Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/2fu19FLm_bt0UHgaoi8AjfjwiY8.roa
File: 2fu19FLm_bt0UHgaoi8AjfjwiY8.roa (raw, json)
Hash identifier: Oq+aI16rrmyRhIyCJlQ+5ZsyX7We6sGZSijNGFc6RcM=
Subject key identifier: D9:FB:B5:F4:52:E6:FD:BB:74:50:78:1A:A2:2F:00:8D:F8:F0:89:8F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BBF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2fu19FLm_bt0UHgaoi8AjfjwiY8.roa
Signing time: Sun 07 Feb 2021 11:33:45 +0000
ROA not before: Sun 07 Feb 2021 11:33:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 203.79.224.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3007 (0xbbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D9FBB5F452E6FDBB7450781AA22F008DF8F0898F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:86:d6:fb:ec:9d:7b:bf:8f:0b:43:92:ad:84:
6d:f0:90:ef:c3:87:df:aa:1b:1a:e5:24:10:11:e7:
af:54:e5:6e:4f:b5:08:19:a9:0e:ff:5f:f2:a4:da:
71:de:a3:56:46:bb:48:e1:c3:bd:85:28:d4:b4:2b:
df:48:71:58:5d:ec:86:bc:1f:3f:25:35:8c:26:39:
51:ae:42:f2:1e:34:0a:aa:02:c2:36:b2:81:2f:e9:
d7:6a:65:43:33:7f:74:e3:20:cd:c3:c1:3b:71:ab:
2b:12:25:6c:bc:19:85:42:af:10:0b:fb:7b:6b:a7:
5f:02:82:79:30:9b:67:f6:dc:4d:9d:7a:1d:ee:64:
9e:d2:34:a2:ec:57:90:6e:8f:2a:a0:e7:9d:c7:87:
bd:dc:e1:9c:05:e3:19:6f:37:b0:a6:ce:82:87:a3:
50:28:5b:1b:8e:8d:fb:80:ce:ff:4d:5f:11:5a:88:
64:36:db:36:37:17:61:43:1e:b5:fc:dc:d1:35:b3:
af:6b:ea:9d:59:39:6d:af:3c:af:b7:b1:00:8e:a2:
45:73:0c:6a:52:df:e9:05:f7:d4:0d:ab:7f:ea:d5:
e1:30:cb:73:09:fe:a1:89:4e:00:53:b9:d1:64:66:
91:99:89:2f:6a:b5:9e:be:8c:64:78:07:c2:ae:f4:
00:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FB:B5:F4:52:E6:FD:BB:74:50:78:1A:A2:2F:00:8D:F8:F0:89:8F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2fu19FLm_bt0UHgaoi8AjfjwiY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.224.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:38:f4:6f:74:70:0a:18:58:a9:59:6f:b8:f6:1b:53:b9:ac:
54:14:f3:ab:b9:c2:94:2b:e0:00:10:95:b2:c9:70:99:3c:dc:
9f:31:f3:6e:2e:d2:be:af:b9:56:c6:2e:df:37:21:ff:35:ba:
50:d1:e6:ee:3c:59:91:06:a7:6e:0d:e2:b3:9f:03:9c:85:cb:
8e:2d:85:a4:3b:c8:3f:3b:7f:46:8d:10:e5:ad:be:10:7c:ba:
58:c6:0d:db:d0:b7:a6:ea:a0:2d:49:46:d1:0a:b2:63:31:0a:
c9:a3:3d:fd:bf:9b:5a:6d:77:55:2d:72:eb:e7:58:54:cb:ad:
14:78:c1:34:57:d3:ae:ed:17:cf:8d:8b:a9:dd:0f:40:69:aa:
85:11:c2:c8:2e:41:0a:9e:8d:e0:2f:13:3f:be:db:2f:c5:5d:
28:34:2a:ac:52:45:2e:fe:13:51:8d:50:25:f4:0a:91:08:67:
09:5b:1b:5b:e4:13:e4:2c:0d:0d:1e:15:9e:34:0f:97:d3:31:
4d:a1:f8:4f:42:2a:4a:ef:d7:1f:92:b1:b1:37:ec:2f:e0:37:
40:42:a1:9d:da:10:b4:50:55:c0:b3:c7:e3:c1:ea:0f:fe:17:
1d:81:6f:70:98:82:c2:b9:02:9f:38:3e:51:3c:e7:f4:32:f1:
0d:56:94:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org