Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa
File: cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa (raw, json)
Hash identifier: uqPEPjuVXjHYOHPXrOjzYvIxZJVbAfEGqSzC8u8sw4g=
Subject key identifier: 71:86:20:69:00:DE:17:8F:31:62:C1:A2:F6:57:A7:51:FE:C2:B3:96
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C50
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa
Signing time: Mon 15 Jan 2024 21:08:59 +0000
ROA not before: Mon 15 Jan 2024 21:08:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 203.79.128.0/17 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3152 (0xc50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:08:59 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7186206900DE178F3162C1A2F657A751FEC2B396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:aa:87:c5:e6:91:bf:34:85:d6:ef:6c:27:22:
7d:0a:d5:3b:dc:95:aa:2a:4a:49:8f:38:9c:1e:02:
bb:c2:94:bf:e1:70:ad:cf:8b:9b:fd:fb:73:05:b6:
ad:36:06:1e:2c:7c:8a:48:5e:46:5e:e1:f4:60:0a:
ca:f2:91:5e:db:e1:73:c3:2b:95:d3:13:b9:85:82:
ca:e8:04:c5:44:0a:6c:5c:12:ee:37:3b:fa:62:87:
b4:bc:14:2e:a7:c4:80:35:68:45:00:e3:c9:e3:49:
5c:a2:80:a5:a7:d4:df:ae:03:47:bb:61:52:16:5e:
93:fd:2c:8b:f8:0e:19:5e:8b:b6:d4:22:d0:31:b7:
a2:52:9f:a8:bd:0d:6d:79:53:c1:7a:bc:ed:44:7f:
21:95:94:c4:40:a2:81:c3:36:24:18:f7:70:9b:00:
0d:91:7d:ff:14:87:64:9b:0e:af:53:f1:39:2f:53:
dc:eb:41:54:93:ab:14:67:b3:1f:a8:d0:15:13:e1:
ba:11:be:ed:53:dd:e8:41:ae:12:de:1d:83:1a:da:
33:b8:76:b1:13:f8:da:d7:7e:92:ec:9a:4a:5c:da:
f4:47:ee:c6:40:8e:bf:a6:b4:ac:97:60:ac:cc:66:
aa:3f:b4:54:ed:9d:f8:b7:57:d2:70:fe:9e:48:f8:
b3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:86:20:69:00:DE:17:8F:31:62:C1:A2:F6:57:A7:51:FE:C2:B3:96
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
72:23:4c:94:0e:cc:1f:77:d9:f5:67:4e:b4:0f:9b:f5:99:96:
32:ff:b7:dd:90:38:e5:e4:99:0b:5e:b0:d2:81:93:37:29:29:
c4:0d:9b:e4:6c:0f:01:f3:e1:e9:50:d8:84:8f:d0:a6:2a:fe:
13:db:e3:6f:89:33:ba:ab:23:4f:84:47:b0:ec:f5:9e:10:3b:
e0:4c:35:bf:5e:34:71:cf:bb:cd:9f:67:48:70:b1:47:05:2d:
9f:30:84:c6:19:f8:9e:2d:5a:89:4b:ff:1f:7d:2a:81:e2:2b:
34:e5:a5:26:de:38:d1:6d:66:73:61:f8:0e:d5:cf:20:27:65:
5f:56:7d:c1:8f:89:55:72:72:bc:c8:91:e4:b2:7d:15:17:ae:
74:80:8e:75:27:21:90:87:c3:7c:4a:39:24:b6:24:0b:99:4d:
14:59:59:e2:f4:1f:24:1a:a2:eb:ec:ac:68:9c:90:35:04:d6:
9f:23:d3:15:93:cc:c1:d1:c8:1a:d5:52:1c:0f:50:fe:87:8d:
7e:69:eb:33:79:6d:c8:c6:f0:e1:cc:e7:e2:be:39:3f:93:81:
17:fa:81:7e:1a:b2:7c:7d:cb:8f:bc:8d:c4:ab:5c:8c:94:56:
44:04:ac:1c:b6:a4:11:ec:d9:05:d7:a0:79:f4:13:4b:6d:b0:
06:4b:0f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org