Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/P7FrYt1gcElcmZBC-mbvQaPasZo.roa
File: P7FrYt1gcElcmZBC-mbvQaPasZo.roa (raw, json)
Hash identifier: pJQYqzKl0uAqahlOJDsrfu/0ezOgjUwCvnUIPsevIJ8=
Subject key identifier: 3F:B1:6B:62:DD:60:70:49:5C:99:90:42:FA:66:EF:41:A3:DA:B1:9A
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BBD
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/P7FrYt1gcElcmZBC-mbvQaPasZo.roa
Signing time: Fri 01 Sep 2023 08:50:56 +0000
ROA not before: Fri 01 Sep 2023 08:50:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9674
IP address blocks: 61.20.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3005 (0xbbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3FB16B62DD6070495C999042FA66EF41A3DAB19A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:97:07:3d:b4:46:25:d9:e7:04:a9:c0:5b:10:
7c:4b:d2:68:52:16:1b:7e:d9:86:2c:87:6f:2d:29:
e1:e7:03:70:fd:c0:3e:10:55:c7:5d:32:1f:36:87:
10:ed:0d:7d:fd:46:96:8c:91:b4:03:5c:82:51:eb:
d7:86:dc:e7:bf:99:85:e7:71:0c:9a:1d:25:85:12:
92:d7:37:d0:27:5e:6f:36:ca:45:64:31:47:5e:f2:
c4:34:dd:6c:38:6d:95:8b:b3:bb:92:ed:b4:1f:c6:
51:0a:07:23:50:e3:8c:1a:e2:56:e6:d0:7c:6c:83:
fe:4b:69:5d:ec:ac:6d:89:d7:55:ba:22:4c:98:ba:
bb:b1:b4:52:77:e2:94:37:2d:31:9a:a5:32:79:90:
8a:86:de:0f:bc:fc:43:7d:29:16:fd:c0:a1:c8:62:
5b:67:87:33:b3:72:88:a5:ac:90:3f:4c:8e:93:d7:
00:d4:48:5e:d1:c6:84:6e:12:25:e7:c1:df:d9:7c:
42:6b:55:92:78:b0:71:d6:8e:be:b0:a9:cf:90:2d:
b3:52:53:39:69:80:8e:54:f7:eb:07:4d:8c:fe:59:
0c:78:14:30:ab:b6:d5:a1:c7:da:02:20:ab:b5:06:
ba:49:e7:98:0d:52:a1:13:88:dc:03:53:7c:e8:3b:
25:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B1:6B:62:DD:60:70:49:5C:99:90:42:FA:66:EF:41:A3:DA:B1:9A
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/P7FrYt1gcElcmZBC-mbvQaPasZo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.20.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5f:55:d9:b5:23:16:f1:3e:64:c2:69:d6:ab:58:6b:87:19:30:
6e:a9:ab:bf:cd:36:88:f8:1d:25:13:4f:89:bd:f7:37:37:de:
dc:c9:a8:1e:b9:42:99:a6:2c:d9:7b:41:19:ac:1b:9c:62:d7:
a3:c8:a3:f4:1c:dc:d2:05:3b:92:95:8a:f1:da:bf:55:1c:9c:
02:25:16:ce:2e:16:5a:8a:06:28:ab:b1:5b:34:f9:65:af:fc:
e9:90:bc:d5:27:46:d5:d1:4c:89:6a:ab:c7:f3:ef:31:20:a0:
aa:84:4c:c3:c7:11:8d:10:85:96:0c:6b:c9:b9:07:82:95:2a:
77:cb:d4:f6:89:13:9f:1d:81:15:a8:12:8d:ca:40:de:b4:9e:
e5:06:0a:5d:3a:8a:c7:7e:0b:b0:72:d2:d2:2e:90:9b:7b:10:
f6:7a:32:50:23:af:ad:bf:56:ce:79:ff:68:4d:69:7c:f8:01:
23:4c:fe:b4:28:97:19:89:9f:3b:c4:f7:65:14:06:8d:8a:a8:
4f:db:f0:bd:33:4c:f3:5f:df:fd:0f:65:fa:33:d5:bf:55:8c:
ed:9e:9f:41:5a:46:72:6d:c7:ae:5b:a9:7e:74:c3:89:bc:de:
52:4e:60:de:88:f7:f9:b6:0d:ae:d3:5a:2c:1c:62:7e:1c:b6:
54:67:ba:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org