Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/3tbC7IPRmBeYBAg7EHAeh3dUg_8.roa
File: 3tbC7IPRmBeYBAg7EHAeh3dUg_8.roa (raw, json)
Hash identifier: x/KcTT/L1Ooa9zbNZl8Bgf4b5neI3r/V2JhRVj4R3eo=
Subject key identifier: DE:D6:C2:EC:83:D1:98:17:98:04:08:3B:10:70:1E:87:77:54:83:FF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3tbC7IPRmBeYBAg7EHAeh3dUg_8.roa
Signing time: Thu 15 Sep 2022 02:40:09 +0000
ROA not before: Thu 15 Sep 2022 02:40:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 203.79.248.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DED6C2EC83D198179804083B10701E87775483FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:fa:79:43:db:37:8a:fa:fb:80:a7:82:0f:
60:5b:d0:4a:64:01:d8:7a:94:ab:b7:2a:f6:3f:34:
46:5c:62:93:d7:ac:58:7e:b3:6e:f4:62:58:8d:62:
50:c8:da:1a:6a:68:17:09:5b:0d:2c:33:9b:2d:03:
6a:eb:43:5b:7a:e5:87:3f:ee:d9:cf:a6:3b:d2:f3:
7e:4f:cd:5f:bb:57:53:bf:37:da:73:9e:75:fc:fa:
5c:68:b2:57:69:a1:c0:3b:73:42:47:e4:88:e4:c1:
f4:72:84:da:67:31:d5:2d:a3:d3:8a:48:46:14:b9:
20:78:70:71:dc:2a:7f:3e:81:c4:da:d7:e2:ee:ae:
04:9a:7c:92:d2:cd:6f:4e:65:8d:5c:17:af:e9:cd:
8a:ad:4e:ff:b1:39:52:5b:d2:22:56:2c:20:2d:7b:
90:ab:c5:7a:86:e4:1b:bd:8d:b4:06:e1:0e:fa:94:
ef:26:ca:eb:94:52:35:6f:e3:ed:95:60:f1:eb:d0:
77:18:e0:f6:09:de:fd:2d:df:0d:0a:72:2b:8d:71:
fb:45:02:ee:83:41:77:fa:6b:39:b6:38:82:ee:ee:
c9:d4:79:47:16:87:79:76:45:9b:e6:cc:9d:17:35:
00:e4:d9:cd:16:2b:4d:36:ee:b9:c9:58:60:ed:82:
fc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D6:C2:EC:83:D1:98:17:98:04:08:3B:10:70:1E:87:77:54:83:FF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3tbC7IPRmBeYBAg7EHAeh3dUg_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.248.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:12:a5:4c:90:2f:7d:e1:62:6a:34:30:9e:29:19:aa:fe:fe:
dd:1e:35:44:ec:68:ea:90:1e:bc:4b:3d:02:37:4f:3b:69:f8:
13:74:a4:f2:87:77:b9:8b:19:43:ea:ad:a5:87:9a:99:99:b4:
4d:2b:6b:a6:16:ba:5a:36:d7:a8:e5:53:69:fb:03:09:86:5c:
12:bf:09:8b:3c:58:19:3a:a0:a6:29:a8:ce:9b:70:87:30:db:
48:fe:7b:58:3d:55:03:4d:13:2f:02:5e:fd:aa:3c:3f:a2:b7:
32:4f:ae:28:0b:ff:4b:a8:15:a3:c9:48:d7:40:a4:f3:89:bb:
2c:90:82:d5:8b:e5:b9:be:73:86:e6:4d:76:f9:21:2a:6e:2f:
0a:52:8b:a7:62:d7:85:0a:c6:e3:3d:49:10:3b:c2:2b:ab:d8:
70:b2:f0:a4:15:8b:cb:fb:7d:7f:30:e3:e3:bd:e9:1e:24:d0:
68:56:43:55:df:e0:27:71:2a:73:85:32:d4:9f:d0:1c:44:a2:
b5:ad:e8:a1:09:7b:ad:83:35:3d:3a:a6:60:38:e9:75:1f:53:
a0:1c:64:06:4a:59:30:36:51:b0:54:40:57:21:f6:7a:ed:29:
21:2d:b5:69:7e:4a:9a:7f:ca:de:ff:5e:dd:fc:f5:92:d8:40:
de:ab:b1:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org