Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa
File: xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa (raw, json)
Hash identifier: sGd5PW8wuAQkAeVstO5fv3iaVsIRGwfrNN6ptOwLDWw=
Subject key identifier: C5:29:F0:B0:A0:AB:63:53:F5:86:86:75:9C:48:B1:BC:FE:73:58:2A
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CA6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa
Signing time: Mon 15 Jan 2024 21:10:30 +0000
ROA not before: Mon 15 Jan 2024 21:10:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.201.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3238 (0xca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:10:30 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C529F0B0A0AB6353F58686759C48B1BCFE73582A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7a:75:3a:50:e2:46:72:e9:5a:bc:48:a8:fe:
80:05:a4:30:18:d2:f1:e5:e3:bc:82:c6:fe:12:82:
d9:3d:20:68:fa:97:c0:b2:f8:27:55:e0:f4:97:0f:
55:a3:bb:57:6a:3e:72:22:12:60:df:69:0b:6b:20:
c0:a3:94:6b:4c:38:2d:74:0b:aa:5a:09:6b:e4:ea:
e1:1d:9d:55:31:17:c4:54:19:ef:9a:cb:cb:34:63:
7a:a7:98:e9:33:29:9c:84:64:a3:6e:b4:5e:1b:37:
b7:2c:69:14:94:51:78:65:0d:5a:ea:de:4f:88:28:
6a:c4:f0:eb:cf:cb:fb:a0:5a:14:ce:e1:c7:44:18:
42:cd:13:5b:b3:2c:43:68:fd:81:77:bf:c2:b6:4e:
87:13:72:98:24:53:08:4e:d7:14:ea:d0:61:73:b7:
d0:5d:17:45:13:86:80:6b:33:ce:ef:19:c2:a8:4b:
4c:57:a6:da:a8:c7:04:f2:3e:87:69:be:80:36:d8:
1f:71:93:33:82:49:bc:fa:fc:7a:d6:42:e5:2a:24:
b3:c2:74:4d:76:ad:7e:df:07:bb:ba:5c:dd:d4:dc:
dd:58:84:59:a1:89:3f:a0:30:4b:ca:27:6c:93:7e:
bf:61:a8:76:c5:1c:bd:69:e0:05:7b:da:f9:33:2f:
33:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:29:F0:B0:A0:AB:63:53:F5:86:86:75:9C:48:B1:BC:FE:73:58:2A
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.78.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:7e:df:87:86:1f:f8:69:c9:68:c0:a6:ba:ab:f1:7f:2b:77:
5a:32:f9:85:f1:a7:71:bc:a9:83:a3:8a:bd:38:06:9f:10:ba:
9b:04:92:bc:3b:28:3e:58:5b:e0:fc:70:eb:b5:3c:6a:df:cc:
c1:13:b8:ac:18:b8:cf:b4:82:ec:a8:41:0f:3a:ac:66:72:47:
e3:d5:e8:ac:56:08:15:05:c7:6e:36:62:fc:42:2a:f3:24:40:
70:d0:76:21:6f:b3:43:02:25:5e:ff:df:64:8d:33:94:fa:b8:
67:b9:ef:5d:2b:7b:5c:2b:ea:b6:36:9f:4a:e0:b2:ac:77:d9:
69:6b:fc:93:2c:fc:44:92:82:16:16:44:45:99:90:07:7a:ea:
f2:8c:9f:0b:eb:5f:c5:62:c6:34:73:01:a9:26:2d:fc:e2:2a:
9d:34:da:72:e4:c2:a9:30:5e:4c:5d:83:cc:e2:2c:5c:75:bc:
fb:14:e8:7d:39:41:4c:57:d4:17:c3:1d:38:0d:e8:b8:3b:dd:
77:ba:2e:3e:7d:18:83:1e:bf:8e:a2:4e:24:59:29:41:7e:b7:
46:65:68:51:88:10:37:16:64:2d:60:9a:72:87:73:4a:3b:a1:
34:69:da:19:00:89:76:f4:1c:d9:71:c1:9a:59:34:f5:c7:1c:
e5:39:33:5b
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy
MTEwMzBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM1MjlGMEIwQTBBQjYz
NTNGNTg2ODY3NTlDNDhCMUJDRkU3MzU4MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDnenU6UOJGculavEio/oAFpDAY0vHl47yCxv4Sgtk9IGj6l8Cy
+CdV4PSXD1Wju1dqPnIiEmDfaQtrIMCjlGtMOC10C6paCWvk6uEdnVUxF8RUGe+a
y8s0Y3qnmOkzKZyEZKNutF4bN7csaRSUUXhlDVrq3k+IKGrE8OvPy/ugWhTO4cdE
GELNE1uzLENo/YF3v8K2TocTcpgkUwhO1xTq0GFzt9BdF0UThoBrM87vGcKoS0xX
ptqoxwTyPodpvoA22B9xkzOCSbz6/HrWQuUqJLPCdE12rX7fB7u6XN3U3N1YhFmh
iT+gMEvKJ2yTfr9hqHbFHL1p4AV72vkzLzP3AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUxSnwsKCrY1P1hoZ1nEixvP5zWCowHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3hTbndzS0NyWTFQMWhvWjFuRWl4dlA1
eldDby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSyU4wDQYJ
KoZIhvcNAQELBQADggEBAG1+34eGH/hpyWjAprqr8X8rd1oy+YXxp3G8qYOjir04
Bp8QupsEkrw7KD5YW+D8cOu1PGrfzMETuKwYuM+0guyoQQ86rGZyR+PV6KxWCBUF
x242YvxCKvMkQHDQdiFvs0MCJV7/32SNM5T6uGe5710re1wr6rY2n0rgsqx32Wlr
/JMs/ESSghYWREWZkAd66vKMnwvrX8VixjRzAakmLfziKp002nLkwqkwXkxdg8zi
LFx1vPsU6H05QUxX1BfDHTgN6Lg73Xe6Lj59GIMev46iTiRZKUF+t0ZlaFGIEDcW
ZC1gmnKHc0o7oTRp2hkAiXb0HNlxwZpZNPXHHOU5M1s=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org