Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_RKOGOA9ETX1UDg-BlpRi1xPtts.roa
File: _RKOGOA9ETX1UDg-BlpRi1xPtts.roa (raw, json)
Hash identifier: 9RHvMe2x/5dvi29WKOv+tdnith5jHw/J+ymLZN5nzhs=
Subject key identifier: FD:12:8E:18:E0:3D:11:35:F5:50:38:3E:06:5A:51:8B:5C:4F:B6:DB
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C3C
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_RKOGOA9ETX1UDg-BlpRi1xPtts.roa
Signing time: Mon 15 Jan 2024 21:08:38 +0000
ROA not before: Mon 15 Jan 2024 21:08:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 124.218.0.0/16 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3132 (0xc3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:08:38 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FD128E18E03D1135F550383E065A518B5C4FB6DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:98:88:f0:5e:c6:bf:0c:2c:c7:78:29:e8:2d:
9c:6d:f8:a8:de:6f:6c:67:92:ad:12:81:36:b1:fc:
3a:b8:7a:ab:3d:16:03:1e:37:cb:63:3c:6a:37:54:
30:a9:f6:9b:35:77:8e:b3:8f:b8:9a:cf:99:54:fd:
23:c5:ae:61:b2:04:d2:6d:34:fb:1e:06:91:f1:4b:
d4:b7:7c:8f:3d:93:58:68:44:03:8a:f1:9d:79:15:
2b:be:4a:09:49:f6:3e:2a:90:5c:9a:a0:0c:25:3b:
81:94:3d:89:44:a5:46:ea:4b:70:ca:f3:91:6b:37:
49:5a:42:fd:aa:26:ac:9b:f9:04:61:56:d3:1d:71:
34:2f:05:73:90:31:29:b1:b0:c9:5a:dd:14:2e:d6:
97:c9:4c:83:9c:bd:bb:bc:ac:91:68:48:89:b7:b4:
3f:97:15:7b:c8:38:1c:7a:55:32:fd:d2:3a:5d:7d:
47:4c:28:69:f3:d8:13:41:bf:ae:eb:db:16:ce:ea:
0e:b8:fd:63:c7:d4:5e:16:ce:26:3e:80:cd:18:ec:
28:9f:1c:e3:a2:8a:76:c4:f6:f5:0e:e9:89:6d:fb:
c0:01:74:81:1c:28:67:ec:8a:c0:d4:09:a2:7b:4e:
05:bc:5f:5a:6c:ba:5b:74:8d:6b:04:7c:ef:33:2a:
f4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:12:8E:18:E0:3D:11:35:F5:50:38:3E:06:5A:51:8B:5C:4F:B6:DB
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_RKOGOA9ETX1UDg-BlpRi1xPtts.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/16
Signature Algorithm: sha256WithRSAEncryption
89:72:29:77:07:ce:97:06:01:3a:f8:57:51:be:69:f6:e3:9a:
7e:d4:9f:f3:05:8a:8e:8e:b7:f2:15:97:59:63:b9:3f:d7:fe:
db:14:2f:30:2e:0c:15:9f:62:ac:1d:e2:38:f7:88:ce:a0:ac:
06:84:90:93:f8:1e:ae:bb:75:99:32:eb:04:c4:74:28:c4:67:
de:5c:32:1d:2d:56:4f:c8:64:93:db:2b:aa:92:79:67:51:c8:
b2:dc:e3:f4:8f:96:23:24:be:07:be:1d:5d:16:ba:d0:bb:2a:
14:68:23:ef:f3:31:db:b3:21:b6:7a:7a:ff:a7:18:80:2b:5b:
f9:dd:99:98:cc:33:16:98:f6:ac:e9:68:5a:c1:b2:07:b1:15:
7a:1f:b8:eb:73:d6:1d:4a:dc:f2:6f:14:68:93:c6:be:b1:17:
f8:37:75:6c:19:90:a6:71:59:cc:5e:b7:db:82:18:8c:0b:45:
b1:65:f3:3f:5b:1f:9a:3c:f0:9e:e9:aa:bd:e9:b5:d9:b9:71:
26:2d:8c:fe:11:10:03:83:3b:6f:c6:2c:98:45:48:a2:8c:66:
aa:c5:83:d3:bf:6e:f8:81:5b:92:23:2a:ea:58:1d:70:0b:85:
41:0d:dc:6f:d8:5b:f1:e1:b9:0c:7a:6f:1c:40:63:88:17:69:
4f:22:ae:b8
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy
MTA4MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZEMTI4RTE4RTAzRDEx
MzVGNTUwMzgzRTA2NUE1MThCNUM0RkI2REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD1mIjwXsa/DCzHeCnoLZxt+Kjeb2xnkq0SgTax/Dq4eqs9FgMe
N8tjPGo3VDCp9ps1d46zj7iaz5lU/SPFrmGyBNJtNPseBpHxS9S3fI89k1hoRAOK
8Z15FSu+SglJ9j4qkFyaoAwlO4GUPYlEpUbqS3DK85FrN0laQv2qJqyb+QRhVtMd
cTQvBXOQMSmxsMla3RQu1pfJTIOcvbu8rJFoSIm3tD+XFXvIOBx6VTL90jpdfUdM
KGnz2BNBv67r2xbO6g64/WPH1F4WziY+gM0Y7CifHOOiinbE9vUO6Ylt+8ABdIEc
KGfsisDUCaJ7TgW8X1psult0jWsEfO8zKvSBAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQU/RKOGOA9ETX1UDg+BlpRi1xPttswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL19SS09HT0E5RVRYMVVEZy1CbHBSaTF4
UHR0cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB82jANBgkq
hkiG9w0BAQsFAAOCAQEAiXIpdwfOlwYBOvhXUb5p9uOaftSf8wWKjo638hWXWWO5
P9f+2xQvMC4MFZ9irB3iOPeIzqCsBoSQk/gerrt1mTLrBMR0KMRn3lwyHS1WT8hk
k9srqpJ5Z1HIstzj9I+WIyS+B74dXRa60LsqFGgj7/Mx27Mhtnp6/6cYgCtb+d2Z
mMwzFpj2rOloWsGyB7EVeh+463PWHUrc8m8UaJPGvrEX+Dd1bBmQpnFZzF6324IY
jAtFsWXzP1sfmjzwnumqvem12blxJi2M/hEQA4M7b8YsmEVIooxmqsWD079u+IFb
kiMq6lgdcAuFQQ3cb9hb8eG5DHpvHEBjiBdpTyKuuA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org