Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa
File: mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa (raw, json)
Hash identifier: DC1Hm0Q1BPjlCmUo97njhBmx1cG/Pj3zds30lE5973k=
Subject key identifier: 9A:B7:43:7E:01:32:AB:47:E2:AB:0B:48:73:47:F9:49:A1:96:6D:A6
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CD2
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa
Signing time: Mon 15 Jan 2024 21:11:22 +0000
ROA not before: Mon 15 Jan 2024 21:11:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 210.58.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3282 (0xcd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:11:22 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9AB7437E0132AB47E2AB0B487347F949A1966DA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:37:01:f4:69:4d:73:0f:2f:51:15:f7:67:
ab:81:36:5e:68:b1:e5:ae:32:e6:d4:f7:7a:9f:12:
79:7e:21:4a:f2:51:94:08:71:8a:4a:d8:ab:af:23:
92:76:08:01:e3:cb:74:97:c5:cd:75:e0:73:12:f2:
e5:4e:25:04:d2:73:a5:7a:95:07:88:94:bd:1a:8d:
4d:dd:bd:97:36:a0:55:d5:8c:07:4d:85:df:b4:3d:
b7:6d:cb:ce:06:01:97:3e:49:d2:1f:29:1a:d8:17:
75:9f:7d:84:d8:62:6e:17:73:7b:c4:68:0f:43:f3:
50:1d:a1:97:a6:8a:9a:b3:b1:9f:68:47:67:7c:08:
00:07:2f:73:ce:0d:49:f1:8d:f9:dd:e2:0a:b5:b7:
d5:f9:db:3f:fa:e8:24:7a:9b:e9:4b:6d:31:e2:db:
1a:46:dd:45:57:5c:ad:b8:62:7f:7c:8e:90:08:19:
8d:ef:01:3c:76:61:ab:89:c1:b2:d3:d8:46:9d:9c:
33:02:19:a9:8a:5d:cd:8d:01:95:84:b8:a2:50:59:
79:fe:35:ab:8d:e4:7d:68:c3:e6:e3:5c:db:f9:e7:
13:64:b6:b2:7e:c7:ef:3d:47:03:1e:02:86:8b:57:
be:1e:c5:d6:df:f0:23:67:8b:07:cd:ff:28:25:8e:
24:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B7:43:7E:01:32:AB:47:E2:AB:0B:48:73:47:F9:49:A1:96:6D:A6
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.96.0/21
Signature Algorithm: sha256WithRSAEncryption
66:56:64:3f:32:e8:ef:6a:ff:41:e3:a0:d4:7e:67:7f:fc:ce:
c9:83:9f:f0:ab:d9:cc:b4:8a:00:00:5a:24:d4:37:f1:0c:1f:
9f:dc:03:36:05:54:ad:ed:e2:36:6d:4f:b6:06:bf:a5:8b:5d:
6e:1b:9b:8d:63:97:de:fc:30:25:f5:41:28:03:80:3e:e3:40:
94:80:43:30:bb:ba:79:a2:04:bd:b2:78:47:31:20:bd:14:69:
bb:88:30:cc:45:8f:96:ca:5e:de:8b:b1:e9:32:0f:b2:b8:fa:
c8:4d:24:4a:c4:66:61:51:de:1c:d3:62:98:6a:6f:73:66:3b:
72:92:ad:d4:1d:7c:01:90:f1:bb:e1:da:35:c8:0a:5c:37:05:
36:7c:c9:20:3d:b5:83:4f:2b:f4:8e:b3:f1:3b:83:ec:6b:0a:
24:29:4c:60:73:87:e6:24:82:d4:4e:7a:71:aa:16:fa:c8:ed:
4f:ea:33:a5:ff:0f:97:44:ee:e7:75:e6:23:37:e7:84:41:42:
68:e0:ca:83:d1:21:56:f4:80:7d:28:b9:36:53:01:13:8f:b7:
13:ee:6a:b8:74:a0:1a:cf:74:e6:7c:ce:4d:fd:7e:1d:52:1b:
13:6b:92:a7:3d:b4:80:1f:5c:73:a4:30:65:03:74:7f:1a:52:
e4:06:bf:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org