Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/vHai-EIeNeIfasFjsbHImSkIr4M.roa
File: vHai-EIeNeIfasFjsbHImSkIr4M.roa (raw, json)
Hash identifier: YFrEzGBLB41C3B3Tzc8UqROTuFCxSRRhcKScwWy09n0=
Subject key identifier: BC:76:A2:F8:42:1E:35:E2:1F:6A:C1:63:B1:B1:C8:99:29:08:AF:83
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DAC
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vHai-EIeNeIfasFjsbHImSkIr4M.roa
Signing time: Mon 15 Jan 2024 21:30:04 +0000
ROA not before: Mon 15 Jan 2024 21:30:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 218.35.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3500 (0xdac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:30:04 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BC76A2F8421E35E21F6AC163B1B1C8992908AF83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0c:64:96:ba:48:4b:88:e7:e0:fe:fe:e5:7f:
39:c0:79:72:b5:eb:a1:30:77:52:b4:00:be:9f:b3:
bf:5d:c0:5c:9e:ab:d0:19:07:2f:53:51:79:9f:2a:
df:66:72:eb:3d:2d:01:1b:f7:d4:92:62:ab:58:35:
e4:4b:d4:7b:f0:e8:db:02:e0:c0:46:57:e4:b0:d4:
a5:ff:68:ae:ba:7b:b2:e9:a7:97:71:87:4c:26:eb:
6f:c7:5b:25:b0:f7:8c:30:fc:4b:56:47:23:2d:89:
10:fd:54:f1:ae:93:00:86:a8:c3:37:13:58:c3:0c:
bc:b5:e1:b1:17:f0:70:4c:46:c8:ce:fb:54:2f:1b:
22:94:32:51:b9:b6:cc:fd:f4:9b:4f:2f:cd:6c:22:
21:42:dc:ea:cd:ae:85:65:1d:25:f3:9c:7a:83:c1:
00:3a:d1:8e:8a:96:ce:1c:b4:28:f9:3d:7c:4e:17:
93:2a:06:b8:d1:29:3a:c9:ba:94:48:df:3f:67:ef:
b7:8a:df:69:e3:8b:4f:a2:f3:e0:f5:5b:73:f9:46:
3a:11:37:e3:49:fc:e8:40:77:8f:9a:aa:f8:ed:fd:
2d:da:64:f4:3b:3a:40:34:9c:26:c0:5e:cb:97:fc:
d4:c0:b5:a8:3c:ad:bf:92:86:ea:4e:cd:eb:ee:50:
b9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:76:A2:F8:42:1E:35:E2:1F:6A:C1:63:B1:B1:C8:99:29:08:AF:83
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vHai-EIeNeIfasFjsbHImSkIr4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.8.0/21
Signature Algorithm: sha256WithRSAEncryption
24:e9:22:eb:cc:2c:06:e9:3c:63:37:08:23:dc:67:20:8a:2a:
82:af:9c:aa:5e:ed:17:e4:4c:6c:5d:2b:fe:7e:ee:60:7a:20:
28:fe:3a:30:f7:e3:64:c3:9a:f0:82:f6:59:e1:f2:bc:ad:d1:
51:0d:89:08:66:b5:ca:d4:9e:a0:3d:89:fe:65:da:ef:41:9d:
e9:8e:ea:4e:a2:0e:f6:a6:4f:12:1f:cb:22:dc:0e:b6:7c:b8:
1c:b8:7f:18:a7:59:d2:4a:1f:fa:8d:bb:a3:ff:b7:99:11:15:
ec:8c:75:ea:e9:57:ec:d9:4b:76:c1:56:5c:16:48:c2:6e:0e:
8c:4c:53:0c:0f:22:14:75:90:64:06:c9:86:f8:9e:cf:a5:5f:
20:df:46:cc:07:e7:3a:12:a5:cd:0e:1f:b3:3b:2f:ed:60:e0:
b1:62:68:8c:dc:71:2d:27:a3:32:de:82:a3:17:0c:d1:8c:69:
a0:8c:80:bb:42:3e:39:36:f0:85:40:0f:2e:a5:a8:36:cc:b3:
6d:fb:57:7a:d0:8e:74:34:87:d5:3d:ca:83:00:47:7b:5d:35:
8d:a5:f5:80:ed:07:6f:fc:d4:66:75:6c:38:0c:32:e2:0c:b7:
6b:b3:0f:86:4e:5b:b6:42:a8:9f:fb:18:70:ae:6b:ca:8e:29:
8f:2a:b4:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org