Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0Bb8ulYCdCfaOnnjQLwBf8EGVUQ.roa
File: 0Bb8ulYCdCfaOnnjQLwBf8EGVUQ.roa (raw, json)
Hash identifier: Jqx8/xKFnT+gsedAy3d5NkOYDDtEUQNm/kIy5rNgaXU=
Subject key identifier: D0:16:FC:BA:56:02:74:27:DA:3A:79:E3:40:BC:01:7F:C1:06:55:44
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0Bb8ulYCdCfaOnnjQLwBf8EGVUQ.roa
Signing time: Thu 15 Sep 2022 02:40:33 +0000
ROA not before: Thu 15 Sep 2022 02:40:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 2404:0:5000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D016FCBA56027427DA3A79E340BC017FC1065544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:34:77:72:58:9f:21:97:e0:7c:c3:5f:17:ea:
d3:42:24:75:47:2f:04:53:e6:68:86:8f:d6:e3:1e:
48:51:23:92:64:2a:a4:9a:dd:35:8b:e2:6d:95:3f:
4f:60:b4:83:38:61:34:0f:77:0c:0a:34:5f:2e:c8:
0b:a4:57:53:b8:c2:0b:30:4d:c8:dd:96:8a:1e:e4:
b1:a0:2b:fa:47:ab:a0:aa:f2:0d:ea:7e:40:94:05:
cf:f6:7d:da:e1:13:a2:e3:40:94:6e:3d:ac:61:cb:
9f:90:40:1c:0c:b0:0d:90:e3:07:69:4b:d9:58:3b:
28:57:eb:ac:5f:33:3d:7c:d3:65:90:53:e4:6b:2a:
54:4d:fc:4c:53:c3:37:ad:97:a2:c3:54:08:ed:c2:
cb:1f:65:f1:b4:5a:24:4e:37:04:35:05:ea:9a:a5:
5a:bc:88:95:8b:2f:0a:98:43:8c:cd:b8:cd:62:b3:
b9:5c:9a:c8:ba:65:72:a0:e0:f7:95:95:dc:37:ce:
c3:b3:22:74:17:b3:b2:47:21:f5:66:b8:b2:86:c2:
1f:2e:72:c1:7d:58:03:4d:fe:f2:a9:14:2b:a0:27:
e5:8a:6a:e9:f5:09:9c:fa:3b:28:14:e8:ed:be:5d:
db:d2:9b:62:a3:cd:76:3e:63:cd:a4:c7:f1:d6:cc:
ef:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:16:FC:BA:56:02:74:27:DA:3A:79:E3:40:BC:01:7F:C1:06:55:44
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0Bb8ulYCdCfaOnnjQLwBf8EGVUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:5000::/36
Signature Algorithm: sha256WithRSAEncryption
21:1d:ad:95:0d:52:6e:75:85:66:f5:bf:ab:81:74:8a:71:34:
b7:cd:da:01:0a:ba:bd:bb:2e:29:26:18:76:ee:f0:21:e1:4f:
42:4e:ab:34:aa:e6:83:07:2e:c9:67:8b:52:39:ca:69:99:96:
42:79:0f:e4:e5:97:c8:c4:b2:63:16:06:49:9d:bb:df:6a:bb:
4c:41:3c:b8:cf:54:3d:0e:6e:0d:f0:59:23:be:be:43:70:de:
ab:99:a6:98:0e:6b:12:34:42:26:db:49:ad:fb:91:67:a3:93:
dc:eb:4d:d1:d9:d4:58:a9:61:70:a7:2a:d9:03:24:58:aa:0b:
9d:9e:82:98:2e:a3:88:7d:98:31:87:bf:7f:eb:81:4a:0a:4c:
62:06:cb:71:e7:0b:4a:4d:4b:fd:b2:89:9b:e4:12:ca:f4:ff:
64:62:83:96:66:10:54:78:f7:a4:f1:da:ce:3e:54:86:27:83:
4b:6a:9e:10:f0:ca:0c:5c:a0:81:00:17:6c:7d:ad:19:bd:a1:
1e:ed:cf:dc:0c:5d:f7:4e:24:5b:e6:bc:50:6e:45:c0:ef:06:
c1:a1:e7:14:fa:e6:8a:05:5b:56:ec:2d:d2:89:df:d7:d7:bf:
3f:46:9c:be:ff:23:55:88:6c:9e:63:f8:9b:7b:43:85:22:55:
3e:27:8e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org