Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa
File: YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa (raw, json)
Hash identifier: dueC5NfE7xUK4YVTlzaopOLkEh3V84luQYO5cIwE3LE=
Subject key identifier: 61:02:39:98:B3:41:55:FE:73:84:27:06:F4:3B:D7:39:3C:F1:53:E4
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D74
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa
Signing time: Mon 15 Jan 2024 21:28:40 +0000
ROA not before: Mon 15 Jan 2024 21:28:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.58.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3444 (0xd74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:28:40 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=61023998B34155FE73842706F43BD7393CF153E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:78:e9:45:31:1b:42:8c:ac:48:f9:08:fa:a2:
55:7e:99:27:35:13:79:83:58:88:f8:a1:f6:e6:3b:
6d:83:83:5e:9b:68:05:f3:ae:16:d4:6e:61:4e:df:
a8:ef:4e:21:5c:ba:ff:b6:a0:69:8a:67:6a:15:27:
ed:3c:e1:ae:b8:0b:6f:53:10:df:b2:2e:dc:00:00:
cf:85:7d:9b:98:5a:ab:3c:aa:c8:d5:3e:45:85:97:
c7:39:3e:4b:47:7f:f5:6e:f6:e0:ae:60:4a:80:f6:
39:8e:7d:62:f7:9e:f4:7b:c9:f4:03:b0:3e:87:72:
d2:ee:3e:00:cf:37:d2:be:a9:45:98:07:31:a8:db:
e7:28:a0:24:07:8e:54:f3:ad:be:b8:c2:3f:db:a6:
9e:fd:bf:dd:77:4c:7b:95:76:a7:7c:ad:30:bd:4c:
33:f8:22:5a:77:f8:f2:57:0f:18:6a:60:94:6c:bd:
a8:58:cb:57:5f:5c:f9:71:ed:5d:e1:0f:8f:39:43:
34:d6:33:91:73:a0:f4:d0:a6:1d:69:d2:73:ba:da:
34:a1:b0:cd:d4:83:32:8e:b3:c5:58:28:93:71:ed:
5d:a5:7f:4c:8b:39:ec:46:d9:8a:3f:3b:eb:59:96:
ac:31:de:e2:40:fc:c4:4d:41:00:43:d6:85:be:a6:
03:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:02:39:98:B3:41:55:FE:73:84:27:06:F4:3B:D7:39:3C:F1:53:E4
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.112.0/20
Signature Algorithm: sha256WithRSAEncryption
51:ac:fd:74:f5:4b:6f:a2:3b:ad:ad:5f:3c:92:6a:0d:79:fa:
8b:4a:4b:fe:fd:a5:37:a0:e5:16:9f:6c:09:af:6c:56:99:d6:
a4:a2:9d:4f:1b:e8:f6:c8:7d:bc:76:c2:32:40:63:16:7b:8f:
c0:d7:dd:92:04:9c:c5:2e:17:d8:a1:31:97:77:66:18:c4:6d:
31:bf:5f:89:4e:26:81:d9:f7:a2:44:a7:47:76:89:b0:0b:bd:
67:d0:f8:98:5b:eb:ff:69:ef:14:f1:5b:37:d0:b1:b9:22:1a:
46:8f:68:f6:3e:4e:ef:8e:dc:b0:0e:d0:07:e2:03:42:38:3e:
41:8d:7c:51:a9:91:a4:f6:14:47:84:f4:af:67:27:84:84:37:
46:bf:a6:8e:1c:e1:f1:8e:53:65:c8:29:7f:49:1d:1a:a0:3d:
3e:63:d6:50:65:9d:da:ce:2e:f3:14:92:2a:9f:b2:be:f7:b7:
86:8d:d0:22:27:e5:63:3c:c4:9a:ef:82:d5:ca:6b:04:f0:60:
b4:e4:a3:93:be:56:c4:73:2c:e5:42:02:22:81:d1:61:bc:52:
5c:fd:1c:19:17:47:1c:8d:36:e2:eb:b1:72:bc:a9:97:b2:6e:
5e:5a:12:19:4e:0b:1c:1d:11:b8:60:c8:0d:95:67:71:56:89:
af:fa:b1:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org