Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/r3JJPslSfOf3K06_diEeNS5mbG0.roa
File: r3JJPslSfOf3K06_diEeNS5mbG0.roa (raw, json)
Hash identifier: DqFuL8TU+vMmtf4V+7dQLDEuj/4rck2WYzj8Que59lQ=
Subject key identifier: AF:72:49:3E:C9:52:7C:E7:F7:2B:4E:BF:76:21:1E:35:2E:66:6C:6D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BBA
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r3JJPslSfOf3K06_diEeNS5mbG0.roa
Signing time: Fri 01 Sep 2023 08:50:55 +0000
ROA not before: Fri 01 Sep 2023 08:50:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18412
IP address blocks: 39.12.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3002 (0xbba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AF72493EC9527CE7F72B4EBF76211E352E666C6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:67:72:49:c8:7a:48:53:61:fc:e7:a2:7a:a4:
14:c7:fd:90:a2:31:00:46:9a:14:10:7d:5f:45:d9:
d3:a7:91:20:ce:37:2c:e8:8b:59:fd:e7:bb:88:ad:
ab:4a:a0:77:38:2e:26:b5:f4:f9:35:84:6f:e1:41:
c1:c1:42:8d:ec:27:ec:5e:06:fb:35:22:cf:7d:e8:
02:b2:cd:03:ca:5a:f0:6d:02:90:b7:9a:ef:ee:16:
0c:fb:c3:06:10:ed:02:43:94:c9:2b:ce:cb:38:1f:
ad:d6:34:0d:9d:c8:4f:7c:19:0e:ec:01:f5:86:c3:
17:ba:7f:de:e0:a4:2a:61:d4:0d:29:fd:fe:7f:4b:
e7:f5:6c:90:90:8e:99:3f:99:0c:23:62:55:9c:8f:
8d:54:15:b6:26:20:8a:23:65:3b:9b:4e:c2:ae:ad:
69:eb:a8:e9:9e:24:87:65:8b:40:b2:d4:73:c8:77:
c9:4f:a6:48:56:c2:6d:b1:a2:43:13:1f:3c:0b:68:
da:a6:aa:50:cc:59:9b:36:5c:4d:c6:e3:52:4d:47:
b5:56:4d:01:64:e4:ca:c7:6d:34:e2:58:2a:01:07:
41:d3:e5:b6:84:3e:91:45:cf:d3:46:ff:bd:0b:24:
f5:aa:61:9c:9f:5a:01:dc:cf:ea:25:2e:13:65:8c:
66:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:72:49:3E:C9:52:7C:E7:F7:2B:4E:BF:76:21:1E:35:2E:66:6C:6D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r3JJPslSfOf3K06_diEeNS5mbG0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.12.64.0/20
Signature Algorithm: sha256WithRSAEncryption
51:5f:19:2f:4a:5f:9e:0a:25:ed:c4:60:cb:ab:75:5a:81:ed:
13:ae:13:58:b6:c9:ef:ad:db:fc:40:c4:eb:25:d8:ed:f5:55:
8e:6b:87:f9:a0:1b:70:b9:cc:45:b4:fe:ff:0f:f9:0d:c3:14:
43:c8:a4:ee:3c:5f:a7:df:a9:fd:cf:64:03:88:c7:3d:d9:aa:
20:c7:98:54:70:4a:b8:bf:34:42:a3:80:66:dd:41:ce:fe:1f:
8f:53:42:c5:4e:6d:46:94:1b:33:0a:bf:b4:47:4e:8e:31:40:
2f:61:f5:35:2d:5d:25:ee:5c:ef:37:03:b5:f3:b6:9e:b5:cb:
ee:b3:22:60:1d:a2:3e:9c:01:49:32:74:54:6f:e7:12:0f:0c:
8d:48:65:39:f6:bb:2f:48:60:35:1b:9c:04:51:70:86:1a:7d:
08:ff:b6:97:4e:64:8a:6b:9c:99:d3:80:5a:ba:f8:de:7f:96:
12:a6:84:23:0c:27:4a:b5:21:36:88:bf:85:80:e7:93:4e:db:
c7:51:52:69:fa:63:d6:9c:96:6e:88:78:1d:53:85:a7:2a:9f:
6e:92:d8:db:0e:65:f5:fb:ce:43:82:c4:a3:47:28:3c:b0:df:
d2:7d:a4:70:a5:2a:be:87:76:32:28:66:f9:55:93:56:8b:ae:
f9:8e:66:20
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw
ODUwNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFGNzI0OTNFQzk1MjdD
RTdGNzJCNEVCRjc2MjExRTM1MkU2NjZDNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjZ3JJyHpIU2H856J6pBTH/ZCiMQBGmhQQfV9F2dOnkSDONyzo
i1n957uIratKoHc4Lia19Pk1hG/hQcHBQo3sJ+xeBvs1Is996AKyzQPKWvBtApC3
mu/uFgz7wwYQ7QJDlMkrzss4H63WNA2dyE98GQ7sAfWGwxe6f97gpCph1A0p/f5/
S+f1bJCQjpk/mQwjYlWcj41UFbYmIIojZTubTsKurWnrqOmeJIdli0Cy1HPId8lP
pkhWwm2xokMTHzwLaNqmqlDMWZs2XE3G41JNR7VWTQFk5MrHbTTiWCoBB0HT5baE
PpFFz9NG/70LJPWqYZyfWgHcz+olLhNljGb1AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUr3JJPslSfOf3K06/diEeNS5mbG0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3IzSkpQc2xTZk9mM0swNl9kaUVlTlM1
bWJHMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQnDEAwDQYJ
KoZIhvcNAQELBQADggEBAFFfGS9KX54KJe3EYMurdVqB7ROuE1i2ye+t2/xAxOsl
2O31VY5rh/mgG3C5zEW0/v8P+Q3DFEPIpO48X6ffqf3PZAOIxz3ZqiDHmFRwSri/
NEKjgGbdQc7+H49TQsVObUaUGzMKv7RHTo4xQC9h9TUtXSXuXO83A7Xztp61y+6z
ImAdoj6cAUkydFRv5xIPDI1IZTn2uy9IYDUbnARRcIYafQj/tpdOZIprnJnTgFq6
+N5/lhKmhCMMJ0q1ITaIv4WA55NO28dRUmn6Y9aclm6IeB1Thacqn26S2NsOZfX7
zkOCxKNHKDyw39J9pHClKr6HdjIoZvlVk1aLrvmOZiA=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org