Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/4ZYNSrE4RnRz-PB1wb1_D59bIq0.roa
File: 4ZYNSrE4RnRz-PB1wb1_D59bIq0.roa (raw, json)
Hash identifier: zrH6M02SKVTzAcVd8ZMlA03yjwz37YAL1gMxShEkTzg=
Subject key identifier: E1:96:0D:4A:B1:38:46:74:73:F8:F0:75:C1:BD:7F:0F:9F:5B:22:AD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E52
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4ZYNSrE4RnRz-PB1wb1_D59bIq0.roa
Signing time: Wed 29 Sep 2021 02:40:14 +0000
ROA not before: Wed 29 Sep 2021 02:40:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.58.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3666 (0xe52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E1960D4AB138467473F8F075C1BD7F0F9F5B22AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:10:49:77:f3:e4:1d:20:c5:b0:e9:98:c0:46:
0b:8f:50:7e:90:ff:08:8e:6f:31:df:90:f8:08:5f:
0e:a5:13:f7:ea:08:23:95:e5:77:46:1c:2c:d9:41:
6c:42:cd:7e:4f:67:27:6e:fd:d3:c7:c1:6a:24:04:
8e:fa:f0:46:74:c9:32:07:57:46:f9:96:0d:cb:9d:
fc:c2:7f:55:98:ae:31:c6:91:21:c3:d3:63:d0:20:
cb:d8:37:97:ca:c6:e4:f9:00:3e:e2:b9:c9:8c:32:
98:08:19:d7:93:cf:38:8b:56:d9:bb:80:e3:91:08:
39:51:59:02:b7:50:b3:13:b5:34:11:14:9a:fd:8b:
dd:f8:95:dd:96:26:ab:e5:84:41:ec:eb:67:f2:3d:
8c:4b:f5:c8:4a:88:21:5f:a7:63:ad:1f:fc:9e:43:
e8:e2:40:9f:9e:d1:6e:df:ea:f8:04:f8:28:00:e3:
ed:6b:da:f7:c5:6e:6b:b9:be:49:8a:41:67:f5:c1:
4b:48:ed:c1:b1:bf:d9:aa:00:33:40:d9:0d:ec:cf:
58:de:00:8d:05:c6:ec:03:20:18:61:fd:d7:71:2e:
3a:65:a5:15:ea:a3:39:6a:e8:e0:40:21:a4:a9:41:
f7:a6:a3:bf:d6:6f:66:73:54:79:d0:21:c0:1f:c3:
c4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:96:0D:4A:B1:38:46:74:73:F8:F0:75:C1:BD:7F:0F:9F:5B:22:AD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4ZYNSrE4RnRz-PB1wb1_D59bIq0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.88.0/24
Signature Algorithm: sha256WithRSAEncryption
11:fe:13:bc:7d:5b:6d:07:83:89:6c:b2:e5:3b:e6:d2:91:72:
32:b6:a1:47:23:f9:de:63:52:37:68:ed:e2:a6:19:f1:cf:9d:
fe:f0:5a:74:9b:8b:6d:8f:fe:e6:9c:5c:54:55:c6:b4:bc:f0:
df:40:de:30:b2:b7:3d:0a:e6:12:ab:4a:22:6a:10:f1:7e:84:
a0:fd:f2:7c:dc:90:bb:24:a1:89:7f:83:10:6c:88:b2:7b:6c:
61:88:f9:50:29:fc:5a:41:15:80:49:c1:90:30:23:f0:22:e5:
11:0f:b7:ed:c5:4d:45:dc:7b:54:fb:fc:1f:2d:b0:29:ca:b9:
2a:63:f6:3b:c9:59:bd:2f:85:47:d5:9b:07:39:77:94:34:bd:
0c:c6:4c:83:e0:bc:83:e1:8e:cb:8b:08:42:6d:8b:39:49:70:
3f:15:fb:8d:3b:10:5b:f2:4e:0b:91:03:e2:48:b7:41:b5:42:
3f:03:14:d8:d5:1d:b4:a4:86:fa:d3:f6:3b:22:aa:10:f9:9e:
0d:c6:62:ad:7c:12:4d:6a:9d:c2:58:b7:dc:11:02:41:e3:a4:
62:c1:0e:f4:c5:ec:59:b8:84:dd:df:ea:11:5d:64:e5:83:7e:
2d:c7:d7:4b:84:f3:ec:d1:dd:8f:de:99:66:6c:1c:75:35:1b:
aa:10:d5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org