Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7_9A9OFML-DUm3gyadYTRnRNc2k.roa
File: 7_9A9OFML-DUm3gyadYTRnRNc2k.roa (raw, json)
Hash identifier: nxMQP5eHS9SCzM8JRo/ARTZgZrG4lgGfNarv4wsk7gU=
Subject key identifier: EF:FF:40:F4:E1:4C:2F:E0:D4:9B:78:32:69:D6:13:46:74:4D:73:69
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10DF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7_9A9OFML-DUm3gyadYTRnRNc2k.roa
Signing time: Tue 16 May 2023 08:36:45 +0000
ROA not before: Tue 16 May 2023 08:36:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.200.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4319 (0x10df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:45 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EFFF40F4E14C2FE0D49B783269D61346744D7369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ea:f1:c9:4c:fe:6f:ab:a0:02:9c:4e:f0:e0:
f7:57:1f:5a:da:63:42:0c:65:ca:f5:d2:17:2a:8b:
7f:34:6d:1e:99:0c:dc:c4:9a:05:fc:18:41:ab:7a:
c7:1f:9f:44:62:d4:ea:ca:27:de:e1:9f:13:5c:1e:
08:73:85:7f:56:33:97:c7:20:7a:03:f8:7b:35:a4:
66:26:a7:fd:6e:a6:9a:3f:12:28:82:b6:57:b5:27:
0a:19:32:84:25:13:72:e0:4a:38:70:af:6d:d0:6f:
23:ec:95:35:da:a0:28:82:63:79:ce:01:88:a2:f6:
f5:04:6f:9f:15:43:8d:22:9c:9e:3f:22:ca:77:5d:
26:50:d7:76:7a:9d:f9:75:79:55:92:06:ad:b1:56:
4d:59:c8:99:f3:8d:57:3b:9f:72:fe:84:f5:7d:36:
ab:be:ac:24:63:a4:a0:98:be:b8:9f:23:86:57:44:
41:0b:f3:40:66:af:d7:8b:69:24:70:17:a4:e0:5e:
e3:45:4f:88:03:00:06:9f:e4:a9:9b:72:b5:c5:f1:
48:29:db:ae:d7:79:f1:de:fe:df:ec:4c:b4:e2:12:
2a:75:ef:92:bd:08:d7:5f:9b:be:4e:50:25:35:88:
2c:64:e3:9a:1a:ab:25:bf:1f:54:70:a2:f8:be:29:
af:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FF:40:F4:E1:4C:2F:E0:D4:9B:78:32:69:D6:13:46:74:4D:73:69
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7_9A9OFML-DUm3gyadYTRnRNc2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.17.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:b2:48:6f:fb:42:40:2c:22:c2:c5:df:b5:e2:73:3a:ee:2c:
39:a0:e6:a6:04:a9:da:e8:93:81:78:32:79:e9:40:75:54:0f:
8d:9e:31:89:89:42:c2:26:83:00:99:e1:e3:14:f6:f4:6b:05:
29:cf:4d:fa:7e:fa:4e:76:79:9b:90:b2:5a:c3:ff:b5:48:84:
3e:50:16:e7:31:51:59:75:14:51:26:c9:9b:05:60:82:97:6a:
f4:68:84:0f:e7:54:c8:c8:2d:b2:61:9f:77:40:5e:02:43:e5:
bd:3b:99:e0:d3:50:97:4c:29:f0:7d:ca:ec:42:9c:c2:5b:ca:
0f:dc:a5:b9:d4:14:26:a4:1e:fe:dc:a6:1d:2d:14:c4:f1:f2:
7c:ac:5a:96:d9:de:98:f8:64:6d:87:c1:4a:e9:0a:8b:53:92:
73:dd:25:30:55:8a:ff:7a:d4:3d:0b:7c:01:35:76:90:88:95:
ee:e8:b6:bd:17:00:1c:f5:e0:57:c8:af:e5:6b:ea:93:46:d3:
da:06:38:14:b3:a3:0f:1e:8c:17:12:c5:d5:ca:77:68:6e:1e:
0c:24:1d:6e:d8:80:bd:b1:04:6a:7f:ae:3d:e4:3e:1a:2c:b5:
e9:e5:75:99:3b:a4:6f:09:c9:4f:06:0c:b4:2f:2b:54:1e:04:
10:6c:35:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org