Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1OGjuNn-mNLZFnPdEZdJPafDxHU.roa
File: 1OGjuNn-mNLZFnPdEZdJPafDxHU.roa (raw, json)
Hash identifier: gqUhOdeNiduSyRcNx0n8LkqzySCZSAsepNAQkX7R3Co=
Subject key identifier: D4:E1:A3:B8:D9:FE:98:D2:D9:16:73:DD:11:97:49:3D:A7:C3:C4:75
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E24
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1OGjuNn-mNLZFnPdEZdJPafDxHU.roa
Signing time: Wed 29 Sep 2021 02:40:00 +0000
ROA not before: Wed 29 Sep 2021 02:40:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 16625
IP address blocks: 210.203.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3620 (0xe24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D4E1A3B8D9FE98D2D91673DD1197493DA7C3C475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4f:60:f8:d3:fa:ca:9b:d3:71:d2:c3:c7:b7:
77:0a:f0:1c:fc:30:de:5f:7e:d1:c3:fb:a2:c7:49:
a6:bc:13:1f:fa:ce:5d:4d:70:7c:88:b4:b6:7b:df:
9d:ab:6f:fb:75:47:d2:53:68:be:ee:38:5b:83:9b:
99:58:1f:a8:f6:42:5e:6d:9d:40:4a:9d:0c:2a:0f:
2a:da:f5:38:66:e9:04:c1:43:4a:66:29:91:bc:bf:
ff:ef:fb:94:f1:15:39:42:b7:10:e2:60:34:5e:2e:
4c:06:c6:b8:09:bb:db:bb:8b:bc:19:69:b2:f8:2e:
f1:0d:3a:17:73:07:10:7b:fc:fc:76:c3:d2:d5:df:
ae:e8:53:4e:d4:49:49:8b:9c:12:11:10:bf:9e:c6:
61:91:e9:d5:e7:4f:0d:ba:19:0c:3b:52:f7:97:23:
f1:7c:d8:e2:2f:07:56:55:f1:f5:1e:cb:d1:ee:be:
03:02:3d:0f:0f:b4:e5:88:e6:f5:19:b5:e9:b1:23:
6c:ac:89:8a:40:f6:43:40:4f:05:51:aa:df:b1:dd:
20:ae:d2:c3:ef:ce:07:57:5c:9f:e8:f7:9a:49:08:
f6:62:6e:4f:cb:f2:f3:41:90:82:5c:53:33:bb:7a:
d4:6b:38:55:fb:01:80:7e:1f:d5:dd:e6:5d:c6:75:
20:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E1:A3:B8:D9:FE:98:D2:D9:16:73:DD:11:97:49:3D:A7:C3:C4:75
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1OGjuNn-mNLZFnPdEZdJPafDxHU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.8.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:78:6f:14:3d:01:7b:95:ca:d5:a5:e2:d3:d8:dc:f0:a3:08:
7e:16:73:46:fc:22:01:d6:7d:ff:9a:8e:d8:c3:5d:e6:35:87:
ee:06:bc:e6:cd:2e:56:e9:77:41:05:e4:48:78:6d:a9:51:c8:
82:e3:fd:37:15:55:e7:4b:58:a4:4b:b0:fe:72:ca:d0:4f:62:
45:5f:e1:85:a0:55:46:10:2c:91:84:10:c9:22:89:3a:97:d4:
e4:6d:9f:2b:8a:00:0c:7e:a8:0f:dd:f3:b3:84:f5:fb:58:df:
93:21:40:93:56:5c:b6:5d:d6:87:bf:e6:0b:3b:3a:82:06:d9:
42:a8:9d:86:1b:86:03:ad:c8:02:53:0b:c2:75:b6:ac:9a:08:
7b:80:2f:3c:1f:a3:9e:a2:28:d8:7f:17:6d:35:65:87:8f:c8:
9d:ba:22:18:57:fd:8a:c9:3d:e0:3d:b0:11:98:d3:d4:8f:6c:
b8:f6:4a:27:55:a3:ee:bc:31:2f:d3:36:aa:09:e7:93:83:60:
17:02:4f:89:62:76:4f:bc:f7:2a:3f:ad:b0:78:9b:6d:7a:19:
83:8e:bc:fe:7a:a4:df:81:11:d1:d2:58:7e:69:ef:86:7b:90:
66:8a:d7:e9:23:6b:fe:2f:d8:1f:17:af:23:21:49:06:0d:15:
92:9b:86:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org