Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/77EbJgI9FEpmxmsrXH3vuuV7foY.roa
File: 77EbJgI9FEpmxmsrXH3vuuV7foY.roa (raw, json)
Hash identifier: LYv3nu+31mfp1QRyNW/LAxp3wYOw1/VsD+34UCUakqc=
Subject key identifier: EF:B1:1B:26:02:3D:14:4A:66:C6:6B:2B:5C:7D:EF:BA:E5:7B:7E:86
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10ED
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/77EbJgI9FEpmxmsrXH3vuuV7foY.roa
Signing time: Tue 16 May 2023 08:36:50 +0000
ROA not before: Tue 16 May 2023 08:36:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 203.79.128.0/17 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4333 (0x10ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:50 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EFB11B26023D144A66C66B2B5C7DEFBAE57B7E86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:38:b6:ae:e7:fb:6b:d1:f5:c2:4e:5f:99:
b3:cf:9f:08:7b:c2:56:05:5d:3d:1e:e9:53:1e:7d:
e7:46:aa:b5:10:99:4c:5c:47:e9:99:bf:83:17:aa:
d3:22:8b:64:a1:ac:df:57:90:a1:e8:19:1e:c2:c3:
ae:bc:c8:88:df:c9:1e:00:0a:3b:5a:35:d8:76:52:
7c:02:50:f2:4b:aa:6e:fe:87:d2:5e:f7:2c:83:f4:
8d:02:a0:83:3e:bc:75:fc:03:f2:27:c0:2c:7c:d2:
af:74:55:78:d0:5b:2b:83:1b:88:8b:f4:3b:41:94:
52:18:99:81:dd:3a:6f:79:47:21:e0:22:e4:56:de:
9e:42:63:81:29:9a:97:a8:78:0c:0c:38:82:d6:85:
4b:c0:5e:1b:fe:6e:3d:cd:2a:fa:0e:88:c1:9f:6b:
49:21:f8:76:df:a6:79:e4:cc:90:65:ca:94:47:3d:
7f:37:93:9f:17:70:3c:17:de:9d:47:76:5f:4a:f0:
d8:7b:bc:27:42:fd:6b:2c:d0:53:79:7e:1e:5e:91:
d6:cc:bb:d3:63:34:a9:66:9d:83:f8:a5:0c:76:51:
18:26:04:05:70:b0:8b:3a:7e:1f:4c:ed:99:97:76:
01:44:8e:36:ed:07:5f:87:a9:3b:02:06:c7:e0:df:
61:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B1:1B:26:02:3D:14:4A:66:C6:6B:2B:5C:7D:EF:BA:E5:7B:7E:86
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/77EbJgI9FEpmxmsrXH3vuuV7foY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2c:66:bd:ae:16:9f:9b:16:8c:8e:97:9f:6b:09:70:49:0b:03:
25:70:e1:4a:65:79:70:c3:0b:d8:d3:98:ac:81:3d:d5:bc:8e:
f8:3e:10:51:f9:1b:3c:87:54:10:5d:6c:c2:01:e6:60:07:50:
95:a4:d2:44:58:5b:6e:26:b1:21:f2:58:90:45:07:a5:3d:b0:
37:d7:6e:70:0e:51:59:fc:d5:92:e3:ae:9b:2b:f4:80:a5:36:
60:91:4e:79:d6:ac:1a:c8:b0:c0:b2:b4:08:ea:19:8e:f1:5d:
8f:3f:24:76:d4:0f:4c:43:91:8f:94:98:70:1e:8a:a6:db:3f:
89:bd:f7:51:ac:6d:d6:7d:e4:d4:74:b5:ad:c4:99:46:80:77:
68:89:ab:ce:11:d9:7e:42:a2:6d:67:85:01:8f:a8:8a:b3:88:
3a:60:a3:df:17:c2:ed:68:e2:e0:2e:f7:c9:6c:a8:00:44:1e:
1f:a1:52:d7:aa:6b:26:66:71:2c:1d:5f:e4:3d:16:01:e9:3e:
56:9d:e5:e7:21:42:b1:9d:95:d2:8b:e6:2b:4a:21:00:e6:0a:
74:7b:a2:5b:97:1b:9d:59:47:13:4a:64:dd:45:a1:e9:fc:55:
41:d5:c3:62:7c:3a:ed:3a:4d:3a:28:3b:3e:ba:7d:86:79:f7:
4a:c3:4f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org