Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/5EJkGOirSFIIB88FO93obqlCj_M.roa
File: 5EJkGOirSFIIB88FO93obqlCj_M.roa (raw, json)
Hash identifier: EN31y1JJ4/CTxNc1BhyIBHtdQxB5YauKa9De/ZqjrHE=
Subject key identifier: E4:42:64:18:E8:AB:48:52:08:07:CF:05:3B:DD:E8:6E:A9:42:8F:F3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0906
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5EJkGOirSFIIB88FO93obqlCj_M.roa
Signing time: Tue 29 Sep 2020 10:01:22 +0000
ROA not before: Tue 29 Sep 2020 10:01:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 223.22.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310 (0x906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E4426418E8AB48520807CF053BDDE86EA9428FF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1d:dc:76:48:73:25:7c:b7:38:4a:ac:c9:dd:
ac:0f:98:3e:f7:dd:9a:c9:c8:b4:f3:ac:26:45:39:
85:df:9d:7e:73:53:04:f1:bb:c3:e3:c2:28:83:ca:
42:40:b7:c7:b1:a7:3a:0e:6a:01:90:0a:9e:27:02:
38:05:84:63:d4:92:22:e8:35:b0:d1:c0:53:8a:aa:
44:4e:56:29:8a:3f:63:56:85:42:3e:ff:98:73:46:
74:0a:42:a8:30:65:35:ec:71:43:aa:61:3f:a2:de:
e3:e8:f5:ae:b3:7b:34:7c:66:9a:22:87:d5:0b:30:
50:3f:3c:4a:6d:b3:41:60:ab:85:0c:1b:99:b8:a9:
48:81:ee:77:af:5f:53:d0:16:90:e1:80:a8:f0:b2:
2b:e7:2a:2f:fe:bf:35:57:24:26:d4:f5:d5:d2:a7:
01:49:a9:2e:90:53:c5:91:68:c9:7e:01:c6:f4:e8:
96:76:49:91:4a:b6:d9:8f:df:5c:78:00:dc:be:62:
28:d3:d0:79:48:d1:19:95:da:c9:0b:7f:8b:48:7b:
5e:16:a3:c8:82:5f:ca:14:e0:4d:15:cf:ce:32:bf:
55:fe:34:1c:8b:72:56:53:16:74:5d:38:41:cd:b9:
19:e3:27:5b:4e:a6:3d:fe:7c:41:06:20:37:20:21:
a0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:42:64:18:E8:AB:48:52:08:07:CF:05:3B:DD:E8:6E:A9:42:8F:F3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5EJkGOirSFIIB88FO93obqlCj_M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:d2:ab:5e:5d:cc:c2:7e:40:07:17:ac:7d:f3:e1:73:a3:ef:
88:cf:a9:ee:e9:a8:43:47:da:75:ae:62:a8:bf:d0:24:44:d6:
85:45:b1:d1:90:3d:60:be:a0:45:ec:49:a6:db:f6:c6:95:3f:
db:61:d8:aa:2b:54:3e:a0:7d:55:3b:76:a4:5c:b9:70:08:b5:
60:6d:16:3c:1e:56:7b:cf:85:a7:ca:ff:35:8e:9a:c8:32:1a:
f5:82:2d:b8:36:73:16:60:fe:40:62:91:7b:2a:6d:4d:f7:39:
5a:f1:2a:07:6e:65:bf:ff:cb:ef:b8:fd:5c:0d:38:82:01:bf:
45:e6:07:9f:3c:4c:88:ed:1d:d6:2e:70:13:fa:d2:d4:bc:04:
20:6e:3d:80:78:26:67:ca:cc:f9:eb:19:d4:f6:92:a4:7d:18:
6b:32:c6:10:b1:de:cd:7d:21:b7:ae:57:e1:15:7c:80:a8:7b:
2b:1a:97:95:ed:6e:20:af:a7:e5:d2:28:2e:d6:71:44:68:47:
18:b2:09:0c:6e:7e:8a:6d:a1:1f:58:9a:23:e7:49:51:5f:4c:
25:ed:0a:1a:ff:00:0f:ba:ef:2d:2c:82:5a:95:cc:1f:13:d0:
56:0e:fb:47:dc:04:a3:e0:53:73:04:b9:e9:07:03:f5:53:46:
6e:99:61:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org