Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/4xxI6tf7X9G9ySmZNeMBpRMO_ag.roa
File: 4xxI6tf7X9G9ySmZNeMBpRMO_ag.roa (raw, json)
Hash identifier: HCV9rmGzn9QFlFHQaKzapk3c5Q/CKULHMHNs7kTeGAQ=
Subject key identifier: E3:1C:48:EA:D7:FB:5F:D1:BD:C9:29:99:35:E3:01:A5:13:0E:FD:A8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DF8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4xxI6tf7X9G9ySmZNeMBpRMO_ag.roa
Signing time: Wed 29 Sep 2021 02:39:48 +0000
ROA not before: Wed 29 Sep 2021 02:39:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.63.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3576 (0xdf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E31C48EAD7FB5FD1BDC9299935E301A5130EFDA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:43:21:c1:e7:ce:95:63:2f:bb:de:05:cd:b7:
67:7f:26:b5:32:d9:e6:42:aa:1a:b5:24:e4:e1:6e:
26:b5:3f:ce:f5:9c:20:16:28:1b:46:44:34:e1:18:
95:08:18:a4:cb:be:68:b9:69:47:d2:99:ff:58:d7:
e5:e1:6c:78:a6:07:fb:00:8e:a2:da:26:10:a3:a3:
d8:ba:bb:78:34:95:e1:c0:33:6d:2a:29:59:b3:11:
e6:1a:4b:fc:a8:5d:f8:01:43:3b:66:3e:18:3b:76:
6d:4c:8f:8d:2f:3b:45:7f:c3:bd:29:de:0e:6c:04:
d1:23:e6:73:11:6f:10:42:c8:ef:27:d7:49:61:14:
81:21:11:57:3b:c3:72:e8:97:29:f3:05:bf:7c:b6:
ec:98:9a:22:b0:b4:65:59:ee:8b:47:36:7d:22:e5:
fd:9b:e6:b5:fb:5a:7e:46:ed:e1:da:26:c9:de:9c:
4d:62:33:e8:9f:a3:ae:18:65:30:d4:52:b7:d2:3a:
91:7c:06:fd:23:bb:3c:b9:a2:45:d5:37:7d:13:26:
ac:9a:f6:76:bf:4b:dd:ce:a6:60:3f:12:d8:ab:d3:
b2:bb:5c:ac:bb:61:d4:e8:50:93:ba:4d:ed:41:d6:
19:ac:f8:3f:ff:a6:18:c6:5f:63:cd:28:d1:4e:b1:
49:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:1C:48:EA:D7:FB:5F:D1:BD:C9:29:99:35:E3:01:A5:13:0E:FD:A8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/4xxI6tf7X9G9ySmZNeMBpRMO_ag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a7:52:98:01:31:db:2d:0f:54:2c:58:e6:a3:b5:72:e6:d2:e3:
04:1d:d0:ea:8e:46:1e:bf:24:7b:83:88:c4:c0:44:3a:b9:72:
b9:70:9b:ab:02:ff:69:90:30:54:66:28:80:f2:59:50:26:fa:
b7:87:ad:64:d3:2c:50:8b:df:ca:78:f1:05:9e:34:91:30:bc:
7d:00:29:95:15:9c:71:dc:d9:a3:b3:c2:64:c3:e2:fb:64:38:
16:25:0f:0d:b2:47:61:4f:1e:b8:0b:c3:3e:b5:05:04:ad:5c:
72:f3:b1:f6:8d:82:6d:14:b9:45:52:dd:f0:99:86:7c:45:c8:
84:63:25:26:f7:f3:9e:80:be:33:dd:fb:da:6c:dc:c9:1e:37:
9f:ee:23:02:4e:fd:f2:e5:ae:80:2c:03:4b:18:dd:6d:68:bf:
0f:7a:f7:22:d6:97:d2:e4:8d:21:5a:9e:a3:0b:76:8d:51:22:
ca:17:5f:1e:ef:33:5f:f4:fa:32:9b:71:52:9f:b4:b7:d7:96:
d2:a9:a2:e0:36:d5:fa:fd:b7:8f:2c:3d:05:69:f0:2f:b3:88:
ba:93:1c:90:fe:87:05:76:5a:fe:92:71:71:5b:8d:e8:39:5f:
d6:11:62:0f:04:73:5d:af:34:b4:b2:f2:e8:5f:f8:36:33:d1:
eb:da:7c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org