Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7SuQHVymJkhAf-OsLLuVZd1MQf4.roa
File: 7SuQHVymJkhAf-OsLLuVZd1MQf4.roa (raw, json)
Hash identifier: EjR4krAudag8NIazltbQbBT963LFxu01HnrW7zb39SE=
Subject key identifier: ED:2B:90:1D:5C:A6:26:48:40:7F:E3:AC:2C:BB:95:65:DD:4C:41:FE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E2D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7SuQHVymJkhAf-OsLLuVZd1MQf4.roa
Signing time: Wed 29 Sep 2021 02:40:03 +0000
ROA not before: Wed 29 Sep 2021 02:40:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.203.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3629 (0xe2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=ED2B901D5CA62648407FE3AC2CBB9565DD4C41FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8e:66:8f:a1:f5:22:6e:d0:5d:3b:42:bf:a4:
76:87:05:4f:60:ba:c0:51:a0:7e:f9:a9:6f:13:c9:
52:11:04:59:2a:d5:83:f0:2b:e5:49:4d:58:92:53:
cc:1a:44:c7:eb:0f:e4:13:7f:2e:70:ec:cc:56:4b:
53:26:27:b7:1e:a8:46:4b:b2:9c:fe:ad:00:6f:df:
09:1c:1d:96:a5:75:a9:6f:6c:aa:ee:e3:ee:2e:13:
5d:e7:48:48:dc:71:e7:75:ad:fd:94:86:2b:59:f7:
86:34:8f:bf:a6:81:5b:24:93:ab:5f:d8:81:c8:db:
23:71:d1:f5:81:10:7f:48:bc:84:3a:00:9b:f6:9d:
61:d3:87:b5:3d:ce:a1:af:36:af:b6:ef:2c:f9:1a:
1f:33:74:09:31:46:2e:79:37:44:78:3e:2f:ce:d5:
3c:82:a3:2f:78:70:83:85:7e:79:75:76:a9:ea:07:
3c:13:2c:13:22:a6:a0:3e:c0:56:0e:61:0a:cb:5c:
cf:35:cc:50:33:e8:79:b4:c4:f9:be:0d:50:42:4d:
d3:c4:af:b7:37:1f:51:da:58:0b:66:a5:71:03:d3:
20:4d:f2:5d:e9:f6:66:a0:15:8b:97:b9:24:d9:6f:
e7:a1:9b:73:03:83:10:06:c2:35:15:27:2c:a2:59:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2B:90:1D:5C:A6:26:48:40:7F:E3:AC:2C:BB:95:65:DD:4C:41:FE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7SuQHVymJkhAf-OsLLuVZd1MQf4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e8:53:c5:2f:a6:5b:49:63:75:9b:c0:b7:c7:e8:1d:f9:05:
51:cc:fd:27:ce:f1:8f:87:41:f2:a1:d3:bc:69:98:65:bb:a7:
94:d7:07:e5:ed:2c:69:17:71:fa:fa:d2:a0:99:7c:9c:63:4f:
1f:0d:24:c7:3d:98:7e:41:c2:d4:76:e4:d1:37:11:3e:78:f4:
fa:4c:2b:5d:da:01:e7:84:2d:04:50:af:e9:93:e9:7c:d4:4c:
60:f4:ac:2f:f9:ea:c4:51:ec:1b:17:04:d0:f5:82:bb:7e:82:
63:cc:00:7e:2a:6e:62:d9:5b:b9:05:c4:eb:90:29:59:ee:1c:
3e:fa:19:9c:fb:25:34:e3:a8:94:18:39:cc:42:74:38:f2:36:
43:e5:83:7b:c3:e7:12:54:5b:77:0d:b0:49:7f:5d:1c:96:18:
1b:22:f8:48:70:85:24:65:86:1f:d6:81:f9:7a:eb:72:97:49:
cf:d2:d7:60:79:cc:aa:a4:2b:ec:38:a3:a3:34:70:e0:a1:55:
59:b4:f4:90:83:ae:4e:f6:21:f6:a5:8d:68:0f:20:8f:93:ad:
78:77:0e:7c:10:d5:78:5e:0a:5f:a8:e9:cd:66:1d:71:0f:0f:
20:8a:56:2f:4e:c1:f1:22:4f:a9:e8:9d:a1:1c:bf:21:26:53:
34:a3:05:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org