Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/11TylNMw_Gaki2_6_U3UvYxICXM.roa
File: 11TylNMw_Gaki2_6_U3UvYxICXM.roa (raw, json)
Hash identifier: RzqRh9lTzJ4nrhEmGyp9LSyrOd4grl5osGqa20kOkzM=
Subject key identifier: D7:54:F2:94:D3:30:FC:66:A4:8B:6F:FA:FD:4D:D4:BD:8C:48:09:73
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C29
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/11TylNMw_Gaki2_6_U3UvYxICXM.roa
Signing time: Sun 07 Feb 2021 11:35:06 +0000
ROA not before: Sun 07 Feb 2021 11:35:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.58.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3113 (0xc29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D754F294D330FC66A48B6FFAFD4DD4BD8C480973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0c:79:57:7a:4f:82:43:7a:97:57:8d:4e:b3:
0f:0e:3e:dd:13:10:a3:fa:8c:36:23:d3:eb:e0:df:
7e:e1:dd:ee:54:5f:48:d1:bc:ef:25:b7:4d:34:6d:
5e:79:ce:a3:7c:fd:c5:bc:b0:6a:f0:a6:16:4c:6a:
56:a3:c4:e6:6d:83:d1:48:64:e8:f4:01:0c:7b:d9:
81:0d:6a:bb:c9:d4:de:60:8e:72:24:9f:41:8c:1f:
a3:6b:70:7f:e6:61:7c:02:22:e3:04:7f:1a:b4:ae:
96:1b:5c:90:7b:bb:51:7c:25:d8:1e:06:4d:6b:f7:
27:db:b1:5c:f7:a5:7c:c9:c9:9c:3a:29:d9:0a:f7:
50:ef:81:5a:9d:e0:42:1a:48:39:db:0c:54:c6:06:
10:e7:89:a9:2a:9b:a3:b1:1f:1c:67:ba:3f:6b:90:
43:db:b8:6e:63:f6:2b:ac:dd:0a:74:70:64:49:6e:
3f:09:b8:7c:73:04:58:33:81:a3:0a:a1:1b:a5:94:
2f:15:52:bc:21:0a:70:4d:54:7a:da:6b:7c:4e:f8:
73:fc:ee:70:f5:f0:7e:36:b1:54:8f:1e:31:9c:f3:
fe:0f:c7:d6:ac:e1:45:7f:70:02:ad:ed:ae:84:74:
ba:ff:59:98:20:58:b3:fc:f1:ee:5f:57:36:a0:65:
bb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:54:F2:94:D3:30:FC:66:A4:8B:6F:FA:FD:4D:D4:BD:8C:48:09:73
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/11TylNMw_Gaki2_6_U3UvYxICXM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
43:5f:09:3d:a6:d3:0a:06:a0:c6:5b:5e:cc:62:8d:e4:70:85:
f6:44:b4:3e:ec:4d:2e:f2:59:73:62:61:d2:64:c1:69:66:89:
ed:e2:bc:f0:1a:f5:a3:e8:17:ef:a3:c0:f6:57:12:9a:21:63:
2c:5d:53:e5:12:ce:96:b8:f4:b7:14:77:5f:22:4c:64:34:86:
6c:40:97:4f:b8:8f:ba:9b:54:13:cf:71:df:3d:ea:38:91:c8:
fa:5f:27:d3:c3:7c:1c:f8:c3:98:9c:b7:52:2b:bd:2b:72:65:
f7:50:dd:db:9f:06:d8:db:2b:42:ad:fd:dd:3f:d2:a6:10:5b:
bf:45:8c:55:bb:bd:2b:55:5c:9d:db:c2:5b:fa:16:a3:90:94:
99:3e:71:1c:45:bb:2a:45:ca:af:8d:44:b2:27:a7:40:b0:7d:
fa:e2:b3:20:31:8e:bf:ad:88:97:f1:e1:46:73:e5:38:df:0c:
b8:a2:06:76:bd:67:32:37:b6:87:47:38:83:fc:c6:80:a4:21:
74:1e:aa:0c:26:72:07:c5:9e:b0:d7:e7:a9:80:ee:65:e2:88:
2a:9a:4f:60:a2:d6:d4:ec:a9:db:b7:87:6d:1d:74:a4:4a:cd:
d1:29:e6:8a:52:b6:cb:0e:90:dc:79:5f:fc:f4:f0:57:b8:35:
d7:d3:ff:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org