Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/462Y3NsfiyCD1jEgvvPkEwwJPTw.roa
File: 462Y3NsfiyCD1jEgvvPkEwwJPTw.roa (raw, json)
Hash identifier: +E0OTjdFCgiP7TF/IjIbXcJUl58RBzOMVaHbSEGCVus=
Subject key identifier: E3:AD:98:DC:DB:1F:8B:20:83:D6:31:20:BE:F3:E4:13:0C:09:3D:3C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DCC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/462Y3NsfiyCD1jEgvvPkEwwJPTw.roa
Signing time: Wed 29 Sep 2021 02:39:34 +0000
ROA not before: Wed 29 Sep 2021 02:39:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9311
IP address blocks: 210.200.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3532 (0xdcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E3AD98DCDB1F8B2083D63120BEF3E4130C093D3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:be:3f:0c:e4:f4:6d:38:04:d0:59:7b:58:83:
f8:e7:ba:6a:84:d6:ee:be:1f:3f:51:ff:92:09:23:
48:46:46:c6:04:8a:81:3d:45:83:0a:ae:47:2b:ef:
7d:b3:cf:a3:2d:4b:2d:99:ec:84:6d:ca:6c:c5:f4:
2c:a0:c7:0a:f9:b5:d4:10:fc:79:d2:dd:87:2a:d4:
18:75:24:42:1c:39:c2:93:08:3a:49:5d:a4:89:9a:
69:c2:12:f3:e2:18:e6:71:da:b6:91:47:71:dc:4c:
15:3f:95:1d:91:d2:6e:19:4e:af:38:a7:b8:3b:71:
f9:52:f9:b1:19:6d:d8:ad:81:6a:2a:00:38:84:2a:
fe:ba:3b:b1:8c:5e:cd:5f:49:91:76:9a:ce:b0:75:
79:17:66:96:b9:1e:04:6f:2e:f9:6d:fd:88:33:2d:
e8:7b:65:d8:4b:1c:a3:bf:92:a1:34:64:07:bf:cf:
dd:10:9d:a9:94:7f:df:f4:4f:b5:be:c5:44:db:26:
6b:d4:a4:39:20:0b:53:45:fe:34:e8:01:96:59:77:
92:86:c0:f4:ce:5e:ed:32:96:e3:b5:f0:60:30:3d:
c0:10:2d:71:79:d0:91:ce:42:b8:0a:25:19:f4:fa:
88:79:0a:14:ef:2b:fa:ff:04:11:7d:97:67:48:fd:
50:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AD:98:DC:DB:1F:8B:20:83:D6:31:20:BE:F3:E4:13:0C:09:3D:3C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/462Y3NsfiyCD1jEgvvPkEwwJPTw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.17.0/24
Signature Algorithm: sha256WithRSAEncryption
49:e7:b3:91:03:48:e7:39:bc:be:a8:a9:c2:8a:b8:ad:2c:b5:
e9:ed:e3:e9:34:a0:40:02:ba:3e:52:e5:c2:1b:5e:82:9e:d8:
6d:69:85:4b:ad:60:c0:e5:c7:a0:76:fa:b8:f5:49:82:82:4b:
2b:49:98:16:c8:be:7e:46:db:ba:db:65:c3:86:e6:2d:bb:b5:
c6:ed:4b:6d:7c:64:5f:75:1c:46:57:ee:59:9e:a5:8c:72:49:
69:8b:d9:9f:3c:f6:43:50:08:7a:99:11:3f:0e:26:b6:68:b5:
47:fe:eb:fe:97:98:e8:2c:01:b2:a6:31:34:8c:df:fa:64:62:
c9:59:ae:f7:3c:98:1a:e6:d4:3c:1c:9c:33:eb:fa:2e:ee:a0:
86:99:65:d1:e2:8f:96:e2:fa:8a:66:1b:7a:43:9f:c9:3b:06:
89:54:03:74:3a:db:fd:34:5a:22:1d:df:63:4d:16:bc:a2:9e:
97:85:89:88:f5:2c:92:90:a3:00:d0:5d:86:e4:50:2e:3f:59:
62:0e:3d:eb:e7:fe:27:a2:6f:2b:91:24:5b:bf:b9:49:1f:04:
66:74:a9:eb:f5:ef:15:90:3d:84:d3:ca:ae:27:e3:54:60:18:
77:03:04:56:12:3f:ff:df:dd:5a:3e:d0:70:11:75:c8:a6:05:
d5:8f:77:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org