Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0U9x7it3girv6namKBHjrXxmIIg.roa
File: 0U9x7it3girv6namKBHjrXxmIIg.roa (raw, json)
Hash identifier: wIUjExviXyl06jNZqLGZ5ulW8XR39xqqu857mIiUd2A=
Subject key identifier: D1:4F:71:EE:2B:77:82:2A:EF:EA:76:A6:28:11:E3:AD:7C:66:20:88
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1304
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0U9x7it3girv6namKBHjrXxmIIg.roa
Signing time: Fri 01 Sep 2023 08:05:17 +0000
ROA not before: Fri 01 Sep 2023 08:05:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.63.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4868 (0x1304)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D14F71EE2B77822AEFEA76A62811E3AD7C662088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:db:e7:3a:2a:b5:31:7a:2b:db:36:50:fb:f3:
60:46:b6:d4:2b:02:d1:d2:78:78:7f:cc:44:76:07:
d1:45:03:f9:df:23:d6:7a:3d:45:ec:14:dd:b9:7b:
7c:3f:83:54:6a:22:bd:86:57:6b:f8:8c:87:f7:03:
f4:d5:2b:d9:d2:1b:ff:e1:87:60:82:0b:a4:cc:57:
03:84:43:3d:70:f0:33:1a:95:e6:2d:44:aa:f0:e6:
ab:10:67:8d:dd:e7:96:6c:72:e2:d8:61:57:cc:12:
eb:b4:b5:9b:18:40:44:ab:b7:9d:a4:4b:cb:87:d3:
08:58:05:eb:00:0a:87:00:ab:79:66:09:09:30:81:
d5:d6:e8:e9:17:74:d1:9f:f0:4c:ef:49:43:88:bc:
83:61:5c:c3:91:d3:b0:12:f6:13:c3:a0:82:32:40:
f9:1e:28:ff:6b:cc:b7:c3:da:f6:3a:d6:cd:bc:5f:
ae:a3:c8:a1:f7:9b:ac:f1:dd:42:29:5c:10:84:73:
5f:55:85:e2:0f:3b:3d:1f:4a:0a:93:b0:8a:b4:07:
9d:23:57:b3:48:04:54:a3:20:ad:e8:7a:e8:2f:07:
30:b0:13:14:02:93:58:c0:30:aa:e5:9b:ad:f9:5c:
2d:71:c5:61:96:b3:99:dd:d9:e0:d1:99:48:c6:69:
13:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:4F:71:EE:2B:77:82:2A:EF:EA:76:A6:28:11:E3:AD:7C:66:20:88
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0U9x7it3girv6namKBHjrXxmIIg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:91:85:8a:fb:f8:2c:43:75:de:16:09:2a:ca:41:e1:24:ab:
c5:e3:74:f9:9d:8d:ed:12:df:48:b7:be:84:35:9f:60:fa:a0:
2b:17:a1:66:34:fb:aa:b7:72:ab:55:59:11:a9:64:60:49:dd:
8e:7a:40:3e:8a:64:43:aa:85:6e:01:de:61:41:fa:e3:d1:ef:
05:9c:eb:20:e5:08:1d:3b:ec:1e:55:38:1b:33:bc:39:2f:cc:
af:29:2a:df:9c:fa:98:7d:fd:3f:e7:4f:00:7f:76:12:c6:b5:
cd:d9:02:a9:7d:9c:6a:9b:92:ca:9d:db:53:a1:91:12:32:4f:
b2:a5:5e:0a:78:d0:34:8c:c8:3b:01:36:9c:c7:67:cd:dc:07:
95:58:16:a9:81:67:7f:a5:e7:f5:b8:2d:bb:b1:9a:4f:ff:83:
0f:c0:92:b5:bd:d3:67:60:86:38:49:10:1c:0a:5e:53:9b:3a:
ad:b7:52:70:0d:be:a9:5f:3c:c4:49:bf:56:df:c6:e7:cc:ca:
d8:6e:c2:42:5b:0c:05:18:48:18:34:dc:82:70:5f:3f:e9:2b:
5f:78:13:e8:66:dd:64:33:58:c2:44:73:2b:f0:fa:e1:39:9a:
a7:36:8e:99:11:b4:19:3c:13:7e:6e:ab:7a:0c:32:fa:f4:e5:
0e:42:8e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:42 2024 by rpki-client on console-fra.rpki-client.org