Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa
File: qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa (raw, json)
Hash identifier: LwNDcoQtyTK/izkCvxFFi18XjZtdgf9qB25DJUBqQiE=
Subject key identifier: AA:43:8C:03:E1:F7:2E:52:A2:54:6A:B5:A7:02:46:FD:41:D4:12:01
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DC6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa
Signing time: Mon 15 Jan 2024 21:30:43 +0000
ROA not before: Mon 15 Jan 2024 21:30:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 60.244.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3526 (0xdc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:30:43 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AA438C03E1F72E52A2546AB5A70246FD41D41201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:04:63:2a:f8:54:7a:c9:97:86:a4:7d:17:53:
8c:fc:55:c4:7f:61:4f:c0:35:f0:59:04:aa:16:2c:
d9:1e:60:60:0b:e2:09:97:83:72:27:25:60:05:5f:
56:6d:85:36:10:b3:fb:4a:b7:6c:80:96:46:e1:c0:
90:78:62:38:af:ac:f8:bb:5f:3b:2b:8b:bd:a6:cb:
f7:ee:6e:bc:6d:e3:a7:b6:f7:af:d9:d8:a4:7c:b2:
12:a0:15:f1:17:5f:f7:f3:d4:92:2e:0b:31:28:5a:
2d:37:ce:74:13:69:06:6e:44:58:4f:c4:31:52:cd:
13:60:74:47:c5:44:6f:d7:d8:7b:e3:ec:08:20:33:
32:82:ac:b6:ba:4e:a5:55:d3:0e:81:26:44:13:fb:
67:54:1c:23:62:0a:a7:f3:4a:91:1d:68:b6:8d:d1:
6f:b1:04:80:0c:f4:38:eb:c1:ca:37:6c:c0:dd:f2:
7b:be:9f:67:77:c0:01:ce:63:e6:86:5a:4c:cf:fa:
56:cb:4d:65:9c:b9:95:aa:a4:6f:14:f7:02:c4:f6:
12:51:ed:d1:23:49:ff:67:57:cf:29:b1:e2:c3:2e:
84:a1:8a:7e:3e:20:ff:b5:e3:2e:14:69:8e:3e:d2:
1c:56:6a:ce:27:12:79:e3:db:c6:c3:d9:db:dd:89:
37:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:43:8C:03:E1:F7:2E:52:A2:54:6A:B5:A7:02:46:FD:41:D4:12:01
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.2.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:53:6b:db:f5:5d:f4:29:f6:28:b8:88:1e:0c:e0:08:ec:8e:
92:bf:8d:80:a7:3e:8e:0b:74:4a:34:f6:67:21:ff:9d:1b:01:
12:26:18:28:84:c5:33:1e:8c:30:9f:69:d9:eb:41:1c:2c:0e:
f7:b0:7b:1b:9d:e7:df:65:23:a0:e1:45:e3:4b:1f:47:8c:a5:
54:2d:0c:b6:c8:b9:04:35:b0:19:6c:ae:9a:96:99:24:df:b2:
13:68:f0:22:f2:9f:6b:ab:a3:cd:ef:d1:14:5d:81:4b:f7:c1:
fe:bd:81:3e:d7:6e:3b:f0:e8:e2:f2:66:c5:e3:dc:12:b7:fb:
b3:f3:71:eb:f5:d4:37:4b:88:33:3d:36:0d:da:ba:cf:ba:f8:
12:b5:e6:f8:cb:06:a0:ad:de:c7:d5:b8:9b:e2:8f:5a:81:1a:
a0:69:1b:f3:9d:74:5a:0f:c3:65:32:fe:15:53:2b:25:30:5f:
d3:79:12:10:f8:e6:49:7f:6f:47:ae:b3:80:59:b1:42:6e:02:
a1:0b:97:87:06:62:7d:6e:ac:d9:88:62:34:28:7e:2b:3b:c6:
86:5c:64:8c:ea:b2:9f:84:db:0b:c5:9e:40:c8:c4:9b:6d:2b:
c6:f9:fb:81:3b:7f:ac:2d:ce:ce:08:61:00:f0:68:e2:e1:d5:
45:00:41:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org