Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dq0eh-yQB1FOnY7PBNz001j9ync.roa
File: dq0eh-yQB1FOnY7PBNz001j9ync.roa (raw, json)
Hash identifier: hBwpQ55Wr4iAEsydXdk045/coW4kGICsacrK5bopkFs=
Subject key identifier: 76:AD:1E:87:EC:90:07:51:4E:9D:8E:CF:04:DC:F4:D3:58:FD:CA:77
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C52
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dq0eh-yQB1FOnY7PBNz001j9ync.roa
Signing time: Mon 15 Jan 2024 21:09:01 +0000
ROA not before: Mon 15 Jan 2024 21:09:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 203.79.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3154 (0xc52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:01 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=76AD1E87EC9007514E9D8ECF04DCF4D358FDCA77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3b:aa:38:2f:a7:17:1f:8d:08:8e:28:b3:77:
a3:66:da:ba:71:82:15:ef:ec:78:a5:66:99:ff:b6:
dc:aa:d1:b7:4b:d5:10:c7:57:a7:8f:d7:21:db:bb:
7d:ec:2b:32:97:80:f8:5b:33:cd:b2:d6:e3:63:98:
31:e5:aa:ea:50:f9:98:ca:af:c6:b5:6e:35:cc:7b:
20:87:a1:a9:fa:18:e4:1b:0d:55:f0:24:ff:30:59:
83:8d:9d:6a:25:9f:75:86:a3:8b:7d:26:84:5c:1a:
7a:07:8d:93:9a:35:62:f5:e6:cd:23:35:d3:67:05:
bb:76:9e:6f:cb:75:14:93:4f:16:b3:67:72:5b:d2:
3d:7f:c1:01:bf:ac:06:07:1b:d5:b8:e1:2c:b4:3d:
5b:54:e7:8e:d9:56:c6:3a:01:11:76:6e:fd:a2:83:
6b:d4:19:e8:dc:9b:9c:e3:3c:30:3a:70:36:23:e2:
04:24:27:0b:a6:1e:36:33:0f:6e:2f:1b:ef:9b:6a:
68:57:ff:2d:7d:7b:09:e7:96:f5:29:fc:a5:36:9b:
66:d8:92:04:92:be:92:42:f2:a0:7f:e5:c7:74:cc:
21:4a:58:18:c1:68:8e:81:44:f3:0b:be:e4:9c:90:
09:79:47:88:6f:20:ae:d0:dd:d1:92:65:53:97:77:
6f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AD:1E:87:EC:90:07:51:4E:9D:8E:CF:04:DC:F4:D3:58:FD:CA:77
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dq0eh-yQB1FOnY7PBNz001j9ync.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/18
Signature Algorithm: sha256WithRSAEncryption
7c:70:75:fe:74:a2:34:2c:3d:48:b6:de:76:aa:35:79:23:07:
a2:b5:9f:6c:8e:f3:2c:8a:f2:d5:d7:b4:e7:0b:f6:04:23:fc:
07:53:6f:06:94:e6:0d:40:29:60:54:17:1c:ab:9f:9b:42:30:
c8:ad:62:e3:f9:27:3d:49:7e:db:c4:08:ab:b7:f8:b3:91:90:
b9:2d:80:4c:c8:9a:5c:9d:ce:19:55:97:a5:07:e3:b6:04:bb:
fd:2c:19:58:67:8c:b6:d7:97:60:fb:7d:ed:34:f4:ec:e5:99:
bf:16:e9:f8:da:39:f2:92:01:15:30:76:e5:ec:cf:8e:79:17:
09:c8:dc:f4:05:2b:f7:f0:49:4d:98:2c:5b:4a:f2:c0:73:4d:
f8:09:19:e0:8a:46:77:5b:85:30:b4:bb:07:d7:2f:b0:a7:12:
23:15:53:7a:3a:9f:1f:1a:e2:ff:86:b4:37:91:47:5d:b4:52:
f6:8a:43:0d:97:78:84:04:f2:51:ff:d7:fd:d6:2e:8a:9a:4b:
7e:5e:63:45:31:96:81:15:d0:47:75:f7:18:b7:96:8e:7e:66:
f3:ad:bb:a4:b5:9d:eb:9a:ad:b1:a9:c7:e9:37:4c:ad:98:55:
4c:7c:f3:4a:3a:8d:cb:1e:dd:01:d2:4a:a1:4e:da:34:e5:84:
f6:77:d6:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org