Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/67wyMZ5ICsugZ2oj29NmRmqUFdA.roa
File: 67wyMZ5ICsugZ2oj29NmRmqUFdA.roa (raw, json)
Hash identifier: plFEYsLu3irbwKewckGjR9rjVYcZxufsXUXIu3slK7U=
Subject key identifier: EB:BC:32:31:9E:48:0A:CB:A0:67:6A:23:DB:D3:66:46:6A:94:15:D0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/67wyMZ5ICsugZ2oj29NmRmqUFdA.roa
Signing time: Thu 15 Sep 2022 02:39:45 +0000
ROA not before: Thu 15 Sep 2022 02:39:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 219.91.68.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EBBC32319E480ACBA0676A23DBD366466A9415D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:aa:e2:45:24:5d:a4:69:6d:7e:b4:1c:ff:70:
15:2c:f8:1d:4a:e3:53:e3:ec:71:fc:16:35:d2:2e:
0b:29:3d:60:0c:f1:a6:e5:93:89:a8:95:2f:78:7c:
d3:00:e6:ae:c4:81:0b:45:dd:8e:d1:cb:0d:f5:d2:
f0:da:25:23:6a:64:fd:23:a7:60:6a:ad:5c:60:60:
c0:5d:d8:2a:d7:fe:10:a8:06:38:30:ef:75:85:15:
4c:db:e0:15:9b:5c:07:1e:48:e6:ba:f2:a5:7c:ed:
8c:5b:a3:6f:ee:5d:31:c6:05:e1:ef:bb:af:19:37:
71:9b:53:55:52:ce:b2:dd:c2:b4:0b:69:17:40:fb:
b8:ac:0a:a4:20:6c:a7:6b:4f:20:da:96:cf:3c:8e:
45:44:f3:7e:d7:56:5a:24:fc:d9:9c:38:96:2a:bf:
15:12:8c:5a:96:90:73:aa:11:42:71:77:64:7c:1e:
b4:76:4f:dc:21:08:0d:08:0a:2d:46:2b:7f:17:f3:
f3:6d:39:87:eb:f2:45:f5:bd:cb:9f:6c:0d:00:af:
90:f8:47:3a:91:62:fd:10:27:b3:4d:4a:bd:7f:91:
1c:c7:f0:13:58:8c:c9:73:7d:0c:86:df:99:e6:d5:
21:e5:5a:19:48:74:a5:4c:0b:4d:36:51:75:df:4b:
f3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BC:32:31:9E:48:0A:CB:A0:67:6A:23:DB:D3:66:46:6A:94:15:D0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/67wyMZ5ICsugZ2oj29NmRmqUFdA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.68.0/23
Signature Algorithm: sha256WithRSAEncryption
03:1c:62:4f:01:85:99:13:58:23:e8:1d:02:12:6c:f3:66:5e:
62:72:5f:44:91:1f:23:27:2d:e1:84:88:4d:73:2a:4c:0d:eb:
cb:6b:a2:f8:5a:0d:f4:73:4f:78:b9:60:28:17:9a:ec:0c:57:
81:39:8a:f8:79:47:37:82:59:cb:04:ef:9e:09:1c:cb:7e:95:
a3:e4:26:5a:74:23:93:39:36:79:2c:e8:36:2d:0d:5a:59:8b:
52:b1:6b:29:7e:1f:c3:e6:a9:a4:9f:d1:90:33:43:02:2d:cf:
e2:e4:84:ca:36:ab:09:29:6e:03:0d:7c:c1:f4:9b:86:64:b1:
de:ee:65:65:88:f6:a3:89:48:d1:d4:df:f7:81:df:8a:fe:66:
3a:22:9d:d3:4c:aa:8d:97:e7:ac:43:a6:29:21:40:52:00:cd:
ac:d6:50:64:1b:f3:6a:42:35:fa:d0:7d:ac:f3:cb:5b:5a:74:
0f:8c:ec:cc:e1:19:e7:93:13:e7:15:b0:a1:36:d7:ca:44:c8:
f8:a8:b5:d9:af:4b:e6:cc:da:3f:d7:fc:a3:43:d1:58:6f:2d:
ef:8e:49:86:79:55:dd:58:5a:44:f6:3f:e6:e2:03:a0:d8:94:
35:c7:a7:44:11:15:a9:cd:93:b3:85:b5:3b:b9:44:a3:ed:cf:
de:54:33:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org