Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0hGMwru-jNOkz4hPSpHIDIahUT8.roa
File: 0hGMwru-jNOkz4hPSpHIDIahUT8.roa (raw, json)
Hash identifier: 9KjGKCJ9KKBROzOES8LjJOa75igmEjRC634bpjpygUQ=
Subject key identifier: D2:11:8C:C2:BB:BE:8C:D3:A4:CF:88:4F:4A:91:C8:0C:86:A1:51:3F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0hGMwru-jNOkz4hPSpHIDIahUT8.roa
Signing time: Thu 15 Sep 2022 02:40:26 +0000
ROA not before: Thu 15 Sep 2022 02:40:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 2001:f10::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D2118CC2BBBE8CD3A4CF884F4A91C80C86A1513F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:39:3a:a3:74:cc:92:5d:a2:48:4e:0c:89:98:
1a:1c:01:dd:52:16:2e:ce:3a:66:5b:04:84:67:e4:
60:9f:61:1f:22:42:7b:1c:b7:e1:b1:a6:fb:ee:76:
a6:91:1b:9b:97:0a:d3:be:20:b5:0a:aa:1f:fd:0d:
a6:73:1a:5d:4e:81:8e:13:43:f5:92:0e:b9:fb:b4:
bb:28:de:41:3e:3a:1f:99:2e:76:01:11:cd:82:84:
b3:ba:52:46:84:78:69:b6:c5:42:82:83:74:05:0c:
88:f7:56:bd:3a:98:64:01:bc:c4:a4:97:91:b5:4e:
ab:fc:1b:48:6d:d4:0e:da:7a:f3:3b:0e:a6:6c:76:
36:6f:88:72:22:ae:15:ec:89:6a:8e:05:ec:26:14:
c2:f1:76:8c:4d:56:9b:97:a9:68:77:2d:4b:7c:cb:
e1:00:9a:b1:49:66:31:ad:d2:34:34:96:ec:db:d8:
08:e8:59:e0:62:a8:36:29:ec:92:68:13:b5:b1:92:
f2:82:d5:0c:a7:e3:22:ab:92:81:98:58:46:da:5a:
62:17:75:61:d2:9a:29:b6:92:fd:72:d6:3d:24:0b:
88:9d:44:66:47:b7:65:01:bd:ac:9e:d6:83:89:2d:
e2:cd:98:a0:aa:4a:1d:2b:9c:25:34:c8:d1:63:48:
2b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:11:8C:C2:BB:BE:8C:D3:A4:CF:88:4F:4A:91:C8:0C:86:A1:51:3F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0hGMwru-jNOkz4hPSpHIDIahUT8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:f10::/32
Signature Algorithm: sha256WithRSAEncryption
73:72:39:cf:26:09:21:2a:9d:98:01:c4:17:9e:a7:72:ba:78:
dc:e9:7a:5e:92:b1:c2:8a:ef:f5:09:89:2f:04:4c:07:d7:96:
19:8e:ee:bf:df:af:33:ca:1a:2e:99:22:a5:04:81:d7:3c:60:
5e:49:62:3c:cf:0c:1a:b2:a7:68:68:c1:ec:ff:95:27:5f:ad:
51:53:b0:49:90:2d:32:ef:5b:5d:3c:0f:29:eb:1b:0d:b1:2e:
e1:89:bd:76:97:b5:d0:e0:fc:7e:cd:52:b0:1d:d7:6c:9c:8d:
da:a2:53:c0:bf:ed:72:22:8b:db:30:77:c8:fb:06:8e:1d:66:
10:76:b7:be:0f:21:ff:25:c9:eb:b3:a3:d9:b2:53:93:70:f9:
80:03:5e:de:85:50:c9:7e:8c:57:f8:c6:93:8d:82:6e:db:e2:
e0:21:50:05:5a:b9:3f:1b:b6:52:d5:6b:d9:3b:52:80:70:09:
8f:cd:5d:8f:1b:b1:c5:ce:34:09:1f:d2:f6:e5:cd:dc:31:d2:
dd:62:c7:b0:6a:bc:ca:1d:42:d8:b0:99:54:cf:4a:3c:89:8f:
f2:d2:b4:5a:f9:b4:42:f5:68:14:21:4f:0f:93:6c:65:31:12:
9a:b3:f5:14:19:49:3a:bf:03:27:56:67:a0:ae:c6:fa:07:79:
5b:d8:dd:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org