Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/yRO2PWIznO8-eo5eBYoIpt8w3o8.roa
File: yRO2PWIznO8-eo5eBYoIpt8w3o8.roa (raw, json)
Hash identifier: VEquzv2xKd0ymQ5KivByScyyA8leeaJdNAmiXTOuewM=
Subject key identifier: C9:13:B6:3D:62:33:9C:EF:3E:7A:8E:5E:05:8A:08:A6:DF:30:DE:8F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0CB2
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yRO2PWIznO8-eo5eBYoIpt8w3o8.roa
Signing time: Mon 15 Jan 2024 21:10:44 +0000
ROA not before: Mon 15 Jan 2024 21:10:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.202.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3250 (0xcb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:10:44 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C913B63D62339CEF3E7A8E5E058A08A6DF30DE8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:de:25:28:89:04:e4:5e:41:32:5f:02:2c:6e:
e8:c5:96:4c:8f:22:82:d3:06:91:bb:71:dc:57:54:
76:fd:22:bc:da:45:c0:a9:45:0e:6d:d7:3e:a6:d7:
36:a1:1d:7b:2b:df:68:c1:98:ea:23:b8:4d:82:d9:
4e:2e:56:02:94:92:f3:c7:a0:8d:6f:25:77:ff:8d:
98:92:c4:94:50:f2:bc:a1:f0:5c:f9:b6:30:43:dc:
7a:98:8e:0d:27:86:4b:35:b8:ce:a6:f4:b4:3b:84:
f3:4c:94:1c:4a:79:5e:4d:1c:10:08:59:76:70:2e:
3d:ec:de:27:b5:ca:05:75:2a:3b:ae:23:80:2c:93:
37:ea:44:1a:f2:36:f9:6b:44:35:7b:a2:57:f7:25:
2d:e5:c1:b1:8e:7b:61:e9:d2:c7:76:2b:c3:e3:b0:
0a:7f:c3:82:f1:e2:70:92:d3:68:2b:fe:b6:ef:7d:
25:8f:ac:e8:7c:cd:ea:8d:72:f4:b5:a8:f8:ef:f5:
c5:6a:84:e9:00:bc:9d:2e:42:a8:aa:93:ec:ca:43:
17:17:0e:3c:12:f6:ab:8b:48:51:71:29:58:85:83:
2c:34:08:ff:cd:60:ac:d7:d9:1a:65:b0:fa:75:13:
c4:6f:21:bf:9c:a4:c0:12:6c:0b:46:9d:3b:f5:bd:
5a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:13:B6:3D:62:33:9C:EF:3E:7A:8E:5E:05:8A:08:A6:DF:30:DE:8F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yRO2PWIznO8-eo5eBYoIpt8w3o8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.0.0/19
Signature Algorithm: sha256WithRSAEncryption
c1:4c:95:df:d1:ea:49:84:d1:9f:cb:75:e7:f4:26:f7:77:32:
5e:4a:d6:4c:d5:d1:d1:72:7a:bb:a6:12:4a:3a:8f:ba:dd:f6:
0a:07:58:da:d7:49:63:b3:60:d0:4f:54:5b:14:e7:df:00:bf:
63:98:62:28:b1:23:29:44:d0:8d:6c:03:1c:d9:f2:84:d7:2f:
75:bc:b4:5d:f3:c0:e3:cf:5a:e9:82:ad:89:f0:e1:c2:6c:9c:
b8:05:07:32:98:65:58:89:fe:4f:a5:0c:df:83:b3:18:9c:8e:
e5:aa:34:f7:4c:1a:97:32:19:2d:48:b0:4e:3f:c8:d1:01:0c:
de:44:72:37:35:89:d2:c6:8d:28:05:1c:ba:04:ad:25:53:e8:
04:69:ad:26:a3:4c:8e:6f:93:b4:14:71:93:a4:38:86:b9:1c:
50:69:7a:f1:e2:81:b4:bb:02:d6:70:7c:c0:2a:68:e6:f7:61:
be:2d:05:d9:90:82:e8:5d:8e:74:8c:d4:35:19:64:52:74:89:
74:62:74:4b:2d:2f:5e:e6:31:59:38:a1:a0:38:e4:fa:98:93:
05:0e:90:35:56:97:74:e8:ff:8d:11:02:45:b0:e4:b0:43:d1:
01:2e:8f:c1:fa:06:7e:62:dc:c7:a6:0d:6f:b6:6c:e1:c6:d8:
ec:c5:f6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org