Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0AKy1j8H0kzAfy1owUhP1ZY5FKw.roa
File: 0AKy1j8H0kzAfy1owUhP1ZY5FKw.roa (raw, json)
Hash identifier: haUfN1LtpWy7VuIZghbQdigrPja9nK9Tk7WuKoo7Oh4=
Subject key identifier: D0:02:B2:D6:3F:07:D2:4C:C0:7F:2D:68:C1:48:4F:D5:96:39:14:AC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08EB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0AKy1j8H0kzAfy1owUhP1ZY5FKw.roa
Signing time: Tue 29 Sep 2020 10:01:15 +0000
ROA not before: Tue 29 Sep 2020 10:01:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.202.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2283 (0x8eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D002B2D63F07D24CC07F2D68C1484FD5963914AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:01:d4:d8:b6:0d:64:86:34:46:6e:b9:3b:c6:
a4:d0:f1:cf:61:94:2e:23:79:bd:c6:e4:b8:7d:6d:
a7:c0:80:ef:17:f6:90:c7:ee:ff:6e:28:6f:94:d9:
2c:6b:e1:56:2a:3a:c9:9c:af:1c:0e:f0:d0:c5:c7:
c2:5c:23:92:fa:96:df:7a:44:c0:3a:71:aa:48:ea:
39:ef:37:e1:99:49:2c:e9:58:34:75:40:c9:41:25:
90:9e:7f:41:83:c0:9b:22:c4:37:de:be:f3:05:26:
34:21:5d:49:2a:5e:b0:86:bb:e8:51:9a:d3:b0:46:
5c:2f:38:41:30:6c:98:0c:cf:64:11:63:fd:35:0d:
c9:96:86:d1:b5:64:04:18:9b:45:39:98:2d:c4:9c:
e5:89:45:09:be:10:cb:8f:06:d1:45:cf:f4:01:e7:
25:fa:7a:d2:8f:1b:08:0f:98:11:a8:16:d7:46:90:
66:4c:54:71:5c:49:7b:37:2a:d6:0a:0f:cb:8d:54:
34:c3:16:5a:70:e1:5f:63:05:8d:ad:32:99:6a:4b:
98:96:da:27:cd:d6:56:31:df:ae:b9:51:51:3c:ca:
36:f8:1e:b8:3f:5e:57:a6:3d:47:de:0c:19:77:68:
71:f4:88:fd:f2:14:5c:85:31:f1:b7:1e:a2:28:d9:
a6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:02:B2:D6:3F:07:D2:4C:C0:7F:2D:68:C1:48:4F:D5:96:39:14:AC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0AKy1j8H0kzAfy1owUhP1ZY5FKw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.48.0/21
Signature Algorithm: sha256WithRSAEncryption
56:5a:f4:48:da:a5:57:69:83:7b:2a:0b:25:a9:96:79:f0:5d:
3d:db:84:c3:86:54:ee:79:d1:b4:71:b8:1d:d8:5d:a1:97:6e:
fe:93:32:80:6f:df:cc:73:f2:5e:e5:d9:76:5d:60:c1:d1:cf:
5a:1d:80:5c:56:9a:b2:27:8f:91:3a:73:60:c7:e8:ad:ae:88:
ba:f2:3b:8f:e5:bb:8e:75:52:63:f2:21:e2:be:55:bf:e8:6c:
f5:99:ec:75:5f:28:20:6a:cf:9f:08:5b:2a:b1:9d:d4:63:1e:
9e:9c:dc:df:12:e1:ba:a7:09:a4:94:3a:b8:d8:ce:3e:31:11:
d1:1e:a3:06:ea:a0:b7:5a:30:3c:fd:d9:00:07:40:5a:e6:19:
64:56:d7:5e:58:4b:d0:ba:0c:34:7e:6a:f4:b7:d1:75:8e:fc:
41:84:69:08:33:20:f3:d4:07:92:96:a5:af:55:00:ef:3d:57:
01:5f:33:ea:4c:ea:92:9c:a2:80:3a:41:23:8d:1e:7b:a1:60:
cf:0b:70:35:c7:bd:5e:0c:f8:e8:92:97:8a:f4:eb:80:92:14:
00:15:e4:e0:b4:be:c3:3a:69:81:6a:61:7a:48:cb:b4:2f:67:
7f:45:f1:47:f0:31:40:f9:40:58:80:25:1f:82:96:b0:63:dd:
fe:f2:6d:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org