Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa
File: RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa (raw, json)
Hash identifier: 6URPHhv6EU+/fG9jguSK6pUI16L0IrtZPGWHiMB0O30=
Subject key identifier: 45:4E:CD:30:E3:E6:F2:AA:A9:80:76:AA:BE:F5:CF:4A:AC:97:0C:6E
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D70
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa
Signing time: Mon 15 Jan 2024 21:28:34 +0000
ROA not before: Mon 15 Jan 2024 21:28:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.58.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3440 (0xd70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:28:34 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=454ECD30E3E6F2AAA98076AABEF5CF4AAC970C6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:72:8f:c3:f8:5c:80:9c:b7:c4:20:99:55:f8:
c0:d3:2f:b8:98:29:09:fd:62:55:34:47:db:e1:ab:
ba:08:db:95:cc:48:cc:b5:10:4f:14:65:60:a4:04:
cb:00:17:8c:51:61:2d:a3:b4:ba:e3:08:92:fa:a8:
8f:cf:e4:7d:36:88:03:fb:d6:b8:0c:1f:cd:84:2a:
c7:0a:5d:5f:d1:b5:48:89:a4:6c:32:dc:7f:e6:7f:
d1:e1:c1:59:f7:c9:20:0d:e7:13:c0:db:74:f9:bc:
d0:35:98:fc:af:02:60:14:ed:06:2e:93:2b:95:6e:
9e:e9:ac:e7:83:49:72:1d:11:78:8c:a0:8d:cb:6f:
0b:f5:ab:40:97:7e:f0:52:10:3b:55:32:7c:09:35:
0d:a6:1a:61:91:a2:a5:e4:a3:35:98:5b:c6:0d:64:
15:e9:1c:89:cf:13:e9:16:cf:7c:cf:de:4b:03:68:
2c:9d:94:0a:32:09:cc:9e:92:9c:3b:79:8d:8a:ac:
03:5c:8c:8a:e2:f3:77:5f:0d:e0:b1:81:a4:b6:e8:
0f:9f:f2:91:2c:6d:e5:21:94:78:fb:14:3e:2a:ac:
30:1f:ee:74:f1:b6:10:07:22:b2:e2:b2:37:e1:ae:
12:78:9b:cc:e4:ab:39:3e:9b:ee:6f:4e:1b:d6:38:
13:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4E:CD:30:E3:E6:F2:AA:A9:80:76:AA:BE:F5:CF:4A:AC:97:0C:6E
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.88.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:73:82:22:52:ec:4b:a1:8e:71:db:cb:6a:9e:a5:d0:d3:41:
ae:2a:6e:eb:9b:c1:be:a3:03:2f:cf:93:0d:ed:91:8f:e1:71:
8f:7a:60:78:2b:7e:f3:e4:5e:e5:15:ac:1a:5c:6c:e9:14:d6:
b2:65:08:0c:5c:07:ba:1b:38:73:5b:6f:62:b2:69:5d:c0:e6:
0b:fb:78:60:7a:0e:eb:f9:7d:c6:dc:fa:9e:97:bc:84:06:75:
45:3f:d2:bf:7a:48:01:ce:32:50:d0:d5:06:23:a5:3d:3d:cb:
12:46:21:32:d9:6e:ac:67:a7:39:85:1a:6c:e8:bf:ea:be:52:
77:d2:5b:2a:b7:14:d5:b6:87:07:05:79:a7:d1:09:9f:ae:f3:
c2:df:47:c7:c5:52:60:0c:88:f7:ef:45:85:62:62:62:c9:9f:
a4:4b:28:84:59:2e:a7:b1:ec:bc:1d:9c:ac:04:ec:bf:71:30:
79:a4:bf:d6:57:33:a5:fb:1d:83:e0:96:0b:56:b0:46:39:17:
7d:c5:6b:10:56:36:e5:d6:94:4d:41:62:ef:23:98:50:03:32:
ce:2e:42:1e:df:a1:7e:18:7d:9d:4d:46:9e:0c:a6:b3:6c:a1:
b1:a8:ca:18:9c:b1:32:80:86:cd:f4:b7:d8:e7:b1:1d:e7:0f:
c5:8e:95:2b
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy
MTI4MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ1NEVDRDMwRTNFNkYy
QUFBOTgwNzZBQUJFRjVDRjRBQUM5NzBDNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCaco/D+FyAnLfEIJlV+MDTL7iYKQn9YlU0R9vhq7oI25XMSMy1
EE8UZWCkBMsAF4xRYS2jtLrjCJL6qI/P5H02iAP71rgMH82EKscKXV/RtUiJpGwy
3H/mf9HhwVn3ySAN5xPA23T5vNA1mPyvAmAU7QYukyuVbp7prOeDSXIdEXiMoI3L
bwv1q0CXfvBSEDtVMnwJNQ2mGmGRoqXkozWYW8YNZBXpHInPE+kWz3zP3ksDaCyd
lAoyCcyekpw7eY2KrANcjIri83dfDeCxgaS26A+f8pEsbeUhlHj7FD4qrDAf7nTx
thAHIrLisjfhrhJ4m8zkqzk+m+5vThvWOBNhAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQURU7NMOPm8qqpgHaqvvXPSqyXDG4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1JVN05NT1BtOHFxcGdIYXF2dlhQU3F5
WERHNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSOlgwDQYJ
KoZIhvcNAQELBQADggEBAGpzgiJS7EuhjnHby2qepdDTQa4qbuubwb6jAy/Pkw3t
kY/hcY96YHgrfvPkXuUVrBpcbOkU1rJlCAxcB7obOHNbb2KyaV3A5gv7eGB6Duv5
fcbc+p6XvIQGdUU/0r96SAHOMlDQ1QYjpT09yxJGITLZbqxnpzmFGmzov+q+UnfS
Wyq3FNW2hwcFeafRCZ+u88LfR8fFUmAMiPfvRYViYmLJn6RLKIRZLqex7LwdnKwE
7L9xMHmkv9ZXM6X7HYPglgtWsEY5F33FaxBWNuXWlE1BYu8jmFADMs4uQh7foX4Y
fZ1NRp4MprNsobGoyhicsTKAhs30t9jnsR3nD8WOlSs=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org