Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aWU4prZJ7_CPfVS73T1rVPXbnL0.roa
File: aWU4prZJ7_CPfVS73T1rVPXbnL0.roa (raw, json)
Hash identifier: 7k5iEZ3h4iczP8pk7GwrK682yoa2zdSwzJC/VJmEbEM=
Subject key identifier: 69:65:38:A6:B6:49:EF:F0:8F:7D:54:BB:DD:3D:6B:54:F5:DB:9C:BD
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CEE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWU4prZJ7_CPfVS73T1rVPXbnL0.roa
Signing time: Mon 15 Jan 2024 21:23:50 +0000
ROA not before: Mon 15 Jan 2024 21:23:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3310 (0xcee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:23:50 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=696538A6B649EFF08F7D54BBDD3D6B54F5DB9CBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8b:64:b3:4e:f7:77:40:86:18:73:64:e1:54:
85:69:d2:10:3a:5d:da:a8:ec:1f:6a:1c:fa:fd:ab:
4e:9f:5b:3e:33:f0:54:e8:59:12:bb:c6:27:c5:54:
79:d3:a8:da:50:d0:2b:1d:70:a5:a2:d4:33:af:b3:
e5:f9:2f:32:2e:e5:b4:e1:4f:6b:bc:9e:38:29:15:
cb:c5:bc:a0:e0:e5:b3:be:bb:2c:dc:70:4a:06:1b:
be:06:22:63:f5:c6:7a:62:51:11:de:f2:e9:00:63:
cf:92:64:e0:87:d2:37:32:c0:56:99:32:d7:b4:50:
84:db:7b:ca:db:ad:af:89:05:41:65:d8:3e:2a:da:
4e:c1:93:fa:64:7f:39:6c:f5:2e:51:0a:66:b6:84:
46:6d:11:5f:3a:0d:e0:db:70:9a:8a:8e:47:ee:8d:
7d:3b:ff:1d:d2:c4:27:cd:c6:09:9d:3a:c3:02:3d:
a8:1f:f6:88:fa:5a:c9:c7:f2:39:4a:a6:01:dd:7a:
7e:42:fe:3d:01:08:d1:fe:bd:0b:45:41:b1:f8:a8:
81:e8:24:43:e0:f0:40:d4:39:45:dd:92:38:35:15:
b3:6e:2a:73:de:59:1d:83:7d:74:1a:05:ed:7d:bb:
4a:1e:44:b9:fc:f4:eb:db:7d:7c:24:85:3e:6d:29:
c1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:65:38:A6:B6:49:EF:F0:8F:7D:54:BB:DD:3D:6B:54:F5:DB:9C:BD
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWU4prZJ7_CPfVS73T1rVPXbnL0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
a7:85:40:f4:08:04:70:b5:e9:58:18:a7:36:9e:4c:d8:e2:41:
72:77:25:09:f0:59:d1:e4:a6:ef:5e:d8:48:27:7f:41:b2:05:
0d:23:1c:8d:be:cf:e6:ca:36:c5:cd:d8:77:91:68:21:71:42:
78:ff:bc:22:ab:ad:10:a2:dd:2e:5d:ce:fd:c2:91:1b:d2:d2:
15:de:7f:67:f0:39:8b:00:4a:37:a7:ca:30:d8:e1:67:43:74:
0f:8c:ab:e2:ff:0f:4a:e9:62:ff:9c:1f:52:c8:92:c6:fe:a3:
eb:57:84:4d:be:db:86:5c:7a:16:ad:40:5c:a9:27:94:24:f8:
38:d8:3f:bd:4e:18:0e:4f:7f:99:ef:ff:f9:70:5e:8c:db:20:
1a:e3:27:8d:c7:9b:8c:af:12:e1:0b:b0:61:9f:37:b6:b2:57:
90:82:1a:62:98:27:3c:09:16:b6:8f:a8:a4:f5:04:fd:e6:6a:
b1:78:81:48:2c:12:83:ac:49:4f:01:3c:41:82:83:88:9e:20:
78:1f:6e:59:1b:fb:25:86:7c:40:0c:5e:48:bd:b1:90:ba:76:
a8:b3:de:50:d1:64:55:b8:48:a8:17:d9:df:c0:1a:c2:4c:f1:
33:c5:cc:02:af:92:7c:c2:dc:c8:2c:7a:c0:82:93:40:f2:03:
9f:64:cb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org