Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1zoxiSZXlOZqg476kAi4w29-eXo.roa
File: 1zoxiSZXlOZqg476kAi4w29-eXo.roa (raw, json)
Hash identifier: fQiT6P9iFDOLpX1y71Cn0y/2pKseyVZaH5WVuIy56Ak=
Subject key identifier: D7:3A:31:89:26:57:94:E6:6A:83:8E:FA:90:08:B8:C3:6F:7E:79:7A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E46
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1zoxiSZXlOZqg476kAi4w29-eXo.roa
Signing time: Wed 29 Sep 2021 02:40:10 +0000
ROA not before: Wed 29 Sep 2021 02:40:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 2001:f10::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3654 (0xe46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D73A3189265794E66A838EFA9008B8C36F7E797A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:86:fb:1d:e1:c8:fd:70:2f:d5:21:59:c6:93:
5a:f5:3f:c8:62:86:09:f7:85:ac:65:74:25:4a:f1:
43:37:08:50:e3:0a:e7:bc:fc:96:4c:b7:b3:14:8b:
82:f2:bc:d6:d8:d7:3e:02:f4:af:42:71:91:76:10:
4d:51:7f:27:4f:45:ef:76:10:27:12:df:8a:c1:17:
51:f7:48:76:77:cd:07:fe:1f:f8:c1:aa:b0:a1:11:
61:09:d1:49:c5:4c:4a:7d:96:07:25:5f:17:ab:55:
a6:9d:8a:81:eb:db:f8:f3:de:3a:fa:b3:bf:7b:aa:
ff:ad:7f:39:e9:b7:b5:1c:74:c2:2c:53:cf:7e:9d:
0f:86:70:65:99:ea:96:44:e3:3c:ce:f1:de:cd:c8:
d4:bc:3f:40:60:2a:f9:f6:c1:a1:8e:79:3f:c5:13:
35:68:9a:49:48:70:c3:0a:a3:d1:32:e3:05:1b:c8:
c0:83:48:a7:59:ce:2e:04:6d:43:60:73:ea:3c:25:
58:e6:27:06:2c:10:e9:15:9f:83:c7:df:c9:70:ff:
b7:57:5b:5d:58:fc:b7:63:f4:0f:77:8c:ac:fb:02:
40:af:21:73:22:a6:c0:be:71:95:cf:79:ec:bb:f8:
5e:f7:36:92:4b:0f:8c:cc:1e:3f:91:ad:02:6b:b5:
40:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:3A:31:89:26:57:94:E6:6A:83:8E:FA:90:08:B8:C3:6F:7E:79:7A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1zoxiSZXlOZqg476kAi4w29-eXo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:f10::/32
Signature Algorithm: sha256WithRSAEncryption
1d:82:ca:82:43:5f:f6:06:3a:1a:11:23:2b:6e:08:1a:8f:23:
0b:89:d8:92:2b:2e:16:d4:ff:6d:97:97:d0:85:7e:27:54:9e:
35:01:63:4c:3f:8a:54:79:e6:eb:18:66:88:f6:ac:c7:7d:1d:
09:0f:ca:ae:2a:1b:23:df:cd:54:a3:e7:b3:83:32:4c:b4:2d:
d1:71:08:05:30:62:26:aa:a0:e2:90:eb:f5:b3:91:1d:30:9c:
0d:61:d5:d4:42:cf:49:4c:16:6d:e7:19:43:38:c1:f0:6d:f4:
a7:76:ff:a5:ff:b7:56:06:0b:44:f3:b9:46:f1:e7:ee:d4:2b:
8c:ad:13:e0:5e:42:d4:5d:10:1b:f7:35:63:e8:25:cb:aa:cb:
91:55:71:cb:15:e5:59:8e:84:df:8e:23:2f:b0:42:b0:92:e2:
39:d2:38:f5:72:32:52:e4:28:f0:3a:66:63:e6:0e:a6:3c:d5:
f1:e3:32:c0:b2:ef:91:bf:a3:22:c2:f7:77:52:5d:65:0b:65:
b3:29:66:58:10:c9:b2:8a:fe:a5:4e:ac:30:ae:e6:e4:43:c7:
03:f5:33:57:6c:68:60:02:4f:39:64:88:d6:e7:4f:d0:4f:aa:
64:e9:e1:99:58:6f:d1:fd:50:95:ca:d5:a4:05:e4:a8:b4:d9:
4d:36:5e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org