Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/8AUv26aakVRV-UIpbOjYpj5l_q0.roa
File: 8AUv26aakVRV-UIpbOjYpj5l_q0.roa (raw, json)
Hash identifier: 2+lffef/jJzND6FyqVRBSHGr70/MhJ5zRkDFzx//vMw=
Subject key identifier: F0:05:2F:DB:A6:9A:91:54:55:F9:42:29:6C:E8:D8:A6:3E:65:FE:AD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BE7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8AUv26aakVRV-UIpbOjYpj5l_q0.roa
Signing time: Sun 07 Feb 2021 11:34:14 +0000
ROA not before: Sun 07 Feb 2021 11:34:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.200.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3047 (0xbe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F0052FDBA69A915455F942296CE8D8A63E65FEAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d8:0f:74:06:59:45:f0:d7:48:7f:e2:8a:9a:
0e:26:d6:9e:44:87:db:1c:3b:f9:31:f9:28:21:5c:
f0:dc:93:1d:8a:a1:96:92:a7:bb:f4:6f:21:fd:da:
dc:72:71:1f:7b:84:28:b4:55:1f:b5:8c:63:82:fe:
dd:a8:59:84:1c:b2:e3:bd:9a:42:77:5e:a0:46:1d:
8b:14:99:48:30:e4:88:64:36:0d:8f:4b:9b:c2:fa:
80:88:cf:eb:c2:71:81:e8:3e:e3:17:e2:73:f2:d0:
34:4f:5d:4c:75:57:fb:08:3e:4b:7a:ce:1c:04:9d:
a7:56:18:f6:f3:8a:ee:af:02:1c:94:f0:98:09:ed:
28:2b:b0:f8:e9:18:80:30:c9:6c:a4:c7:de:82:bb:
2d:98:24:39:fe:08:59:5b:68:91:42:e6:91:0c:1e:
04:35:96:8b:ac:91:28:0b:aa:d7:ee:f6:f0:da:78:
b1:34:13:8c:9a:8e:96:c8:32:ab:8f:0b:58:24:11:
97:78:2e:7a:3d:0b:9f:05:fd:2b:a8:08:32:32:86:
e8:45:f0:1d:2d:cf:b7:10:c6:29:bb:6b:72:d4:38:
0f:04:db:d3:97:9b:ff:d9:9a:36:81:d4:a6:f0:ff:
59:68:6d:76:25:e7:31:17:89:66:f4:93:85:6e:c9:
ad:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:05:2F:DB:A6:9A:91:54:55:F9:42:29:6C:E8:D8:A6:3E:65:FE:AD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8AUv26aakVRV-UIpbOjYpj5l_q0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a7:77:37:3f:31:2a:86:8d:76:fa:54:35:ec:08:0e:54:b7:92:
65:c6:e0:47:95:de:90:10:9c:11:68:67:c5:b9:0c:01:71:4d:
c9:93:d6:36:9a:db:84:06:3f:f4:de:ae:1e:a2:03:ba:bf:93:
22:b2:af:92:97:f8:b2:b6:15:de:19:25:0e:21:7d:13:e3:e6:
b0:55:1f:43:80:60:aa:f5:10:2d:2f:49:e7:97:80:cd:5a:0f:
77:6b:f3:21:f0:7b:f0:a5:9a:fe:65:2e:b9:cc:e5:74:e8:28:
8b:fc:81:db:6f:3a:05:c6:f8:e4:9a:a4:c3:7a:c4:05:e0:fc:
ad:bf:cd:21:d5:ff:f8:86:5a:fb:65:38:d5:3a:fb:31:43:43:
4c:dd:b5:c0:40:cd:be:02:ff:c9:2f:32:c3:21:b6:48:14:8d:
f7:7b:20:0e:c4:ef:36:9a:8e:7d:f3:ad:07:24:cc:67:13:4c:
de:9f:7d:a3:29:4b:46:d5:61:fa:41:4a:86:9c:f3:80:ed:f6:
82:3e:52:a7:5b:0c:3a:2d:0e:7a:c1:3e:28:9f:76:a2:e0:26:
ff:cc:6e:da:86:6d:db:e4:36:d8:a0:3b:9a:5e:05:cb:f3:ad:
dc:ff:1d:3a:ab:6e:75:25:c0:30:30:0f:90:93:2c:da:f7:95:
1c:99:1e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org