Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa
File: sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa (raw, json)
Hash identifier: 433RI8GYX8EV1efMyWbb9tNxBoFODmf5z6CzQh+q8Fg=
Subject key identifier: B0:9B:D7:2D:F1:A8:E9:94:14:65:F9:91:2B:92:CB:27:1E:4F:7B:04
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0C72
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa
Signing time: Mon 15 Jan 2024 21:09:34 +0000
ROA not before: Mon 15 Jan 2024 21:09:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.200.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3186 (0xc72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:09:34 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B09BD72DF1A8E9941465F9912B92CB271E4F7B04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6b:0a:dc:b5:e8:dd:b7:0a:a5:56:92:50:1e:
68:37:b9:00:9e:b4:c3:35:3f:df:1f:1b:53:8e:1a:
49:a6:2b:e7:5b:8b:6f:7e:9d:b2:f1:1b:b8:86:cb:
cc:a0:9c:64:c4:1f:81:4f:d9:d5:b7:d3:4c:9d:33:
25:62:d3:12:03:44:c7:d8:e5:8b:e5:1d:7a:1d:f6:
db:46:de:e5:e3:bc:ff:19:16:df:41:6e:20:e6:ea:
ba:0f:37:4a:c8:8a:36:69:69:ae:1e:fd:58:a0:5f:
1f:2e:c4:2a:5f:df:77:00:d6:5e:2c:c4:d8:6e:1d:
66:61:5c:7a:c1:5a:9e:46:56:09:fe:6a:60:48:93:
ab:20:66:35:ee:ad:8a:15:76:6c:57:e6:7e:e6:ea:
7b:d3:79:b1:5d:11:7e:91:7a:7b:ac:05:0b:ff:07:
ac:9d:04:5d:2e:de:25:e9:9f:1d:a5:44:16:36:32:
e9:5c:20:34:b7:b9:c4:d3:bb:e6:82:bd:a1:64:29:
1d:0d:c1:2f:e3:b2:56:6a:f5:6c:9e:e0:b2:84:55:
d8:7c:4a:a5:30:17:95:de:ff:7a:2f:af:80:ba:f2:
94:06:36:35:55:a8:74:35:92:90:17:57:e4:be:a8:
6f:a1:f2:ee:41:2c:3e:5b:d9:1e:ec:0f:e8:8c:56:
40:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9B:D7:2D:F1:A8:E9:94:14:65:F9:91:2B:92:CB:27:1E:4F:7B:04
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/18
Signature Algorithm: sha256WithRSAEncryption
73:a6:33:10:eb:e8:35:73:cd:b0:c8:29:b3:37:9e:4e:d4:f4:
36:94:8c:64:b3:75:e6:1e:ef:4d:75:fc:cd:49:a6:35:a9:34:
09:05:79:f7:9b:27:03:39:c9:2f:90:88:56:51:ba:3f:9e:26:
df:2e:d4:7d:2a:bb:65:4a:60:b8:38:52:1c:8a:0a:4f:b3:ff:
4c:14:7f:d9:01:57:2a:65:d9:64:44:0b:36:e9:1a:1d:a3:f7:
01:04:62:db:db:d1:2c:41:ff:bd:01:ee:da:10:31:d3:8d:a1:
cd:41:b2:67:e8:89:d7:0d:d2:46:3a:fa:45:9a:91:a6:dc:cf:
c5:ad:6e:b9:31:95:60:ef:d7:2b:bc:4d:2e:0a:21:41:db:ee:
bf:59:e5:cc:b1:e1:28:3d:1e:40:0a:53:d9:ff:19:0c:eb:f9:
b6:17:fd:a2:8a:c4:74:98:02:e3:78:25:ec:79:86:9c:75:71:
ec:9f:dd:68:32:a0:e0:d6:6b:71:c7:3c:79:79:67:8f:50:e5:
af:21:e9:56:84:44:70:12:05:f6:2e:8c:f1:b3:2c:6f:95:a2:
6e:0e:c0:e0:3f:f9:a9:9f:e2:a9:50:bf:18:e1:b2:5c:29:43:
6a:9c:d8:2f:5c:4c:c7:b3:67:92:26:c5:4f:d1:a6:08:98:f8:
44:69:1e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org