Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/sxV7pEH1OoqVwvAD7El8FMtfgs0.roa
File: sxV7pEH1OoqVwvAD7El8FMtfgs0.roa (raw, json)
Hash identifier: etZTs/apPfl93ptZoSTFGMphe1PPTd4OrWNT1P3UX/0=
Subject key identifier: B3:15:7B:A4:41:F5:3A:8A:95:C2:F0:03:EC:49:7C:14:CB:5F:82:CD
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CFC
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sxV7pEH1OoqVwvAD7El8FMtfgs0.roa
Signing time: Mon 15 Jan 2024 21:24:08 +0000
ROA not before: Mon 15 Jan 2024 21:24:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 222.157.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3324 (0xcfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:24:08 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B3157BA441F53A8A95C2F003EC497C14CB5F82CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d1:6f:17:d4:d7:d9:bc:6c:f0:39:8a:23:77:
4f:47:3f:38:fa:15:02:cc:27:4b:7e:95:78:84:d0:
a3:5a:b2:1a:df:fb:a4:d6:8c:75:15:b4:f7:49:15:
b3:55:b6:9c:48:38:d6:02:e7:01:1e:38:ca:46:91:
58:09:f2:37:1c:aa:89:e1:03:6b:58:db:53:9a:7c:
2f:8b:1a:c6:42:ea:bc:86:4c:36:07:f8:48:b2:24:
2c:20:11:50:d6:f2:6c:73:e9:9e:4f:df:91:9f:37:
a5:f3:86:62:57:e3:bf:cd:29:37:89:63:e9:54:e8:
f7:63:81:be:9f:77:3c:c7:0a:d0:cf:57:5c:71:34:
f1:f8:65:ab:32:c1:8d:85:6a:c9:de:2b:44:fa:b7:
e6:5e:94:48:bf:ba:ca:81:85:25:5f:f6:e3:cd:3e:
25:47:cb:dc:6e:b2:cf:9f:22:c8:73:a2:11:1f:cd:
90:e8:ac:40:5c:d7:b2:e7:29:8b:5e:17:27:b0:f7:
37:ae:b6:7d:00:aa:5b:5a:86:c8:ae:6a:73:ad:1e:
1d:11:39:f7:5a:78:f8:61:ff:db:f1:b1:32:af:00:
5e:6a:8d:b0:67:5f:b3:71:ea:87:85:75:1c:2a:60:
a6:f9:46:22:14:e5:90:13:15:34:26:14:8d:48:b2:
f8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:15:7B:A4:41:F5:3A:8A:95:C2:F0:03:EC:49:7C:14:CB:5F:82:CD
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sxV7pEH1OoqVwvAD7El8FMtfgs0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c8:a1:da:2e:32:1c:55:3b:58:bf:c7:8f:5a:9f:01:21:dd:b1:
f6:58:cb:49:e0:e1:00:64:03:41:9d:7f:41:43:e2:85:7e:99:
9c:b2:16:5e:db:59:3a:2d:02:97:43:1a:f9:2f:42:92:80:39:
fe:a9:fe:ec:00:7e:c9:75:e9:2c:11:a1:68:95:7c:96:5d:31:
eb:a8:8b:33:a5:25:eb:1c:25:79:8f:c8:04:79:97:9e:2a:ff:
2a:82:a1:fe:36:74:71:c7:b6:b6:06:68:fa:ef:cf:1d:85:2b:
98:84:11:ee:1f:2b:d4:45:b8:35:32:6c:e9:89:ef:0d:b4:d2:
dc:29:72:59:23:b1:0e:6d:4e:f5:a0:1a:9e:d8:2a:47:b8:ea:
c4:fb:91:d1:2f:a6:3c:ab:f0:b7:61:06:3a:f5:9b:df:8f:3d:
59:59:a1:17:e2:8a:bd:15:cf:c3:b5:19:a9:08:e2:33:d5:a5:
a3:58:d8:cb:6d:a7:e7:eb:64:3b:80:b4:c3:49:d2:12:d0:78:
f2:87:37:20:bc:e1:de:1c:ff:18:72:5d:3d:b6:c5:94:2b:f2:
a8:54:c5:35:e2:aa:06:ec:9f:42:b2:27:09:c2:71:71:89:52:
01:ec:5e:16:5c:8d:ab:0e:ef:df:81:43:13:cd:27:51:69:90:
b1:e9:37:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org