Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0E-VnfCWgFck893G_rhkosZ8ocU.roa
File: 0E-VnfCWgFck893G_rhkosZ8ocU.roa (raw, json)
Hash identifier: RH64mwWr/bP2ySkcCn2PLDty98d1gkUvEmreNR4ZlOs=
Subject key identifier: D0:4F:95:9D:F0:96:80:57:24:F3:DD:C6:FE:B8:64:A2:C6:7C:A1:C5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 130C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0E-VnfCWgFck893G_rhkosZ8ocU.roa
Signing time: Fri 01 Sep 2023 08:05:18 +0000
ROA not before: Fri 01 Sep 2023 08:05:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 203.79.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4876 (0x130c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D04F959DF096805724F3DDC6FEB864A2C67CA1C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:58:20:c7:44:6e:8b:10:14:80:bb:70:61:
c7:a1:a9:ce:f2:92:15:e7:21:ba:18:2f:9f:90:0f:
ca:0b:e2:b5:67:e9:90:af:c9:56:1c:b5:60:5f:7f:
f2:ef:30:53:bd:85:36:40:b0:1c:71:73:ce:f2:fe:
4c:d9:ee:12:4b:dd:1e:a5:f2:d7:65:05:0a:ed:9c:
d2:a1:8d:09:d8:c9:7b:02:5f:84:f2:34:b3:83:1d:
35:8d:c4:78:39:17:d5:d4:8a:84:45:af:20:5c:3c:
12:b2:8c:61:dd:2e:ba:c0:4d:e3:8f:dc:91:7a:d1:
19:09:ae:6f:89:7e:aa:fc:d7:44:0c:6b:5a:89:0b:
ff:f4:cf:34:81:2f:e7:6b:31:62:b4:6a:58:52:b7:
a4:df:8a:70:37:84:1b:a6:e3:9c:5f:3f:73:15:56:
a7:2b:04:07:97:3e:ff:dc:32:6b:8c:79:a6:d7:ee:
8e:11:eb:ac:e3:cd:7c:3f:70:92:41:57:73:97:fc:
85:52:ff:ea:00:d3:e2:d3:07:8c:fc:2d:42:57:7a:
23:f2:43:cf:f9:37:aa:c7:b3:33:dc:93:49:1f:b8:
c4:53:51:fe:9f:04:b8:9b:c6:ed:47:be:cc:fd:ee:
8e:e4:92:b6:01:78:ff:fd:bf:ab:22:ee:4e:ab:2a:
33:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4F:95:9D:F0:96:80:57:24:F3:DD:C6:FE:B8:64:A2:C6:7C:A1:C5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0E-VnfCWgFck893G_rhkosZ8ocU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
25:b6:71:4f:7d:c0:8f:7e:86:da:11:9b:b1:7b:e3:4b:5a:af:
82:fb:f6:21:a7:29:9b:20:f5:c5:97:6b:31:b8:d3:1e:c1:a4:
61:55:3f:9a:0b:6b:66:e2:9a:e8:85:42:45:4f:81:b0:18:91:
ab:ab:40:5c:8c:68:ea:5e:bf:1c:f2:7a:d9:7d:e0:ca:85:5b:
25:03:3b:20:65:9f:1f:db:13:43:2d:e2:5c:dc:44:52:db:45:
88:cb:cd:ee:0b:4b:b7:2d:4f:da:a0:6b:f7:4c:cc:f2:61:8f:
3f:37:26:84:c8:79:f3:a5:d7:77:c1:8c:04:63:7e:38:31:be:
b4:9a:aa:b0:78:4b:2a:a6:6f:39:52:c1:a2:d3:1b:8e:2a:a4:
fc:10:54:88:67:6e:23:72:4e:d3:7b:be:b6:08:9b:25:e3:d1:
b6:55:8e:df:4c:01:7d:15:70:75:49:71:e4:ec:00:e6:df:33:
3c:0d:a2:15:53:e8:d5:3f:1c:03:9c:00:d9:86:2f:8a:53:62:
e0:24:9a:4b:15:07:cf:43:03:fb:f6:8d:f0:e0:e9:89:ac:88:
5b:99:f2:76:a7:1d:cb:e5:4a:5a:15:c0:fe:c9:38:11:5b:6e:
ec:88:df:03:67:c6:4d:3c:08:d7:ef:f1:73:7a:fd:aa:a9:2f:
04:25:de:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:42 2024 by rpki-client on console-fra.rpki-client.org