Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dKc45e4eDhQNLHQv1NPJHqetXjs.roa
File: dKc45e4eDhQNLHQv1NPJHqetXjs.roa (raw, json)
Hash identifier: isE6hpDXogA0UYNdS2/RAAK4zjZd92uNiy4+hXW3y+o=
Subject key identifier: 74:A7:38:E5:EE:1E:0E:14:0D:2C:74:2F:D4:D3:C9:1E:A7:AD:5E:3B
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D5A
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dKc45e4eDhQNLHQv1NPJHqetXjs.roa
Signing time: Mon 15 Jan 2024 21:26:08 +0000
ROA not before: Mon 15 Jan 2024 21:26:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.63.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3418 (0xd5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:26:08 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=74A738E5EE1E0E140D2C742FD4D3C91EA7AD5E3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a9:68:81:fa:87:ad:74:81:9d:54:96:57:a3:
f6:c8:b1:e7:6b:56:20:a4:b4:85:b9:92:24:93:dc:
d3:98:b4:f8:d2:3d:93:5f:e5:81:f8:11:cd:fc:b0:
e2:db:a4:af:48:38:34:30:a8:54:12:59:63:9f:c6:
69:59:6e:4b:8e:ea:79:b4:2a:23:18:6a:fd:b8:90:
70:e7:82:b0:48:1a:79:f7:f2:73:86:60:e3:88:8e:
45:52:2a:4e:0c:37:a6:4e:2f:f9:e6:08:58:8f:4c:
09:e0:ba:4b:8a:bc:94:90:8b:ab:2d:be:31:5c:62:
95:7f:8e:ba:ef:44:df:be:1b:70:94:da:4f:cf:92:
a7:f8:23:ad:63:2f:03:27:e0:95:4b:2b:e3:f6:56:
b3:30:a0:60:bb:ba:66:9d:10:47:04:81:3a:dc:68:
00:d5:2e:cb:b9:79:d5:89:bc:70:71:1e:70:e2:e9:
b0:e0:4a:3e:26:03:37:a2:8d:f9:f1:b6:e2:d7:ee:
3c:da:1e:e5:d3:df:d9:6b:91:b5:d7:01:2f:fc:ad:
c5:40:79:3f:ab:74:53:96:93:91:76:5b:c5:51:7d:
33:05:46:3e:e3:93:8e:1b:5c:57:9e:28:63:87:35:
fb:ec:e4:14:45:d9:c3:69:82:8d:af:5d:07:8c:c8:
b7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A7:38:E5:EE:1E:0E:14:0D:2C:74:2F:D4:D3:C9:1E:A7:AD:5E:3B
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dKc45e4eDhQNLHQv1NPJHqetXjs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/19
Signature Algorithm: sha256WithRSAEncryption
5c:8b:06:57:da:f5:69:cb:a0:65:3c:e0:3d:e2:0d:81:d5:2c:
2a:5f:67:79:77:65:f5:e4:37:87:80:3b:45:90:4e:a5:ef:c7:
a3:62:56:f3:2a:0f:59:ce:4e:50:72:ed:2a:8a:29:98:6a:da:
4d:5c:a1:e2:bd:55:10:f8:3b:82:80:80:65:11:2b:17:ea:73:
dc:21:f0:7c:14:80:fa:a6:80:a3:9a:df:4f:ee:c5:ec:10:e3:
57:12:b0:9b:e9:07:b0:ba:a8:f8:26:5f:84:b3:da:a3:0a:0c:
27:84:51:4a:26:d7:68:06:c0:f0:b5:8a:f3:e5:77:a3:6d:3a:
5f:9b:cf:8b:2e:3c:42:12:6c:fc:2e:ee:d3:5a:4d:72:35:dd:
fb:76:93:e9:67:97:6a:5e:aa:2c:e5:5b:53:62:41:b5:84:e0:
3d:61:51:61:28:b1:5b:f5:5a:52:ed:28:92:6c:68:ca:62:ad:
21:67:3c:0f:bc:61:22:d7:11:a3:0f:02:a0:80:95:f7:5c:fb:
f8:ae:fb:dd:38:5e:a1:5e:14:17:a5:b7:85:f4:36:26:b4:c3:
63:cb:d8:3f:34:6f:80:47:98:eb:5a:a0:65:ca:f1:34:0e:7f:
02:14:c0:3f:ef:ec:0d:95:33:96:66:80:35:02:bf:46:45:92:
d5:79:7b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org