Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/4u5f1sqRny6PzUCtmcnZoe7KOHw.roa
File: 4u5f1sqRny6PzUCtmcnZoe7KOHw.roa (raw, json)
Hash identifier: cqfnlsxVnVJYAhbSJNT/dDFrjPLqi4KPukWfUQtlLlc=
Subject key identifier: E2:EE:5F:D6:CA:91:9F:2E:8F:CD:40:AD:99:C9:D9:A1:EE:CA:38:7C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 105F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4u5f1sqRny6PzUCtmcnZoe7KOHw.roa
Signing time: Tue 16 May 2023 08:36:06 +0000
ROA not before: Tue 16 May 2023 08:36:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4191 (0x105f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:06 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E2EE5FD6CA919F2E8FCD40AD99C9D9A1EECA387C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fa:66:9d:83:d2:fb:2e:05:06:e2:0f:ec:23:
45:e4:eb:d6:b3:85:e9:2d:41:d4:18:bb:57:29:ea:
d5:59:d9:b6:74:7e:86:52:ac:66:30:fe:bc:66:dc:
27:90:f2:41:5d:bc:63:35:2c:1c:55:e8:7f:08:6d:
b6:a1:10:d7:0f:d6:db:e0:36:25:25:3c:8a:36:ba:
4c:d4:43:51:8d:74:d5:84:c7:4d:b0:b7:2b:83:d1:
7f:1e:71:4e:7c:ee:63:ee:0d:c1:90:20:03:97:aa:
c4:21:d2:a6:79:a8:91:dd:a2:f5:d7:49:1e:cf:3a:
87:76:71:e8:60:2d:51:5a:35:e5:a5:3d:d5:da:1f:
a1:7b:28:00:4c:2e:f6:e6:0a:d7:23:fc:7f:df:a3:
5f:6a:ab:82:89:65:d5:99:68:2d:26:34:3f:63:17:
7b:aa:01:dc:f5:16:9a:93:b9:df:59:fa:9f:03:f2:
78:36:b4:f6:92:69:54:cf:5b:a2:bb:50:bd:7f:db:
a8:e6:9d:c8:fa:e6:42:3c:f8:66:8a:26:53:eb:ac:
08:d6:de:a7:9c:56:29:ff:4f:22:71:4d:ac:b8:f7:
38:30:e7:12:29:fb:5b:7d:55:ae:84:94:6e:2f:55:
be:27:df:87:39:58:93:82:d6:4e:f4:31:15:d9:7c:
a7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EE:5F:D6:CA:91:9F:2E:8F:CD:40:AD:99:C9:D9:A1:EE:CA:38:7C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4u5f1sqRny6PzUCtmcnZoe7KOHw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
80:bd:d5:c0:db:af:1e:0c:c5:53:32:bd:1e:e4:59:ce:64:aa:
08:38:f3:2a:7c:2e:d3:c2:95:8b:fe:bc:02:2e:b3:8b:f6:e4:
d6:ed:31:67:10:67:57:46:11:f9:73:ab:7c:b0:84:bc:98:de:
c6:b8:3b:c9:d9:76:0b:ad:4e:4a:c6:26:70:bb:7c:34:4c:f4:
ac:61:93:4e:fc:ca:f8:55:f7:39:6f:cc:7b:92:db:32:07:81:
f8:8d:bc:5d:95:16:16:50:37:cb:b7:85:3b:8c:4e:5c:50:ad:
38:3f:5a:76:ba:96:dc:20:2e:69:34:9e:28:11:56:d0:d5:30:
d9:60:d1:8c:97:66:86:b2:49:83:57:0a:53:a9:e7:7d:89:c4:
da:bf:92:57:78:69:70:87:05:3c:ab:da:8a:d5:e6:b9:a1:73:
5a:3c:24:53:5b:a2:d7:af:b9:8c:02:cc:cd:6d:8b:e8:8f:20:
68:87:75:3d:aa:45:10:4b:97:65:82:55:c3:8c:be:17:1a:42:
9a:36:70:b2:9a:b5:6a:82:b5:57:ec:3c:c3:97:9d:76:b1:ac:
bf:50:71:db:d2:ca:ee:7e:41:96:4c:f8:b1:ed:dd:e0:e8:db:
54:9b:7c:33:f0:f0:76:e3:9f:71:ba:df:c3:41:54:2c:6b:41:
92:e6:fe:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org