:d1:16:7c:ac:e7:51:
18:1c:f2:7b:46:75:c7:39:f4:c3:46:5a:92:5a:af:
8f:eb:41:90:50:af:c1:cf:56:e4:ad:0c:6b:de:69:
8e:55:3c:30:ae:9d:7c:09:17:88:56:dc:59:02:7c:
ef:c9:aa:e0:0c:00:f7:47:60:1e:53:6e:d0:5d:12:
9b:48:75:eb:31:4e:3d:96:5b:57:53:59:c1:ad:d8:
8a:b3:d1:b9:ab:78:8b:65:fc:e3:a9:ae:68:d1:0f:
78:32:ee:9d:81:e1:60:ca:28:1c:c5:84:56:1b:99:
16:7f:23:21:62:1f:c9:89:4a:3f:40:e5:f1:dd:03:
97:2d:84:2e:69:49:17:f5:f2:84:a4:cb:50:5d:8e:
80:0e:bd:b0:5a:20:4c:ff:82:ec:ca:f2:5c:78:fa:
16:fd:a5:ec:b8:11:5a:d8:7c:47:47:79:8e:76:6f:
9e:aa:46:60:e2:5a:eb:0f:b7:2c:71:51:8c:af:45:
8c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:FD:8F:B3:FE:AF:4B:7F:9A:B7:EC:4B:BE:74:5B:BA:8C:6D:8F:A7
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/O_2Ps_6vS3-at-xLvnRbuoxtj6c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/18
Signature Algorithm: sha256WithRSAEncryption
cd:97:ba:0e:be:37:ec:ed:bd:b7:ef:c0:ba:a0:32:ae:6c:ea:
ce:ba:fc:90:e0:22:7d:36:4a:52:b1:97:ef:ce:5e:5b:84:3d:
34:07:f7:d8:9c:40:41:29:d6:68:1e:ba:bd:60:ad:97:33:30:
29:81:87:56:6c:d3:78:57:c3:5c:5e:6c:6d:2a:26:ff:2c:80:
a4:64:ec:14:77:99:7a:bb:1f:e3:9f:48:57:10:0c:16:d6:80:
37:a6:e9:41:4a:5b:e1:c2:16:13:cc:35:5f:90:69:c7:e3:e0:
23:d3:ab:a1:34:dd:85:7a:f0:fe:59:6b:77:ad:f2:b4:71:69:
e4:2d:44:38:aa:72:15:7f:54:7f:e1:4c:e2:52:c9:b3:68:0d:
bc:7b:73:df:ac:69:94:13:a8:90:af:74:a9:35:fc:83:40:e0:
21:8f:df:58:ac:bc:6b:60:d3:f7:3e:fd:ea:35:0f:4a:b8:30:
af:3b:16:55:6d:73:fa:32:8f:31:e6:3b:15:2d:91:c2:11:89:
bf:55:3c:fa:fc:10:a7:f0:7a:d3:a3:79:98:70:71:4a:1c:08:
27:25:31:6c:c3:22:6c:ad:98:55:a4:73:e2:37:ba:96:4c:df:
27:cb:9a:9d:7b:a2:02:03:32:27:e5:11:d9:92:0c:bf:e9:41:
98:f3:2b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org