Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa
File: XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa (raw, json)
Hash identifier: 0pTCP1q7WVKP7n0VmlL34fhCfvMo1GFPCY3On5aWTFg=
Subject key identifier: 5C:D4:AB:E2:45:36:04:1F:CF:E9:19:83:27:F9:2F:57:40:57:55:EC
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D12
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa
Signing time: Mon 15 Jan 2024 21:24:34 +0000
ROA not before: Mon 15 Jan 2024 21:24:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 2404:0:1000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3346 (0xd12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:24:34 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5CD4ABE24536041FCFE9198327F92F57405755EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:6f:05:bf:af:3e:12:50:c7:7e:3c:96:91:
80:f6:3e:be:04:41:db:f8:7e:5a:df:b5:cb:87:66:
f4:fd:9a:d6:f5:1a:88:ae:98:61:65:f2:e0:e6:00:
51:71:89:91:fd:7b:66:d6:e2:34:9f:cb:f5:ee:b4:
44:3b:58:ed:5b:87:09:21:9c:d0:3e:0a:c0:60:09:
bf:2c:b0:e6:df:16:83:a6:cf:b1:8c:a3:21:12:05:
39:21:3b:4e:42:a2:d5:fc:6f:de:6e:fc:02:80:9f:
b4:c1:b4:4e:ed:2c:2b:86:43:7a:9b:6f:36:6f:22:
e2:8a:ae:81:f2:18:6a:16:cf:6d:82:db:66:02:55:
51:53:b9:cf:cb:bf:89:28:36:7a:4f:22:70:fb:d2:
07:20:8f:8b:91:69:c7:9f:c9:b6:b1:71:ae:31:c4:
c2:57:7d:c5:32:09:1f:f7:52:75:47:a2:66:87:e6:
3a:01:cb:e8:dd:21:b2:55:94:eb:3b:ea:90:f3:e0:
5d:70:fd:03:02:24:62:10:75:e7:0d:78:7d:36:72:
06:4b:a1:22:b0:f5:72:ef:8a:78:57:f3:f6:cb:11:
9c:1a:f0:37:8d:5b:f3:0a:c5:f1:69:a8:e3:a9:a3:
63:9c:2c:f6:9c:ab:aa:77:70:f7:9a:f1:a6:5c:9a:
77:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D4:AB:E2:45:36:04:1F:CF:E9:19:83:27:F9:2F:57:40:57:55:EC
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
a2:ad:05:fd:5b:55:c8:2e:bf:bf:06:71:e2:6c:83:a6:68:10:
16:33:86:6d:64:41:95:47:ca:b5:0e:ec:1c:99:a5:8b:5b:9d:
f7:3f:eb:57:47:9e:ab:1c:16:d2:9c:71:2e:8f:2e:71:37:0a:
e5:63:e6:50:71:37:de:32:99:d0:03:7b:39:82:e0:7e:de:34:
9c:ae:d6:d5:12:11:2e:fc:cf:77:5f:6f:ba:a3:ac:df:be:74:
91:8e:97:50:45:f5:75:ec:ec:60:ba:d1:c0:1c:96:5b:bf:bc:
94:bb:11:e3:20:77:c7:f8:87:a2:8c:fb:80:34:ca:82:f7:55:
ab:38:ee:71:45:27:af:f0:e3:52:dc:37:09:80:58:e2:4c:a7:
49:18:58:6f:88:9b:37:96:7b:b9:e5:2d:ae:02:97:4f:af:20:
a8:e7:31:e1:5e:7e:0e:48:71:74:d9:b5:d7:7e:b4:9b:66:ae:
71:5e:48:e9:0d:85:24:d3:e1:33:b1:58:d2:cf:ee:3e:a9:c9:
a6:99:ff:24:29:62:65:53:7e:55:92:87:98:6e:bf:a3:13:bd:
18:4b:88:61:17:88:74:c2:b7:29:2c:08:ab:fc:f8:8c:b7:10:
1a:91:be:63:8d:76:fb:3c:0e:63:dc:91:42:42:b7:2f:7d:0d:
76:47:15:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org