Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa
File: QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa (raw, json)
Hash identifier: +JDobQfoY1oPraPtmHU1BMsD1kTmKXNpoXFqEsK8SJQ=
Subject key identifier: 40:EB:21:E5:97:09:35:77:D8:F6:10:0F:DE:18:02:22:51:5E:87:AE
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C19
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa
Signing time: Fri 05 Jan 2024 11:05:06 +0000
ROA not before: Fri 05 Jan 2024 11:05:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 5 11:05:06 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=40EB21E597093577D8F6100FDE180222515E87AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b4:a1:e5:ff:97:71:38:b5:ec:6c:a6:7c:1a:
48:16:85:09:91:6e:38:89:ac:43:69:bd:d6:5c:30:
a9:b9:61:b5:38:ab:c5:2e:b2:0c:ce:c6:2e:93:4f:
b2:e8:fe:e9:c0:b6:7c:c6:87:20:69:ae:6d:ea:cc:
a7:17:98:2a:91:08:d9:3b:75:1c:66:8d:8a:d0:41:
da:00:38:b0:55:3a:e1:62:9d:56:9d:6b:b4:5d:da:
ef:d5:d4:0f:ef:41:c2:4e:84:29:b2:f4:91:b2:75:
de:73:86:9c:c9:a4:5b:bd:d5:53:3d:6c:93:a5:8d:
db:b4:f0:9b:d2:3e:ce:b3:f7:af:b1:a6:b5:5a:7f:
c9:66:24:f4:a7:ec:f8:ad:f7:4b:17:d6:bc:c6:7e:
01:02:cf:9a:ee:2e:ec:e8:cc:02:35:9b:de:5a:ed:
dc:fa:c1:99:48:6e:17:ac:5f:ce:13:76:54:77:b0:
e2:70:bf:e8:d4:a3:ef:3f:98:35:34:94:c2:de:b3:
73:7a:02:d2:80:94:a4:31:b9:12:8b:ee:fa:5e:fc:
b9:97:b8:27:58:cf:a4:df:1a:93:b3:f2:5d:ec:db:
1b:46:ce:ac:33:db:a4:b5:42:8d:5f:5a:1c:73:a8:
69:80:83:1c:ec:96:33:5f:a1:51:79:63:47:28:ed:
b0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EB:21:E5:97:09:35:77:D8:F6:10:0F:DE:18:02:22:51:5E:87:AE
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
43:8b:61:51:02:b9:21:ab:0b:b7:8e:6b:85:43:bc:fa:48:c9:
f3:f6:2c:7d:ac:d4:1d:39:79:00:4d:5e:eb:1b:c6:e6:fa:3a:
02:50:f6:85:0c:55:86:1d:3e:fe:53:c7:de:74:11:19:85:d0:
17:06:10:20:39:ed:c4:f0:7f:dc:90:58:11:c4:76:8d:3c:96:
fb:b9:12:51:08:9e:4a:c5:db:cf:3d:2b:56:63:da:95:88:01:
3a:a1:a0:7c:cc:2d:f1:1b:33:43:33:92:a1:80:f8:44:23:26:
a7:98:5c:11:02:64:ed:02:e6:17:5d:12:8a:d4:a1:3e:ff:a3:
fc:83:54:91:ab:74:3a:14:dd:1c:eb:51:9e:fa:6d:90:3a:1c:
d5:8f:58:5b:fb:f7:29:6e:3a:47:0b:d9:d0:c6:72:94:35:8d:
78:3b:a4:d5:f2:37:fa:7e:5f:61:e7:40:9a:de:cb:c6:d9:6a:
4c:45:f1:a0:71:64:82:25:08:f9:8b:e8:3b:52:fc:bf:d5:ab:
d5:7b:4e:e0:d6:88:6b:09:32:a7:53:33:4e:1c:41:da:46:ca:
b6:80:84:34:00:9b:d6:13:90:96:5b:22:c5:22:23:fc:03:b0:
e0:13:78:84:3c:10:fc:e9:ac:50:4f:8e:8a:2e:75:3f:33:7e:
48:59:bc:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org