Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7eFFTSU1X-j_1FljR_jSNBcjXJo.roa
File: 7eFFTSU1X-j_1FljR_jSNBcjXJo.roa (raw, json)
Hash identifier: Ea0/nffQKwldEMph/LX2gC7M6GCA1928iLIkfczUHz0=
Subject key identifier: ED:E1:45:4D:25:35:5F:E8:FF:D4:59:63:47:F8:D2:34:17:23:5C:9A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DDE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7eFFTSU1X-j_1FljR_jSNBcjXJo.roa
Signing time: Wed 29 Sep 2021 02:39:39 +0000
ROA not before: Wed 29 Sep 2021 02:39:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.201.72.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3550 (0xdde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EDE1454D25355FE8FFD4596347F8D23417235C9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:60:c7:59:e8:45:fe:1e:99:b1:89:c5:8e:82:
b4:0b:98:15:b2:7a:41:aa:5c:01:00:c3:bb:c3:3f:
79:f2:93:e5:4a:b8:c5:a5:f6:e5:e4:b9:44:bb:8f:
79:41:12:79:45:61:6f:a5:58:5f:88:1d:f1:2c:12:
71:9c:61:cb:25:15:3c:17:f0:b5:14:ef:25:f1:63:
f8:fa:ea:66:5d:9e:14:a7:4c:4e:2e:f9:70:87:a3:
93:c1:98:a4:43:bf:24:17:ce:97:0f:8f:7a:12:4e:
e0:0d:42:42:73:a3:c7:ab:96:60:41:ab:e4:01:ad:
63:8a:11:4c:9f:0c:fd:32:1e:b4:d3:ff:d1:2b:af:
e4:e6:ef:78:a3:34:fc:8c:1c:da:55:65:a1:9b:60:
e6:27:3c:7d:21:aa:ec:a5:30:d2:6c:c3:4f:31:c5:
c1:e6:6b:b7:4a:e7:94:3b:ad:43:04:84:3e:db:61:
51:1c:c1:3e:64:59:99:64:b4:eb:d7:0b:f2:9f:c9:
e5:bc:c5:c2:8a:e5:95:45:16:b7:82:d8:46:1d:6e:
2a:6d:a2:99:9b:b3:99:5a:ba:c8:01:b4:0e:a6:01:
7f:9f:83:ff:6f:11:10:4f:97:55:f9:e1:48:d0:d9:
91:42:d5:d2:b7:af:ed:f3:a4:27:0e:8d:84:26:44:
1f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E1:45:4D:25:35:5F:E8:FF:D4:59:63:47:F8:D2:34:17:23:5C:9A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7eFFTSU1X-j_1FljR_jSNBcjXJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.72.0/23
Signature Algorithm: sha256WithRSAEncryption
72:bf:5f:60:53:18:01:78:97:96:9e:cd:68:da:c9:cd:9e:7e:
58:2d:43:9f:b1:2c:f9:fe:15:8c:5e:3e:8e:37:8b:dc:5c:7f:
2b:1b:a9:77:48:af:25:1b:f2:1d:d1:f0:e3:b9:e1:8d:17:d4:
c3:ed:da:48:4b:59:3e:61:0a:5f:b4:0a:d9:ee:b8:8c:9a:73:
ee:8a:fa:66:99:4a:01:ea:7d:91:c0:06:04:ec:c4:5a:7f:04:
62:35:52:c7:96:28:d6:92:f0:37:30:c0:98:38:03:9c:54:bb:
78:1d:30:35:ce:af:1c:17:36:97:54:b7:87:1b:fa:75:ec:c2:
e5:02:c6:1c:31:e7:e3:cf:4a:95:31:c2:5e:2e:f8:bb:22:2f:
49:1f:f9:ae:3d:59:e3:f6:7b:72:2e:65:2d:6e:3d:4a:5e:e2:
51:51:62:af:d2:3e:33:23:31:12:3e:9e:11:23:d7:27:41:41:
63:13:ec:2e:9e:3b:94:f5:17:12:c1:b1:9e:c8:a6:1c:f7:59:
26:00:36:36:b0:67:cb:f0:b9:b3:6d:a9:81:e6:a5:b7:5d:91:
70:8e:30:94:7e:fc:40:36:05:d6:fe:f2:05:86:c9:dd:a1:db:
4d:e0:ac:0a:15:3e:2f:e9:d3:bc:d9:cd:01:ce:24:fa:95:9c:
73:aa:1d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org