Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/u6aCy2e8G_73l_EDLnJsZJe8efI.roa
File: u6aCy2e8G_73l_EDLnJsZJe8efI.roa (raw, json)
Hash identifier: VHJ5exwMNGcQZcqiWVvKkX1sxgK4CEheKXv+20g7qLo=
Subject key identifier: BB:A6:82:CB:67:BC:1B:FE:F7:97:F1:03:2E:72:6C:64:97:BC:79:F2
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CB6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/u6aCy2e8G_73l_EDLnJsZJe8efI.roa
Signing time: Mon 15 Jan 2024 21:10:49 +0000
ROA not before: Mon 15 Jan 2024 21:10:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.202.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3254 (0xcb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:10:49 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BBA682CB67BC1BFEF797F1032E726C6497BC79F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:36:65:f9:72:e3:e7:29:75:19:cf:5a:01:59:
a1:e5:2b:ca:68:4d:06:01:5d:3c:66:8f:80:f2:7b:
4f:07:e3:b6:29:3e:12:6e:c0:50:af:cb:a0:ae:0f:
93:f8:16:64:2f:b4:c6:18:2e:07:3b:e6:2f:5f:21:
89:01:08:a8:02:21:25:a3:38:8e:5a:65:99:9f:3a:
18:3f:84:36:8c:5a:1e:e5:e6:48:66:b8:4a:80:f5:
11:b3:ad:a5:15:7a:24:e1:e0:4c:ee:95:c2:88:93:
24:e6:31:83:8a:36:6a:bd:5e:52:50:a2:c0:54:b1:
e9:43:fa:8a:d4:53:99:b1:59:bf:a8:8d:4a:71:c7:
d0:e0:7b:23:56:ed:28:e4:cb:b1:25:13:1b:f1:e9:
64:67:21:a9:7c:3f:e8:59:13:8c:51:f7:1e:98:14:
3a:cc:0e:a5:7b:63:4f:3e:b2:9d:cf:58:fe:94:e4:
a2:b6:11:44:88:cd:20:a3:7f:14:49:ef:30:8e:7c:
db:bb:a4:5f:cb:ea:6e:c0:35:3b:eb:68:ea:ba:af:
14:4c:c6:55:d4:9c:a7:1f:16:16:62:23:d1:1d:01:
bf:fe:53:5d:e0:aa:3b:bd:89:59:af:e3:de:52:1d:
ed:f0:eb:8a:2f:cc:28:75:e8:3d:4c:51:35:8b:d9:
22:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A6:82:CB:67:BC:1B:FE:F7:97:F1:03:2E:72:6C:64:97:BC:79:F2
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/u6aCy2e8G_73l_EDLnJsZJe8efI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.48.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:50:aa:9a:b9:d6:c3:5f:ed:90:0c:dc:20:a9:f8:61:f7:e2:
b5:82:a4:49:6a:96:88:4d:6e:fe:7d:f2:8d:5d:26:cb:55:d5:
2e:e6:8b:a6:17:d6:14:f2:3d:b1:c3:c0:d6:16:c5:ce:84:42:
da:ca:4d:70:28:a3:58:f7:53:d4:d4:70:81:d3:97:0b:9b:03:
7c:f8:0e:9b:4a:15:71:df:2b:07:97:32:0f:f2:bc:37:c4:97:
22:17:56:cf:4b:65:c9:a2:68:e0:d6:ef:8b:ed:f8:f7:c9:1d:
93:0d:a8:9f:b9:ad:ac:d3:5b:f2:6a:61:75:79:87:29:0d:13:
b4:b0:a6:07:a6:e3:79:8f:37:64:72:83:85:ec:50:a8:13:8e:
d1:15:b6:ff:62:ea:69:48:df:6b:37:39:c4:94:a9:fa:b2:e1:
09:89:5f:7f:67:5d:19:f6:fb:a7:a3:cc:62:d9:a8:e6:6b:ba:
a8:62:00:a9:9c:67:da:b0:12:e8:2a:65:ad:9e:c3:59:09:36:
09:15:b6:ab:9b:f6:74:c4:9c:5f:46:67:57:30:2e:33:18:49:
40:48:7f:3c:aa:f3:4d:67:49:ef:93:52:2b:ba:f0:43:a3:19:
ab:75:6a:09:ac:bf:e7:9a:0b:8c:85:a7:e8:5f:07:0b:d4:a6:
42:f3:b0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org