Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0i3B110qhW8__8a9DKs75jwBBVw.roa
File: 0i3B110qhW8__8a9DKs75jwBBVw.roa (raw, json)
Hash identifier: aoUTskzYfWg7YJC7rk1xSLSBXzD9GaHdmijvxsCgicQ=
Subject key identifier: D2:2D:C1:D7:5D:2A:85:6F:3F:FF:C6:BD:0C:AB:3B:E6:3C:01:05:5C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1291
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0i3B110qhW8__8a9DKs75jwBBVw.roa
Signing time: Fri 01 Sep 2023 08:04:38 +0000
ROA not before: Fri 01 Sep 2023 08:04:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 210.201.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4753 (0x1291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D22DC1D75D2A856F3FFFC6BD0CAB3BE63C01055C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:15:ae:74:a8:dd:9d:28:35:3b:7a:b0:47:6e:
e7:db:d3:3c:01:02:e8:37:00:c5:12:c7:17:3e:01:
a2:98:ea:1d:6f:49:3a:fa:4b:2c:e8:5c:6e:65:b4:
47:a2:87:71:49:94:aa:12:fe:33:e8:24:1d:98:a5:
bc:fb:0b:8a:df:b8:18:b1:f9:2a:7f:a8:58:40:b1:
fc:e9:cf:75:63:19:f8:a2:81:81:4b:18:1b:1b:bd:
32:3c:6d:da:22:f4:25:e9:53:c7:21:76:6b:57:d8:
ff:11:60:ae:c1:9c:b3:b7:c4:af:b2:70:a6:be:fc:
b8:ac:84:1d:f3:0d:41:53:0b:f9:85:e4:31:c8:b9:
71:fa:6a:f2:25:44:17:f2:b3:8f:d0:fb:3e:4c:aa:
c4:c9:b9:17:9a:a2:6c:a9:8c:f6:dc:0e:43:a0:1e:
34:31:e3:2f:e8:f8:99:28:d7:6b:01:65:0a:09:cf:
2c:de:c2:b4:10:2e:ab:ca:86:df:77:9c:42:f6:25:
c0:35:2c:12:9c:95:57:aa:ce:20:49:83:00:b8:e8:
41:47:87:6c:48:70:4e:c3:2a:34:4d:3c:80:f6:4c:
6e:9e:e6:bf:b1:77:bc:51:23:29:bc:a1:17:db:7a:
df:b0:b1:71:57:29:fd:1c:59:6d:fd:63:94:fc:65:
b4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:2D:C1:D7:5D:2A:85:6F:3F:FF:C6:BD:0C:AB:3B:E6:3C:01:05:5C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0i3B110qhW8__8a9DKs75jwBBVw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.52.0/22
Signature Algorithm: sha256WithRSAEncryption
34:e2:0c:d6:7c:4f:97:81:32:3f:8d:c4:0d:7c:a0:6f:c1:ad:
4c:95:48:f7:81:15:3e:e8:ba:40:ee:db:4d:52:da:4c:48:1d:
d6:3c:ee:e4:71:43:73:01:6d:94:3b:79:7a:1f:d9:db:23:23:
f7:1d:85:aa:cc:79:dd:c7:91:d9:65:55:e5:54:a3:51:fd:60:
23:de:f2:13:f2:35:69:8f:4f:d4:c6:5e:6b:20:c3:9a:c0:6d:
b5:8f:bb:de:45:10:ae:84:49:6a:c9:19:75:60:68:b4:31:32:
91:7c:05:16:76:12:e0:e3:13:05:b2:cd:b9:f4:fe:a2:2f:a8:
79:a4:65:19:c9:42:21:1b:fc:1e:64:09:1f:35:16:27:55:d7:
78:78:5e:da:94:bf:f7:84:48:f1:2f:21:d1:a2:b7:c2:49:0d:
e7:b8:24:cd:5e:ee:00:4c:0a:43:09:ec:16:12:e3:6c:a7:57:
ce:d3:6f:f8:10:de:1d:66:e5:01:8e:cc:c6:79:db:da:c5:de:
9a:fd:e1:a3:bc:0a:47:c8:fb:d1:5f:07:59:2b:92:af:59:ab:
36:3a:14:f4:9f:df:cd:07:ca:51:eb:65:f9:83:b1:d8:80:37:
72:49:9d:97:d3:c6:64:3c:68:82:b4:26:6f:74:42:15:11:55:
5a:59:7a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org