Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/wvHsTQq9V69KpAq6nIEgRXF0mpA.roa
File: wvHsTQq9V69KpAq6nIEgRXF0mpA.roa (raw, json)
Hash identifier: Cij4P/k95pyQM+dkBphLGZucimkB4WVy4tkstxPHQig=
Subject key identifier: C2:F1:EC:4D:0A:BD:57:AF:4A:A4:0A:BA:9C:81:20:45:71:74:9A:90
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D52
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wvHsTQq9V69KpAq6nIEgRXF0mpA.roa
Signing time: Mon 15 Jan 2024 21:25:57 +0000
ROA not before: Mon 15 Jan 2024 21:25:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 223.23.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3410 (0xd52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:25:57 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C2F1EC4D0ABD57AF4AA40ABA9C81204571749A90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:08:bd:ed:4c:a0:34:95:87:b1:23:15:68:73:
0f:24:f9:e2:40:6f:af:2b:c8:00:19:e5:6b:96:1e:
7c:fa:25:db:39:74:f8:4c:24:cc:d9:8d:49:01:ec:
1b:e8:95:9a:3a:b0:44:ad:d6:0b:06:2b:57:cb:fa:
0a:86:7a:19:60:47:bc:3e:42:b3:20:2c:8a:12:43:
af:48:5b:4a:39:38:01:63:eb:c7:53:25:4f:5b:4e:
2a:17:a7:7f:b8:08:84:85:7f:77:2e:36:eb:c7:52:
1a:aa:c4:47:50:ff:3d:b1:fc:3d:e4:1e:99:d8:2f:
ef:c5:57:bf:2c:5c:c6:0f:5f:09:de:25:79:16:28:
c7:0d:93:9f:e8:60:87:ea:e6:74:05:56:80:a6:6f:
55:3d:e0:eb:bd:1f:78:05:ed:dc:bd:47:d3:77:be:
c7:7b:65:ab:da:74:a6:37:fe:53:e5:00:36:16:ea:
3e:93:74:fd:d3:27:74:cd:83:32:1e:6c:19:92:83:
44:2d:e1:c2:5b:0c:f3:f1:ce:f0:bf:67:a5:ae:c5:
03:6f:2d:d6:47:73:cf:fa:8f:a7:69:d1:04:29:8c:
d5:cf:f8:29:c3:fc:7b:73:5b:06:22:13:26:8b:72:
36:4b:5f:63:4b:85:4e:11:43:c2:56:e6:55:68:86:
d2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F1:EC:4D:0A:BD:57:AF:4A:A4:0A:BA:9C:81:20:45:71:74:9A:90
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wvHsTQq9V69KpAq6nIEgRXF0mpA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.23.63.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:7f:f9:55:f7:81:43:1e:56:18:46:8d:9d:9e:93:29:2d:77:
0a:a3:f9:39:5a:54:10:38:07:66:58:9a:ca:b0:ee:ef:d9:8d:
45:9a:d1:20:3f:4f:2e:63:76:9e:09:a7:02:e1:40:23:03:71:
e3:69:fa:58:bb:2c:23:52:b8:56:3c:96:b5:74:e8:e8:48:d0:
ad:8a:fd:86:87:4b:31:8a:33:55:b5:2e:ae:23:4b:cb:11:83:
97:d5:d2:9b:31:15:d2:33:77:8a:2d:83:01:5c:a1:db:00:1c:
b6:fa:4c:66:5d:32:57:35:1b:fe:d8:ad:42:5e:85:64:a0:8b:
ef:d1:1b:74:8f:6e:90:5a:60:78:64:6d:97:e4:84:de:1c:21:
f8:2e:86:5e:3b:75:5d:6b:a0:b5:05:36:f1:ab:49:5a:ae:d3:
9e:d1:3b:02:1c:6c:02:64:4e:63:a0:66:dd:5c:4e:68:a1:e1:
60:3a:e8:9b:98:74:7d:c2:8c:a0:fe:f0:db:e1:5f:c1:87:c5:
5f:20:15:e8:9b:2a:c9:94:51:30:c2:d6:50:0d:bb:38:e6:13:
85:fd:01:a4:ee:1b:57:4d:aa:62:15:e6:b0:60:60:8e:c3:ab:
2b:6d:9c:8e:c4:33:be:e6:c5:76:24:70:b6:bf:05:73:a6:b8:
9e:b5:31:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org