Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/76TE0UN9F8EGlkhfyzdyaSfsSFg.roa
File: 76TE0UN9F8EGlkhfyzdyaSfsSFg.roa (raw, json)
Hash identifier: VaXMVHQZaLzYvzSbPYUncn4s3jIDyA8yHc7vNczIGY4=
Subject key identifier: EF:A4:C4:D1:43:7D:17:C1:06:96:48:5F:CB:37:72:69:27:EC:48:58
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12BB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/76TE0UN9F8EGlkhfyzdyaSfsSFg.roa
Signing time: Fri 01 Sep 2023 08:04:55 +0000
ROA not before: Fri 01 Sep 2023 08:04:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4795 (0x12bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EFA4C4D1437D17C10696485FCB37726927EC4858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:18:27:3b:38:47:ce:ae:a6:fc:84:bc:1d:08:
ec:82:f6:13:a5:19:7c:f4:7a:5c:f2:67:9c:5b:80:
c7:fc:3c:be:41:7a:a8:69:5b:1e:9c:39:14:94:ae:
43:77:54:36:d8:ec:ed:48:0b:ca:2e:53:c7:96:2c:
ab:a7:a3:18:e2:24:72:4e:98:ea:56:6c:cf:56:0f:
0c:f4:41:be:77:3d:cc:92:15:1d:f2:69:e4:90:23:
95:fc:1c:fa:53:ab:d3:ea:30:4a:7a:ce:37:c9:38:
53:11:50:14:62:a6:43:46:d6:14:c9:e3:d6:8a:4e:
41:c2:67:e2:38:3d:01:78:ab:9e:04:3a:4a:c9:18:
45:0c:17:66:14:f9:a2:b1:5c:d7:e9:37:6a:f7:f4:
86:fc:50:73:ec:34:f8:e1:7f:9f:b8:28:55:32:4f:
ca:3a:c1:cd:e5:cb:55:69:dc:4a:22:7f:89:ec:9a:
9f:62:25:08:17:1f:d2:6b:46:11:fa:23:dd:04:e3:
43:92:b7:5c:72:1f:81:a2:14:6c:bb:02:00:0f:e8:
5e:e0:82:30:6f:a5:c4:63:1e:4c:20:01:04:b4:f1:
f8:3a:41:8e:d2:3e:7c:28:9f:a3:17:49:50:a0:71:
02:46:c1:56:39:6f:16:df:f0:25:3a:56:93:7b:27:
7d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A4:C4:D1:43:7D:17:C1:06:96:48:5F:CB:37:72:69:27:EC:48:58
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/76TE0UN9F8EGlkhfyzdyaSfsSFg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
aa:af:e6:14:7f:a7:ff:ad:cc:cb:fe:b5:a5:07:5e:a9:a5:b1:
7f:c4:4f:49:f0:8d:04:87:96:46:4c:10:44:8b:3a:19:c5:f9:
3e:e6:4d:4c:56:2b:50:08:86:c6:50:89:52:07:6e:40:d2:32:
7e:a9:ac:45:d1:ca:db:ae:8a:c3:0f:e9:28:34:4c:08:b3:54:
9d:16:0e:92:14:e4:f7:12:3c:0f:36:2d:a9:a3:31:bb:35:b3:
ec:93:29:57:48:c9:9a:ac:cd:8d:a9:2b:e6:9b:17:83:ca:e1:
19:f4:fa:ff:34:69:61:a2:58:82:a9:95:3c:2a:d4:3f:ad:ad:
eb:9a:63:b9:58:38:55:72:73:27:51:63:9d:2f:75:b0:20:5a:
ae:90:cb:0a:64:11:54:3e:d8:85:4a:dc:42:7e:5b:65:46:c6:
d8:92:94:dc:53:3f:7b:84:23:ae:01:a1:b6:44:dc:9e:f3:9f:
c1:98:10:74:d6:1a:fb:41:00:11:e4:10:f3:22:eb:86:b4:42:
6f:45:2e:cf:65:f7:71:49:10:6e:df:95:61:a6:4a:3c:21:95:
72:8c:26:a3:f6:9e:6a:a2:61:35:88:f0:f6:9a:1c:d7:25:32:
f5:00:95:52:cc:df:9b:ba:9b:cc:f6:2a:bb:7c:21:8f:13:2b:
20:a8:07:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org