Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa
File: fu4t5ddBHrgasEC7gWY4MNmZhVM.roa (raw, json)
Hash identifier: rqQYdVRb+yOI+uy7hrS64IXJPN1sl45i75y3cH7nyPQ=
Subject key identifier: 7E:EE:2D:E5:D7:41:1E:B8:1A:B0:40:BB:81:66:38:30:D9:99:85:53
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CE2
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa
Signing time: Mon 15 Jan 2024 21:23:36 +0000
ROA not before: Mon 15 Jan 2024 21:23:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 210.63.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3298 (0xce2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:23:36 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7EEE2DE5D7411EB81AB040BB81663830D9998553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:4f:0a:6c:8a:69:e4:3f:0f:c0:b5:bf:e0:
24:16:d3:ad:c8:eb:7d:ab:6f:03:69:9b:e7:6d:a1:
4e:c4:e0:eb:7e:5b:02:af:e1:5e:a3:c4:4d:c8:65:
0d:c4:07:88:60:65:fa:45:52:25:39:ee:57:54:61:
25:06:89:8a:c5:fe:b4:2b:9d:c8:05:50:8f:b2:75:
c3:29:67:38:70:50:f3:61:3a:d2:46:d9:5e:0b:bb:
27:fc:e3:c9:da:db:f9:16:b6:cb:c4:7b:15:b6:ea:
c2:94:5c:8f:ee:38:e0:00:2a:9b:74:b5:48:31:a7:
63:42:2e:cc:e3:a7:24:a3:ea:8f:46:8b:51:4d:61:
d4:c5:25:f6:ef:c4:3c:5d:67:a5:95:8d:ae:08:ed:
40:d0:bb:0d:97:cf:10:6b:2d:5c:ba:23:b7:4c:a4:
09:17:61:54:6f:65:f2:1e:10:a0:c3:23:7d:eb:5e:
a1:a7:e6:f3:b0:10:61:97:05:81:8e:e1:23:e9:d7:
97:e3:ad:63:35:a8:5c:b1:2e:89:fc:d2:cb:22:91:
b3:ca:df:85:59:1c:7d:d7:f0:21:3b:e5:9e:d7:37:
3c:a6:a2:43:ee:b9:57:f9:b1:52:8a:d0:51:eb:65:
6d:2e:ab:42:a6:4a:85:e4:48:c1:d5:ee:c4:f1:43:
2a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EE:2D:E5:D7:41:1E:B8:1A:B0:40:BB:81:66:38:30:D9:99:85:53
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.253.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:c8:26:c8:45:87:02:81:f2:9b:29:ce:e8:e0:8d:80:4d:d9:
67:d8:4e:2d:fb:4d:a1:7e:20:06:f7:b7:38:b8:21:d7:55:4e:
f2:b0:45:e9:c7:18:5b:b1:2d:4c:d4:dd:b1:a8:9e:8d:dd:34:
f0:ad:38:ce:7a:86:b8:05:06:30:e7:3b:fc:f5:1c:8e:d4:50:
6b:4b:5c:47:ed:e1:12:84:58:c0:8f:f6:13:d5:83:db:84:f9:
65:47:e9:40:4c:8a:94:f0:b7:1e:18:3e:a0:63:40:ca:4a:df:
0d:45:c7:0e:76:e0:f2:ce:02:85:92:31:4f:19:91:9d:e2:d2:
27:88:ec:17:86:08:14:a9:e7:98:7d:9f:5f:e9:e9:ee:d7:c5:
1b:62:a0:de:fb:7e:f5:1f:65:16:02:96:1c:23:e6:f2:77:b7:
5d:60:48:9f:fe:24:39:07:2d:85:b1:8c:a2:b4:ce:d1:e2:d9:
fa:ec:b4:12:20:8e:ca:0f:e8:ff:48:d5:4d:85:b3:98:d3:ed:
30:cb:c0:16:c0:cf:d9:1c:ed:14:7b:11:c9:ac:a2:76:6d:fa:
90:b6:86:02:91:4b:cf:ea:0e:a6:4f:b4:a9:55:fe:13:01:8b:
ca:49:a3:b3:4f:38:79:2c:55:13:da:f0:08:a9:d9:bd:39:8b:
02:a9:bd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org