Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/VcorNLJjCvgNz_7TdGg99bx1_fk.roa
File: VcorNLJjCvgNz_7TdGg99bx1_fk.roa (raw, json)
Hash identifier: lVuAjjVxpk1y4bRlpVemml1addGtssvP4q19FlVU8FI=
Subject key identifier: 55:CA:2B:34:B2:63:0A:F8:0D:CF:FE:D3:74:68:3D:F5:BC:75:FD:F9
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DA4
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VcorNLJjCvgNz_7TdGg99bx1_fk.roa
Signing time: Mon 15 Jan 2024 21:29:53 +0000
ROA not before: Mon 15 Jan 2024 21:29:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 124.218.72.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3492 (0xda4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:29:53 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=55CA2B34B2630AF80DCFFED374683DF5BC75FDF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8c:42:2f:56:da:76:cd:5c:46:6e:f7:d8:91:
35:c8:69:24:c4:e4:9f:16:5f:16:26:7b:36:96:b7:
50:3f:4f:df:51:87:de:89:b8:8c:c3:1f:55:5a:06:
0d:ae:3d:b2:c1:3d:08:ba:e1:33:3f:c7:9e:1c:0d:
5b:ee:15:7a:ef:08:9b:9d:50:70:04:68:57:49:27:
7a:fb:4d:5c:29:71:c1:71:ea:76:18:58:b6:06:0e:
5f:60:45:cf:6b:36:ac:ac:b7:00:5d:92:9c:05:88:
ba:0e:88:b1:b9:ab:d9:85:4a:f7:d9:b2:88:c9:b0:
60:3f:aa:11:81:d5:b3:aa:db:82:ea:47:d6:4b:c7:
3e:d8:05:e9:cf:35:8f:2f:ca:52:05:84:22:57:b6:
9f:4f:ca:78:bb:b1:d6:54:df:74:9b:49:56:54:5d:
32:b8:79:77:29:fc:e0:87:aa:a8:ea:21:9c:e0:8c:
df:bf:d7:c4:3e:7a:d3:67:e0:fa:ed:57:bc:a4:89:
ec:c9:bd:a3:a8:3e:07:b2:8e:83:df:cc:7c:81:08:
02:32:ae:49:41:af:0b:08:1c:7c:24:e4:ea:3b:59:
51:7f:79:2d:f1:30:3a:9e:a2:b3:8d:58:db:1d:94:
57:d6:70:4d:1c:38:cc:c6:29:6a:ae:6e:24:0b:77:
11:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:CA:2B:34:B2:63:0A:F8:0D:CF:FE:D3:74:68:3D:F5:BC:75:FD:F9
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VcorNLJjCvgNz_7TdGg99bx1_fk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.72.0/21
Signature Algorithm: sha256WithRSAEncryption
39:a0:a4:fe:f5:ad:2f:99:ae:c9:87:5a:b9:4e:7c:af:83:e1:
60:cd:b9:2b:6d:ff:80:86:45:19:68:a4:a0:f8:8e:b5:d7:4d:
c0:c7:ed:03:42:e5:ec:a7:6d:58:14:c9:17:33:81:c3:0c:5d:
97:02:21:ee:dd:1b:a3:e7:e4:03:a3:cc:e4:94:aa:83:fe:8d:
4c:b2:e2:0d:99:a2:e9:c9:28:37:51:85:2e:ac:83:ec:4f:cd:
f1:82:b3:93:2a:00:e9:0a:67:6b:a0:12:47:2a:e6:90:69:55:
cc:f5:de:f4:1f:45:4d:b4:0d:88:5b:57:81:e1:c6:1e:b6:b3:
ce:0c:21:20:fe:c6:be:41:ce:69:91:97:c1:d2:1f:8a:55:79:
9d:9f:89:95:07:1f:4c:b2:5f:44:48:66:c9:d7:93:b7:8c:c8:
5c:9c:01:7c:93:31:8a:a5:76:51:54:05:77:e5:81:01:be:66:
94:61:4d:da:fb:b8:0c:ee:5b:9c:a2:91:17:65:07:7d:dc:ae:
15:28:98:da:02:93:35:dd:8d:37:fc:21:56:46:a2:0c:75:1c:
88:3b:4b:f5:38:c0:6e:55:7e:c5:3d:84:09:93:f9:53:05:d5:
a0:93:be:5c:20:64:d0:f5:15:1e:42:1b:22:1c:d5:e9:1b:c7:
32:d1:79:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org