Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/UPHMl9-uaY4FKp25KjeflD0Ed18.roa
File: UPHMl9-uaY4FKp25KjeflD0Ed18.roa (raw, json)
Hash identifier: /Df6jXXeS3sGTtvdf/W4MhWo4x8hHdMu8YB96O5O+2w=
Subject key identifier: 50:F1:CC:97:DF:AE:69:8E:05:2A:9D:B9:2A:37:9F:94:3D:04:77:5F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0E5D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UPHMl9-uaY4FKp25KjeflD0Ed18.roa
Signing time: Tue 07 May 2024 09:00:38 +0000
ROA not before: Tue 07 May 2024 09:00:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131591
IP address blocks: 222.250.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3677 (0xe5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: May 7 09:00:38 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=50F1CC97DFAE698E052A9DB92A379F943D04775F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3b:1a:07:ae:c5:13:59:90:34:55:7f:62:82:
c4:af:6e:bc:68:ee:a2:74:b1:9b:bf:5d:4f:d1:4d:
96:92:b1:06:3c:6d:f3:57:6b:86:b4:4a:4c:ed:5f:
fb:32:3c:95:89:67:c6:ce:1d:4e:80:64:9b:e2:47:
2d:5b:14:12:02:19:bf:fb:fb:19:e0:a6:55:04:74:
42:10:84:31:1e:4b:a0:be:8b:df:31:55:11:d7:0a:
5b:40:0d:c5:b6:f7:a2:be:99:f1:de:cc:67:b2:17:
39:43:58:76:e4:76:4b:69:2d:d1:f9:c0:bb:0f:f5:
7d:28:c4:fa:73:55:97:32:c1:54:59:cc:3a:6f:1c:
71:68:c3:44:df:c2:19:f6:36:a0:ae:99:fd:cf:59:
b8:33:fd:09:a3:be:95:81:aa:a9:63:a7:df:b1:ff:
ca:8a:b3:bb:77:2a:bd:38:62:b4:72:b7:2d:9f:17:
e3:21:fc:6a:fd:9e:0e:09:fd:71:39:01:20:d2:2e:
7a:c2:7b:d2:54:78:5a:99:33:4a:34:02:25:df:6d:
72:b8:83:31:b1:ea:55:74:c5:af:c5:25:34:be:25:
52:65:67:11:b0:e6:9a:83:d0:c3:30:6e:d0:ac:a9:
fe:d9:b0:95:f6:4f:c9:99:2b:41:ca:d1:5e:d2:4a:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F1:CC:97:DF:AE:69:8E:05:2A:9D:B9:2A:37:9F:94:3D:04:77:5F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UPHMl9-uaY4FKp25KjeflD0Ed18.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8c:da:54:04:e7:d0:55:8b:2a:30:9f:0e:dc:81:ca:35:8d:69:
4b:f2:74:bf:1f:22:7f:c8:38:10:c4:d5:09:18:1e:1b:9f:bd:
5e:96:ca:f8:03:c8:1b:0b:fb:ad:50:a0:fd:96:50:e5:68:50:
4c:9d:d7:ce:8b:5c:11:0f:2f:4c:8b:68:f2:94:a7:e6:76:16:
9d:56:7f:d5:06:b0:f6:59:a1:f4:67:8f:ac:e8:8b:af:92:c1:
6a:8e:d1:8a:9a:bd:5e:f0:36:f7:f6:70:de:88:75:4d:a7:3b:
7e:2e:c5:43:cd:c6:1b:a0:4e:ec:a1:1b:b2:5c:aa:ff:1d:9c:
6e:5e:56:14:42:a6:19:63:a0:36:ad:7f:db:74:0b:f0:32:55:
05:47:c9:66:f9:08:ac:de:b0:66:a0:54:d3:11:40:5f:fc:34:
3e:dc:80:88:59:e0:ec:a5:f5:47:68:eb:f3:e9:3b:02:2a:6b:
bd:78:2e:ff:83:57:a5:52:e7:4e:9c:11:69:47:9b:1c:0e:ca:
e4:17:3a:34:9c:c7:e4:04:e8:db:87:f2:11:26:51:a8:66:95:
0a:15:22:de:46:d4:44:ff:cc:5e:eb:6b:eb:a7:3d:a5:05:3c:
1c:4b:be:de:a8:e6:3a:ef:62:4b:6a:aa:30:88:59:02:c5:b8:
33:70:d0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org