Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/33cCe5mtWArDYSZkJeHMygXW5PU.roa
File: 33cCe5mtWArDYSZkJeHMygXW5PU.roa (raw, json)
Hash identifier: qbDOaYnKPI4mk5Q9rvPww3qvFhoO2j38G9uYFLFbKVQ=
Subject key identifier: DF:77:02:7B:99:AD:58:0A:C3:61:26:64:25:E1:CC:CA:05:D6:E4:F5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/33cCe5mtWArDYSZkJeHMygXW5PU.roa
Signing time: Thu 15 Sep 2022 02:40:12 +0000
ROA not before: Thu 15 Sep 2022 02:40:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 2404::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DF77027B99AD580AC361266425E1CCCA05D6E4F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:93:df:c7:eb:34:27:26:2a:21:59:1f:c4:df:
7c:f9:a7:df:f7:76:39:0c:86:cc:56:95:ea:8b:5c:
51:3a:23:36:e4:e8:8a:b5:76:f5:6c:b4:45:f0:01:
68:4e:66:7a:b0:67:f7:99:77:b6:28:5c:74:be:ff:
bf:ef:40:85:92:30:b5:78:e1:83:2f:15:72:d2:7f:
54:ba:fc:79:03:7d:cb:95:38:c5:0e:5c:0e:8e:59:
a4:de:2c:38:e8:a0:6d:8a:6c:5a:e8:17:4d:c5:ca:
eb:23:a0:d0:f0:62:89:9d:05:d6:f0:18:47:68:39:
41:22:a3:a9:88:6e:34:1c:e2:35:69:66:6a:9a:41:
e1:59:26:08:ec:11:62:92:fb:0e:04:e9:b4:7b:e9:
a5:d5:80:da:39:3b:d8:2e:62:1a:a7:64:8f:f2:3f:
26:60:19:32:ec:a7:37:45:c7:9d:9a:e0:7b:1f:ac:
b1:fb:73:d2:2e:08:8f:e7:c6:60:e5:f2:49:1c:08:
2b:58:c1:97:a5:64:63:50:5b:21:c3:29:77:5c:dd:
2c:3b:ae:20:e7:1a:16:ff:f8:82:37:af:db:ff:83:
8f:b2:97:28:27:e4:4a:14:15:a0:e6:e8:a3:e9:e6:
b4:4f:79:94:6d:ed:86:fe:7a:6d:ea:19:25:d6:4b:
6a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:77:02:7B:99:AD:58:0A:C3:61:26:64:25:E1:CC:CA:05:D6:E4:F5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/33cCe5mtWArDYSZkJeHMygXW5PU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404::/36
Signature Algorithm: sha256WithRSAEncryption
1a:2c:dd:54:7e:04:72:78:a4:98:af:49:ae:1c:54:f5:74:fe:
2a:d5:6e:08:94:87:8d:47:95:7d:80:c0:e4:00:ee:4b:d4:64:
0a:7c:6b:88:42:eb:45:c9:d3:e2:75:b7:18:97:a1:b2:17:87:
d2:82:ee:3c:5a:c0:5d:5f:4a:7b:79:18:67:58:50:25:c5:7e:
98:8c:22:fd:4e:be:1b:c6:28:74:04:8f:f2:5f:c1:18:70:62:
fe:a7:f2:ef:e7:d3:5f:d8:83:62:4a:f0:38:76:8e:2a:c0:e9:
56:b7:0c:31:47:9c:44:d9:26:2a:88:d4:3f:75:bc:42:77:af:
b4:17:bd:a5:40:ec:bf:08:0a:d7:c8:2b:26:7f:1f:dc:98:0b:
c2:25:0d:6f:c0:90:b8:ba:2c:92:2c:37:35:9f:41:ab:5e:0a:
67:50:ff:27:28:fe:84:79:be:a5:a7:94:e0:e3:4a:be:b8:f4:
b1:43:cd:81:60:46:6f:9d:3e:ca:44:eb:98:af:3c:44:01:72:
bb:c7:51:7a:c0:a9:6c:5c:02:d5:c6:33:3a:ad:05:40:7e:38:
0a:d6:5e:01:0a:24:de:96:13:bd:46:df:28:2d:82:21:d1:ac:
11:3f:3a:2e:1d:4c:56:b6:d3:25:1a:1a:e5:47:13:ed:4b:5f:
ad:da:09:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org