Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/UqQoVddes9WfYKG_JBY7jvm2M1M.roa
File: UqQoVddes9WfYKG_JBY7jvm2M1M.roa (raw, json)
Hash identifier: ga5gvGpuKvHa9egCfOmAe3ug1Ct69C2UaguEVFsnTOE=
Subject key identifier: 52:A4:28:55:D7:5E:B3:D5:9F:60:A1:BF:24:16:3B:8E:F9:B6:33:53
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D54
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UqQoVddes9WfYKG_JBY7jvm2M1M.roa
Signing time: Mon 15 Jan 2024 21:25:59 +0000
ROA not before: Mon 15 Jan 2024 21:25:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3412 (0xd54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:25:59 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=52A42855D75EB3D59F60A1BF24163B8EF9B63353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b1:5d:34:40:27:c0:2e:d1:9d:a2:0a:74:02:
54:c9:e9:3f:b6:6f:82:79:48:37:92:3e:73:4e:1c:
16:8f:79:5d:35:7f:36:df:52:e3:71:3d:4d:d9:bd:
b2:66:cf:02:81:bb:40:1b:78:9d:ea:7e:b9:f1:5e:
54:8a:ef:86:06:16:67:11:5f:dd:ec:f5:e9:c9:ac:
34:40:91:d0:b0:09:fb:8b:12:a4:a3:83:3a:14:c0:
ed:c6:7f:a3:af:9a:24:67:0c:16:92:19:3b:f5:ed:
f8:7e:bf:da:60:c1:bb:b6:40:dd:47:33:5f:f5:8e:
ca:dc:10:19:26:70:42:e5:ad:97:47:3e:4d:e2:75:
97:e8:38:28:42:e3:ba:a8:c3:65:11:15:b4:13:a1:
ab:b1:36:a9:62:4b:5d:c0:be:de:d5:23:ea:cc:67:
df:f1:f5:1f:ea:c6:1e:6b:79:85:4e:6d:44:18:5f:
ec:ab:f0:11:b3:4a:28:89:f7:e4:b4:66:eb:2b:9d:
be:1d:ff:28:e6:ca:41:b2:24:d6:39:56:ab:2d:40:
81:67:d8:8a:b8:20:03:10:9b:b7:c7:9f:41:3a:88:
ab:fa:06:72:0a:80:9a:bd:c8:da:fd:d6:24:87:57:
30:d1:af:0e:d3:b5:b5:d8:ce:ca:21:d5:15:7e:25:
2d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A4:28:55:D7:5E:B3:D5:9F:60:A1:BF:24:16:3B:8E:F9:B6:33:53
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UqQoVddes9WfYKG_JBY7jvm2M1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b0:e5:bf:50:9f:2e:90:7f:d4:e1:63:43:69:27:0c:72:ee:bb:
00:a5:4b:84:e4:d0:0e:6b:6c:f1:3c:63:c6:d2:da:c4:cc:f4:
dc:62:8e:79:41:14:ec:3c:54:72:93:dc:09:e5:31:06:0f:9b:
64:d3:f9:88:ad:89:94:14:b0:bb:3e:6d:7c:f3:8d:72:5d:52:
95:c1:b0:ed:2d:ae:d3:a4:41:94:08:60:23:20:1f:22:f4:51:
f8:a4:61:69:ff:1b:eb:b8:86:75:4a:6d:a6:7e:b5:83:b2:64:
2d:2e:e1:20:34:07:81:94:92:89:d8:63:91:d5:54:d1:cb:c5:
94:57:4a:48:42:d2:d4:c0:a9:0d:46:0b:9f:9c:dc:5a:43:e3:
0f:3c:0c:74:d5:fc:a7:e7:94:55:fd:87:7e:a7:55:27:21:ee:
5e:89:4b:be:15:7f:7e:47:89:c1:3f:0f:4b:78:c5:7a:b7:7c:
7d:ba:b0:fe:40:36:07:ef:8c:be:b5:48:7e:8b:02:71:64:f9:
f2:71:93:bf:c4:9c:ba:0d:00:f8:20:16:37:fe:2b:33:15:7b:
23:f1:50:8b:e8:b3:87:b2:fe:d8:48:9e:4e:a5:e6:6c:6d:e7:
b1:02:41:b0:6c:b6:e4:12:31:99:38:9c:4a:a9:dc:2d:e1:0a:
b0:c1:b6:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org