Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/q_jKb0hfVLZKSsxP6ZftK-BFvR4.roa
File: q_jKb0hfVLZKSsxP6ZftK-BFvR4.roa (raw, json)
Hash identifier: zZLGbHTVOxOoeIM0xsGUu/qLw0XDfLwOQhsrvUqpb+I=
Subject key identifier: AB:F8:CA:6F:48:5F:54:B6:4A:4A:CC:4F:E9:97:ED:2B:E0:45:BD:1E
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C6C
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/q_jKb0hfVLZKSsxP6ZftK-BFvR4.roa
Signing time: Mon 15 Jan 2024 21:09:28 +0000
ROA not before: Mon 15 Jan 2024 21:09:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 203.79.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3180 (0xc6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ABF8CA6F485F54B64A4ACC4FE997ED2BE045BD1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:11:43:4b:27:f7:8b:22:80:a3:6e:fc:74:5a:
c2:e1:8b:df:6b:4f:4e:e2:d8:63:57:bc:96:eb:b7:
53:93:50:10:c5:c4:6e:3a:39:73:23:35:9d:9e:9d:
18:64:48:dc:4d:e6:ff:7b:60:89:00:46:26:30:2d:
5d:46:b4:c6:b1:3f:4c:67:58:fe:b9:a3:b7:a8:9f:
e0:0f:4a:d2:76:59:a8:cf:fc:00:17:ad:db:cc:d5:
9c:0a:a5:b5:11:21:4f:27:dd:75:9f:2b:9e:54:56:
9f:89:ac:47:f1:b3:75:74:ec:ca:58:fa:78:b3:ef:
5a:c7:b7:10:c5:a4:3f:2e:41:7a:fc:48:29:2a:4f:
7c:92:62:a9:b9:a9:62:e5:87:36:51:68:ea:7a:4b:
85:82:fd:5a:a8:2f:4a:66:a1:40:d4:3f:07:2d:89:
8e:83:79:f7:32:f5:eb:b4:c0:09:36:66:70:2b:b0:
78:7d:fa:dd:6f:a6:86:91:14:ae:9c:ac:ba:e3:e4:
02:d3:62:46:96:f0:c8:ed:f8:f3:de:57:c9:4b:b2:
80:9e:5f:4e:0a:47:b7:08:d3:11:72:43:5e:31:b9:
f1:a0:ce:86:40:d9:a4:09:48:0a:b0:09:09:73:03:
5c:34:40:34:19:ce:08:b2:99:11:ab:35:0f:57:56:
bf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F8:CA:6F:48:5F:54:B6:4A:4A:CC:4F:E9:97:ED:2B:E0:45:BD:1E
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/q_jKb0hfVLZKSsxP6ZftK-BFvR4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.240.0/21
Signature Algorithm: sha256WithRSAEncryption
4d:32:e7:c9:76:a8:10:01:54:9e:16:39:b6:45:db:05:fe:c7:
9c:02:ee:32:31:d8:ea:78:d8:39:4e:07:e5:5e:c1:ce:4d:22:
a8:6d:9e:f2:2f:7f:1c:5c:c6:03:47:51:69:34:76:e6:e1:51:
3f:c4:a6:0d:2b:15:27:df:b1:06:b5:b2:a4:88:33:a8:60:ce:
08:50:56:f3:a2:3b:35:1f:17:8a:ab:d9:1a:9e:48:fc:1c:98:
19:f4:b2:6b:19:dc:68:1f:c6:5c:81:03:5d:c0:8b:af:55:ea:
45:b0:df:39:47:1b:c2:c0:bb:59:fe:e0:e1:42:67:e2:9d:12:
ee:b4:07:f5:e9:ba:f8:41:05:e9:59:49:8d:51:0d:1f:aa:4c:
c5:b4:9c:75:f7:35:e5:f9:ce:c9:74:8e:33:d3:12:fd:72:55:
ea:5f:89:bc:eb:24:28:99:6f:ac:60:88:24:7e:a2:60:c5:bb:
47:10:1f:33:2c:1b:d7:fe:c5:24:4c:e1:b6:df:7c:d2:57:32:
bf:8f:ed:29:e6:3f:2b:c6:53:b4:ca:05:d9:8b:8f:dd:5b:37:
27:ce:a3:f1:66:9a:c0:08:f1:f6:bf:7f:e1:51:cb:ec:8f:cb:
93:e6:2a:c4:8e:bb:b6:89:b7:02:f9:e3:3f:cf:76:87:90:f8:
ef:f1:08:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org