Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/toCLyUUJLWmXGMGfocV2L4qIaUg.roa
File: toCLyUUJLWmXGMGfocV2L4qIaUg.roa (raw, json)
Hash identifier: AVfH2BaYllTgssX9QFgHc+pOXFCOBhWrP61ejkgF/Xs=
Subject key identifier: B6:80:8B:C9:45:09:2D:69:97:18:C1:9F:A1:C5:76:2F:8A:88:69:48
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D7A
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/toCLyUUJLWmXGMGfocV2L4qIaUg.roa
Signing time: Mon 15 Jan 2024 21:28:50 +0000
ROA not before: Mon 15 Jan 2024 21:28:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.63.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3450 (0xd7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:28:50 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B6808BC945092D699718C19FA1C5762F8A886948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d5:1d:83:7c:49:10:42:71:73:32:b6:bb:49:
b1:27:62:57:5c:16:c3:38:2e:12:f1:6d:79:74:88:
9c:c5:28:c4:39:fb:16:d9:59:9c:3e:fa:6e:4f:59:
d6:d6:0f:d9:79:bf:3b:44:03:6e:dd:fe:ba:16:1e:
8c:d2:6e:e1:a3:43:b7:9a:ab:ce:e5:e7:71:7c:44:
74:ae:df:40:a2:cf:00:98:d0:b1:f3:2d:e8:c0:78:
6e:12:a4:e0:13:60:27:57:0c:11:ab:d4:ac:93:db:
5b:ce:45:08:fa:13:47:1d:af:83:35:cf:70:0c:9c:
a5:d4:f7:bd:2c:bd:91:47:72:27:95:b8:86:f9:bd:
ac:72:40:e8:32:3f:3f:84:cf:3c:09:4a:78:e2:70:
38:e3:f6:29:06:17:64:78:af:d6:00:69:bd:54:d3:
d6:43:ce:2a:a2:1e:83:ab:ff:1c:ad:de:b1:d0:bf:
db:04:1d:e4:d6:f7:48:88:ee:52:05:1e:f0:3c:60:
93:d6:2e:67:79:12:4f:f6:11:cd:51:45:14:a1:0d:
48:47:04:4c:f7:b8:94:78:5c:c3:9c:29:95:76:90:
bc:21:b3:02:a4:d6:4b:20:93:be:10:11:de:ea:be:
e4:98:92:09:ca:cd:03:3c:3c:a7:53:d0:02:91:82:
58:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:80:8B:C9:45:09:2D:69:97:18:C1:9F:A1:C5:76:2F:8A:88:69:48
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/toCLyUUJLWmXGMGfocV2L4qIaUg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.208.0/21
Signature Algorithm: sha256WithRSAEncryption
5b:8d:88:fa:44:73:62:47:3a:41:52:3d:36:bb:11:ff:4d:87:
ab:6e:4a:28:cc:d9:9c:02:4c:47:94:dd:1c:d7:ef:dc:03:20:
67:76:b1:f4:a4:88:0c:36:fd:e2:c2:0f:8a:77:31:90:36:5f:
03:ac:8a:bc:f6:42:4f:ea:28:08:5a:df:d5:3d:4b:f7:d5:79:
71:0c:0c:30:69:a8:ec:34:21:83:5b:4c:d0:0e:cd:86:3f:ea:
07:5b:46:b8:27:27:4a:96:2f:96:7f:f5:cd:2d:e6:b0:46:e0:
74:ac:f6:65:c6:80:1d:31:7d:e6:10:66:11:42:d9:86:4f:69:
ef:66:f4:f3:c0:b4:5b:50:93:56:5d:8e:14:71:c0:ba:64:ab:
b0:74:63:e8:82:47:27:e8:e5:d9:89:86:56:e4:e7:5b:9b:e8:
42:9c:1a:b5:b8:38:2e:10:12:78:f0:97:47:ef:8f:c5:8a:4a:
99:f3:e8:db:15:5c:c6:35:13:4a:9f:8e:37:27:26:fb:38:15:
a0:8f:57:5a:50:74:33:8b:d0:cf:a7:c3:ab:b9:8b:78:9e:a5:
c8:66:d5:8c:2a:ed:7f:33:17:50:55:84:8f:45:b4:7c:54:7a:
4f:cd:2f:e9:73:fd:80:d2:61:46:eb:97:a0:79:b9:7c:3c:52:
1b:8d:94:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org