Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/73m8fZAqwVUjeK77E1VyjZXVMSA.roa
File: 73m8fZAqwVUjeK77E1VyjZXVMSA.roa (raw, json)
Hash identifier: Wi5svqXge9UiYO8e/XD5r0omg5Y7I/+LC2RcKsq8N5c=
Subject key identifier: EF:79:BC:7D:90:2A:C1:55:23:78:AE:FB:13:55:72:8D:95:D5:31:20
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1082
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/73m8fZAqwVUjeK77E1VyjZXVMSA.roa
Signing time: Tue 16 May 2023 08:36:18 +0000
ROA not before: Tue 16 May 2023 08:36:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 203.79.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4226 (0x1082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EF79BC7D902AC1552378AEFB1355728D95D53120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:b5:01:8c:33:bc:dc:cb:f5:91:63:26:87:
07:7c:48:ca:f0:00:26:a6:6e:d9:87:3b:e1:1f:2a:
96:4c:67:eb:71:fc:76:04:13:98:5e:e9:b4:25:e7:
34:ce:2d:c2:f8:f3:22:f3:81:15:60:86:c7:8a:9d:
c0:60:33:94:8b:b3:d4:6f:8a:8d:eb:e6:33:6e:7d:
d6:dd:15:b4:f1:71:a2:a5:2b:42:ce:d2:b3:48:19:
15:31:de:aa:75:03:a2:c2:a5:ea:73:d8:a6:6b:83:
07:a1:ec:d8:08:85:11:7a:c7:5d:fe:89:db:66:2a:
aa:a7:2e:d7:5e:f7:ab:ac:a5:e0:11:31:5f:ee:10:
e6:b4:4c:42:d3:ea:46:ee:68:b7:3e:2e:42:35:e3:
79:aa:f5:40:d0:1f:f4:b3:d1:81:bc:c7:4c:7d:54:
dc:39:41:84:e2:f0:e7:dc:a3:97:18:f2:ab:b2:1e:
0e:30:02:ee:98:75:72:c1:30:cc:06:fa:27:25:22:
9a:9d:60:26:99:70:4a:22:26:64:40:77:74:f6:ec:
34:23:79:9e:34:16:f4:3a:cd:8d:ad:72:70:6a:57:
b8:22:4a:1a:6c:7c:b4:2d:10:01:4b:a8:3a:09:1f:
97:ea:0d:d1:00:fa:a1:28:00:c3:94:55:c2:2a:92:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:79:BC:7D:90:2A:C1:55:23:78:AE:FB:13:55:72:8D:95:D5:31:20
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/73m8fZAqwVUjeK77E1VyjZXVMSA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.216.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:cf:17:41:a4:3a:16:72:13:ed:c9:06:04:64:11:3d:94:69:
d1:ba:7f:fe:52:8f:55:27:2b:da:2a:e5:c4:e0:9d:bc:04:1f:
5a:75:ff:b0:f7:2a:a9:7b:be:35:dd:41:19:b3:16:cf:10:55:
88:57:af:7d:19:32:ff:d0:39:e6:63:64:54:22:7e:f8:d5:29:
26:33:3e:37:67:09:68:ee:15:e3:e6:89:4a:4f:a6:82:a1:02:
48:4d:19:33:d9:9f:2c:e1:44:f1:82:c0:49:be:cd:e6:12:22:
1c:5a:a4:67:c4:df:1e:2b:c1:b8:f4:7b:1f:63:4a:42:ac:16:
d2:36:8f:f1:10:94:c6:b0:ba:4b:62:08:02:3e:48:f6:b9:71:
da:4e:e4:7c:db:66:41:37:30:90:75:7d:bc:b7:3f:45:95:79:
4f:37:bc:2d:59:37:0c:55:1b:28:9f:4a:58:b6:c1:09:e9:ae:
a5:95:fa:ba:ca:24:a6:e3:22:b2:a5:45:5b:71:e7:9e:c7:83:
97:ca:b3:ae:21:a2:d1:6f:59:c3:be:6c:da:64:f8:71:50:44:
6a:36:f3:6d:49:e4:35:6c:11:0b:06:f8:3f:56:58:8c:35:52:
c9:e8:34:53:bf:cf:bc:45:99:4b:b9:ee:c5:68:e1:37:f2:4d:
2b:12:25:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org