Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/5DepVbZDX_DzgekrQmneWKvcC0s.roa
File: 5DepVbZDX_DzgekrQmneWKvcC0s.roa (raw, json)
Hash identifier: dENNH6zw8870FMxcxI4oC6HaU9Awc5+8GnxQaxrwNLo=
Subject key identifier: E4:37:A9:55:B6:43:5F:F0:F3:81:E9:2B:42:69:DE:58:AB:DC:0B:4B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DFA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5DepVbZDX_DzgekrQmneWKvcC0s.roa
Signing time: Wed 29 Sep 2021 02:39:49 +0000
ROA not before: Wed 29 Sep 2021 02:39:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 210.63.192.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3578 (0xdfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E437A955B6435FF0F381E92B4269DE58ABDC0B4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:20:89:12:94:38:dd:ee:03:fe:12:36:29:d8:
8a:d9:4e:26:0e:76:1f:67:a5:b4:04:d0:49:df:9b:
ef:3f:2c:2a:54:2c:86:df:a9:6a:55:51:07:ec:5c:
0e:ab:1b:99:46:69:8f:fd:e9:12:06:7f:07:ca:5e:
fb:2c:5d:cb:20:da:4e:fb:65:d5:39:dc:9b:de:bf:
41:78:bf:1f:0c:1e:bd:c7:56:2e:d5:f2:23:74:5d:
a6:b1:9a:b5:cd:5b:a2:ca:18:fb:67:50:cc:de:45:
51:b1:e7:18:ad:5c:79:8c:df:db:fd:01:28:57:c2:
80:c8:89:04:c9:99:0e:c5:d0:a3:a8:ae:31:34:13:
de:db:45:21:23:f9:d0:0d:9f:9e:1f:0e:04:78:ed:
aa:bf:24:2a:2b:71:17:d2:0f:ec:63:f9:12:f7:6e:
63:b2:4f:76:15:69:1b:09:3f:54:c1:f9:47:02:d9:
fa:55:d0:0a:3d:4f:f6:1c:08:11:20:97:b8:19:37:
f4:a6:62:3e:0d:bf:e5:6c:81:76:eb:c3:e0:b3:74:
5d:ba:18:74:d1:7c:1f:8e:cd:b9:eb:0d:db:04:d5:
91:1c:99:4c:da:fe:db:c1:79:d6:14:bf:4f:71:9e:
8b:c0:9b:b1:3f:50:37:fc:f9:e0:2a:90:b8:38:f6:
32:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:37:A9:55:B6:43:5F:F0:F3:81:E9:2B:42:69:DE:58:AB:DC:0B:4B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5DepVbZDX_DzgekrQmneWKvcC0s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/21
Signature Algorithm: sha256WithRSAEncryption
4d:34:58:e3:3d:d3:a6:4d:8c:5e:11:52:ad:20:d7:03:8e:d9:
18:72:f8:71:78:ba:cf:9c:c9:b8:5e:be:dd:14:65:33:3a:0c:
a8:02:7e:c4:d1:46:bc:29:55:c4:06:16:5e:a2:d9:a7:de:a7:
7f:9a:d5:67:0e:91:ad:90:29:19:62:7a:ba:19:f9:12:52:a7:
4b:94:4e:1f:9b:3e:3a:e4:8e:6d:0c:a6:9c:35:60:6b:88:d2:
96:e6:f0:ef:b4:81:35:91:4b:02:93:97:fa:d1:b5:d0:8b:48:
de:3f:88:0e:ee:bf:b4:2d:e1:96:b1:ac:d3:36:25:6c:f1:69:
7e:22:c6:e7:56:d3:9b:ef:cc:33:0d:2d:9b:44:ec:e4:37:49:
65:fb:7a:35:ba:89:ec:31:df:6b:aa:8a:b4:98:57:73:64:a1:
77:da:d3:20:1d:7d:6a:9d:7c:ea:63:ac:9e:74:f2:71:be:b1:
02:62:e9:46:de:e6:b2:c8:d9:68:25:2a:c6:85:80:e9:42:1e:
4c:09:09:aa:7b:54:f4:5a:39:81:cb:36:b3:a3:dc:66:78:5f:
e7:3d:6b:6c:23:bc:dc:8d:cf:31:ad:8d:19:2f:a9:0f:4c:4a:
ad:65:8b:f1:61:50:c4:1e:32:b2:ba:6d:6e:57:48:e0:24:d9:
d9:16:c7:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org