Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1RPyJYFA9WnnO5Q6BvY3M2bO3AE.roa
File: 1RPyJYFA9WnnO5Q6BvY3M2bO3AE.roa (raw, json)
Hash identifier: v9znNBlKRi1hp8FQn2KBCA1+Y/jRG5nyR7sT+mn0XSc=
Subject key identifier: D5:13:F2:25:81:40:F5:69:E7:3B:94:3A:06:F6:37:33:66:CE:DC:01
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BE9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1RPyJYFA9WnnO5Q6BvY3M2bO3AE.roa
Signing time: Sun 07 Feb 2021 11:34:15 +0000
ROA not before: Sun 07 Feb 2021 11:34:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.200.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3049 (0xbe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D513F2258140F569E73B943A06F6373366CEDC01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:9d:1e:75:a9:40:be:59:e9:95:d2:05:9a:
53:85:c8:09:a5:fb:76:04:ee:25:05:ea:cd:2e:8f:
6e:be:b2:61:19:35:52:85:5a:4a:b2:ed:ab:e6:0e:
0a:2b:66:b0:0d:8b:cb:b9:89:bd:50:3d:2c:23:77:
af:5a:58:74:e1:8a:a8:5b:8a:35:6e:3c:6b:be:a2:
eb:fc:41:4e:a9:1f:8d:ed:15:67:27:de:3c:33:e9:
61:f3:d8:e2:9d:7a:c1:93:f1:c4:c7:59:34:3d:a7:
87:7b:7d:b1:de:53:7b:c9:36:54:90:48:a8:1d:4b:
65:69:5f:b2:91:65:45:2a:46:ca:ec:2a:f8:1f:ce:
24:c6:21:bb:a9:c1:34:79:cd:2c:ee:1a:2d:cf:f7:
36:99:22:e9:88:f7:4a:23:2f:f0:30:86:24:b9:8e:
a7:1a:85:31:e3:19:8b:aa:7f:fe:b7:f7:d3:1f:52:
c9:67:05:f1:7e:54:11:7a:be:ca:39:c5:82:28:a2:
12:16:89:fe:99:94:b3:f8:0f:2f:3a:06:34:82:bc:
ef:30:cd:a9:77:ec:59:55:d2:91:fe:16:aa:e8:31:
65:da:a4:f4:91:b7:93:0f:72:9a:fd:25:ef:03:63:
32:62:44:26:6e:4f:e4:9f:ae:2e:3c:6d:d3:c5:7b:
6c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:13:F2:25:81:40:F5:69:E7:3B:94:3A:06:F6:37:33:66:CE:DC:01
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1RPyJYFA9WnnO5Q6BvY3M2bO3AE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.148.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:df:f5:be:0b:cc:89:ad:bc:2f:92:45:cf:cc:4e:20:11:a4:
88:3c:58:3f:7a:50:1a:da:1e:b7:9b:97:15:d8:9a:cd:e7:85:
f5:0a:24:0c:6f:fc:12:91:31:33:7a:03:06:cf:af:90:7e:77:
7b:db:e8:7d:8a:30:46:46:71:5b:d9:b4:7a:f9:45:d8:38:3a:
24:af:71:11:4a:46:11:31:8a:a9:e5:31:f0:9c:f1:50:e3:e2:
5a:78:b4:00:58:d1:77:55:1c:5c:b6:a1:d3:bb:33:4c:e1:6d:
2d:c9:b9:7b:63:3f:73:72:26:4a:0e:8a:4e:b9:3b:8e:21:83:
9d:da:42:44:80:a4:ea:bd:8c:a2:da:a8:09:1f:ad:0a:c7:7e:
ba:43:ee:16:da:6f:11:18:11:a1:4a:79:c1:82:0f:d5:ef:5b:
ac:a8:8f:00:1d:79:23:10:8f:5d:55:2b:91:71:0b:f3:c1:ac:
6e:81:7b:3d:ff:12:c6:21:59:c7:da:8a:10:b0:99:e5:b2:a1:
eb:6f:6a:74:d1:b5:91:c1:d9:39:8a:86:e0:9e:f4:bc:ad:02:
63:c7:58:4a:4c:73:40:9a:3e:49:40:18:98:5d:20:19:b3:35:
e0:ea:e7:23:ae:2e:16:0e:a9:b7:be:a4:50:75:94:72:81:b3:
02:11:1b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org