Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa
File: WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa (raw, json)
Hash identifier: RhaUsv6eHYYQ2hhs1VtyizHe9OtgmrLui/o3X6bZt2s=
Subject key identifier: 5A:DC:12:30:F3:42:BB:D3:4E:6E:B0:4F:05:E8:35:01:0E:AF:51:92
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D40
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa
Signing time: Mon 15 Jan 2024 21:25:33 +0000
ROA not before: Mon 15 Jan 2024 21:25:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 219.91.68.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3392 (0xd40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:25:33 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5ADC1230F342BBD34E6EB04F05E835010EAF5192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:93:61:41:4a:c6:e1:ac:b9:15:95:ca:a2:b7:
7b:ec:53:0b:52:27:b7:4b:f2:c6:37:56:ab:a6:97:
76:2f:6e:f1:7e:5e:92:67:43:4c:fe:5c:e3:72:9b:
f9:de:58:b2:6f:55:35:91:43:93:1e:e5:c3:a1:a2:
fc:21:45:ee:6c:47:29:60:c3:ca:e6:e7:33:83:fa:
d9:74:d0:06:64:4d:38:c4:ca:77:3a:92:ee:57:bf:
50:2f:8d:f8:5b:c1:c5:3d:25:3b:a5:d3:41:c2:7b:
86:11:0d:47:06:c2:6f:c6:57:af:33:03:59:0d:04:
f4:ec:57:bf:13:7a:5d:a3:72:ae:7f:09:0f:03:87:
da:5e:73:d7:40:c3:fa:2b:15:4f:3a:c4:c8:47:cb:
05:03:79:4e:ec:1e:60:af:2e:49:25:8e:dd:b0:d3:
2f:e0:fa:c4:92:08:9b:f0:08:54:9d:7d:35:5a:9a:
3d:c0:18:27:7d:70:9a:18:27:9f:b6:2b:33:c7:6b:
f7:9f:26:bf:46:dc:f3:3e:b8:e5:82:69:e6:2a:53:
d3:7a:08:98:d9:1f:6c:b5:88:f4:73:d0:ae:68:bd:
28:01:00:77:94:11:d3:e7:0f:df:ee:bb:e5:ed:52:
b3:57:61:32:78:28:43:52:89:80:ab:dd:4f:bb:b4:
6a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:DC:12:30:F3:42:BB:D3:4E:6E:B0:4F:05:E8:35:01:0E:AF:51:92
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.68.0/23
Signature Algorithm: sha256WithRSAEncryption
99:a7:7f:6a:85:9a:d3:42:c4:6b:9e:47:19:bb:98:1b:64:05:
e7:79:76:46:bf:73:f3:fc:b8:18:9c:62:1c:59:e1:f7:ea:a8:
f3:31:95:92:97:68:93:18:8a:1e:82:0b:c0:82:69:3c:08:62:
b5:ae:29:fd:65:ae:14:ea:f3:c7:0f:ce:24:aa:8b:cc:8a:93:
a8:4e:70:41:af:dd:35:37:12:d8:7f:07:77:ef:ce:ed:0a:a1:
b5:b6:d0:9b:c4:72:9d:39:d9:52:d4:18:49:2f:97:6c:a4:77:
28:da:97:75:6d:03:f2:15:80:2f:34:a0:f7:51:e7:10:2f:e1:
fb:e6:75:fd:98:82:10:b2:b4:3e:c6:ec:5f:4e:e2:0a:da:d4:
aa:81:7a:c6:ec:af:43:25:95:b1:70:45:11:11:78:3e:06:63:
fd:ff:6c:6f:9f:da:60:7a:cf:27:c5:d6:17:88:81:0a:7b:5f:
23:1e:a8:a7:0c:f3:dd:5d:f7:8d:5b:44:8e:4d:e0:7d:16:e0:
9d:a8:fc:eb:2f:48:24:31:49:0b:a2:44:d5:cd:f4:9b:cf:88:
fb:db:9d:9a:66:9f:da:dd:e3:95:8a:65:1f:3b:da:9c:1b:2f:
42:cd:7a:75:26:d7:51:9e:96:06:7b:d3:24:13:f4:31:a6:9a:
fe:bd:da:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org