Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7wcTIro6Di6dPUfmg1aVMy08hMc.roa
File: 7wcTIro6Di6dPUfmg1aVMy08hMc.roa (raw, json)
Hash identifier: hE9LODVw9z86oJzWEfpXHMgmIeYdS/ZMYTZlM/26Ddc=
Subject key identifier: EF:07:13:22:BA:3A:0E:2E:9D:3D:47:E6:83:56:95:33:2D:3C:84:C7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1309
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7wcTIro6Di6dPUfmg1aVMy08hMc.roa
Signing time: Fri 01 Sep 2023 08:05:18 +0000
ROA not before: Fri 01 Sep 2023 08:05:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.58.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4873 (0x1309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EF071322BA3A0E2E9D3D47E6835695332D3C84C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:7d:99:28:1f:62:2e:94:4c:df:a7:ca:a0:
d1:ef:aa:c6:43:39:32:ba:b0:8a:99:f1:e7:1a:cb:
c0:46:ae:95:4c:66:31:44:b6:47:44:6b:5b:c7:22:
d9:ac:fe:ca:c4:45:cc:b2:cd:31:b5:6f:f0:c5:b8:
5e:2e:d3:e8:e6:23:1f:ce:3c:69:d7:7e:27:f6:2c:
26:44:ff:42:14:8e:ec:61:28:23:e1:2c:f9:53:bd:
38:85:63:38:bc:0c:fa:dc:68:09:17:a7:90:b6:13:
d7:ad:4a:9b:a5:26:53:3b:b9:c8:33:00:e9:d6:2e:
11:79:e1:7f:b1:34:78:8c:1e:03:a4:8a:7d:6b:5d:
20:c5:5f:dc:b0:52:84:f5:1c:70:1c:a7:cb:9a:92:
02:d3:b1:3a:79:5b:ee:41:99:28:53:20:43:19:ff:
91:72:29:98:cb:b2:ff:be:34:b9:ef:1f:be:ce:56:
d5:bc:9d:81:b7:0f:dc:dc:d5:83:ce:c9:fa:19:d1:
1d:cd:c1:fc:aa:8f:7d:d7:a8:42:ff:51:42:24:29:
65:52:db:02:a5:ce:ff:f7:a6:5f:9c:41:fe:df:4f:
14:51:71:1f:fd:c8:dd:e0:5a:53:81:26:9a:95:dd:
b4:a8:0b:c0:34:da:2f:2f:15:0d:fd:f8:40:cd:6b:
8b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:07:13:22:BA:3A:0E:2E:9D:3D:47:E6:83:56:95:33:2D:3C:84:C7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7wcTIro6Di6dPUfmg1aVMy08hMc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.88.0/24
Signature Algorithm: sha256WithRSAEncryption
95:c7:93:02:99:f0:2a:57:73:8a:15:89:51:40:0b:5c:3d:fa:
37:3b:bb:e4:d8:ca:e9:4c:d3:6a:8b:64:31:3f:52:fc:4c:69:
fd:5a:be:48:5c:55:b0:29:b6:2d:71:f5:b1:a2:ce:36:29:04:
a6:ff:7b:f4:72:2a:94:b2:44:78:97:bd:28:93:7b:78:fe:0a:
c7:97:f0:26:b9:a0:a5:f4:eb:ac:07:ac:d3:8c:c4:d6:01:97:
c0:e4:a4:e4:7c:ea:64:d7:71:ba:5e:2b:33:55:1e:79:84:cb:
82:7e:2f:08:f8:30:b9:a6:18:ac:1a:73:50:12:44:4a:f6:31:
a8:4c:d6:29:99:83:22:1b:e6:65:b2:31:2e:fc:69:20:6e:18:
13:1a:c2:e1:4f:17:8e:90:80:89:ac:bf:94:99:cf:8c:e3:39:
f9:05:84:c7:6f:45:3b:8f:4c:11:ed:d6:c8:35:0c:9d:61:1b:
8f:b3:a0:51:64:e2:a6:95:ab:de:d8:93:3b:11:90:59:8b:d7:
b9:c8:58:b3:59:95:10:cd:c5:32:a9:94:c6:1b:c1:f5:4e:17:
30:4f:a7:8a:85:fa:2a:26:89:e3:7e:de:e5:b4:dc:9b:9b:5e:
30:be:15:a9:cc:b1:84:54:8f:9f:8d:66:db:9f:c6:95:7b:19:
6f:32:4c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org