Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa
File: aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa (raw, json)
Hash identifier: K0cBHvD4iX+jyvWTchmKAGwYXUP6iJCul8CXaKVUsGY=
Subject key identifier: 69:6B:B2:18:93:50:A4:15:74:87:41:AD:BE:61:82:19:84:3C:7E:6E
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C56
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa
Signing time: Mon 15 Jan 2024 21:09:05 +0000
ROA not before: Mon 15 Jan 2024 21:09:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 203.79.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3158 (0xc56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:05 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=696BB2189350A415748741ADBE618219843C7E6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7f:43:37:f9:6b:a7:1a:83:69:09:70:ce:f9:
8a:9c:02:e4:ca:73:b0:8d:89:0f:ac:d2:b7:01:c7:
32:40:48:92:d6:5d:fa:b2:47:57:91:37:73:8c:22:
8c:0a:73:28:10:95:c1:0b:fd:bc:c2:4c:3e:a0:53:
d0:0b:a7:bb:d5:ef:2b:bf:01:1d:9e:52:76:a8:a1:
8d:e7:bf:fc:b2:14:ee:7e:9e:8d:95:1d:16:60:5f:
0f:e8:29:83:64:cf:3f:2c:d7:47:77:f8:5c:1d:1a:
00:bd:68:5a:04:0e:b6:76:35:4a:b4:07:c5:77:1c:
c0:db:ac:a0:6c:87:c2:5d:7b:aa:1a:41:d5:84:53:
d9:e2:04:b4:06:ca:b2:75:1a:0c:64:ec:5e:5b:c8:
30:b6:16:6e:74:03:62:1f:a0:cc:98:56:04:58:31:
03:26:a5:b7:e7:a9:a7:b5:5e:b9:8d:7c:74:8c:d7:
a7:38:58:83:18:10:6a:fd:69:59:1d:c6:3f:59:ab:
47:29:66:e4:87:2e:7d:01:03:c2:94:a3:46:a0:b4:
f5:a5:ae:be:97:17:f1:61:f8:fa:b5:96:c7:d7:51:
7c:c7:34:9a:d5:f7:6d:5f:82:31:55:58:d4:a3:56:
ad:2b:f9:b1:28:b1:ab:44:1d:68:83:3c:e6:51:84:
d4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:6B:B2:18:93:50:A4:15:74:87:41:AD:BE:61:82:19:84:3C:7E:6E
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.192.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:57:17:29:a6:0a:ee:23:a8:27:97:98:da:65:9a:b3:04:0b:
5c:5e:67:35:ee:be:eb:7c:98:f3:a9:c4:01:79:ad:dc:ca:1e:
76:6f:6b:44:27:90:82:da:87:0b:d0:2d:46:f9:96:5f:d7:01:
53:07:5a:45:d6:d6:9c:2a:2d:2d:e5:53:81:ab:62:28:35:ab:
82:44:6a:a6:6b:ff:47:2b:34:8e:bb:94:c9:71:46:4e:17:55:
5e:7f:00:2e:3e:2d:b1:d9:e1:3f:f9:d0:3e:a1:02:82:8a:47:
be:fa:89:90:e5:35:11:af:2c:03:bb:1b:38:0d:fe:05:b0:61:
ae:20:bb:81:37:8b:5d:ff:b6:02:0e:27:5f:ed:75:86:8e:43:
36:da:8b:4d:9e:98:19:75:18:37:ea:02:ec:b2:d4:9d:5f:63:
86:fd:c1:a1:26:d9:37:ef:2b:ca:53:78:4f:bb:d7:09:93:9f:
7d:ea:23:76:48:9c:a4:77:6a:ce:77:13:b2:f0:6b:e7:d5:9c:
d8:89:06:5e:6b:50:99:73:12:05:1f:20:89:c3:13:b4:30:69:
c7:d2:84:72:2a:62:a9:b7:78:9b:b3:3d:7b:c0:2a:4a:95:13:
09:e6:62:3b:7b:47:5e:42:1d:4e:48:8e:17:39:90:bd:be:71:
d7:5b:bf:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org