Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/8RRZrm1BjC96H-Nw3r0M5dl-tEk.roa
File: 8RRZrm1BjC96H-Nw3r0M5dl-tEk.roa (raw, json)
Hash identifier: IiE35yGWTZ99Uqekl7e2I66tILHInRCqOfhI2BcRavQ=
Subject key identifier: F1:14:59:AE:6D:41:8C:2F:7A:1F:E3:70:DE:BD:0C:E5:D9:7E:B4:49
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1277
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8RRZrm1BjC96H-Nw3r0M5dl-tEk.roa
Signing time: Fri 01 Sep 2023 08:04:30 +0000
ROA not before: Fri 01 Sep 2023 08:04:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 223.22.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4727 (0x1277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F11459AE6D418C2F7A1FE370DEBD0CE5D97EB449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:71:de:e9:68:01:8b:8c:bd:14:93:db:d1:4f:
70:4e:bd:cf:4d:2f:29:4a:32:dd:ec:e6:9a:a5:96:
ce:1b:5e:f3:6e:0b:21:e4:eb:0d:a0:15:1c:6a:8f:
00:6e:be:ca:a7:d7:de:05:7a:76:0e:d6:0e:c4:48:
6c:55:8e:6b:2d:51:78:e3:8a:e5:94:92:a6:c2:19:
40:e4:0d:b0:84:38:ef:6e:74:00:1d:91:f3:7e:10:
1d:c0:17:6c:a9:d9:83:a7:12:e7:cf:87:f7:ba:bb:
3a:46:3c:36:b9:33:3d:40:0a:b6:c2:54:6c:34:a6:
df:3a:87:1c:c0:ea:71:0b:ec:34:9a:88:e1:6c:bc:
fc:d3:b8:c5:73:08:d5:78:ce:25:a9:b4:da:b6:ae:
43:94:78:27:d2:9b:f3:ad:63:eb:b7:94:dc:ec:7d:
aa:a1:b1:85:dd:ec:28:43:98:36:e2:5f:8e:03:31:
7c:e5:c1:e5:3d:e1:6c:5d:0d:94:be:38:8a:8f:fb:
7d:09:74:a9:3c:8b:97:44:6d:90:a2:cd:7c:a2:16:
96:66:39:04:cd:f2:a4:f3:63:8f:c5:15:c8:6f:3e:
a7:c9:98:b3:a6:70:ed:ce:dc:7b:90:72:ff:7b:e5:
32:53:7c:b3:22:5d:59:e3:e5:31:5c:85:22:48:a8:
15:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:14:59:AE:6D:41:8C:2F:7A:1F:E3:70:DE:BD:0C:E5:D9:7E:B4:49
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8RRZrm1BjC96H-Nw3r0M5dl-tEk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:7e:aa:7d:e9:12:e2:d8:c4:df:f1:71:65:9f:51:af:f7:ee:
bf:8f:9a:da:ec:52:52:0e:c2:7e:09:be:11:c3:0d:5b:6d:d1:
bb:27:50:ea:f7:db:29:84:ea:4f:12:1f:ba:ea:82:80:40:da:
95:73:8a:ab:15:11:c4:e3:b4:7f:18:b2:e4:72:76:b7:91:71:
d7:27:8d:9a:43:6c:17:74:23:68:3a:91:3a:89:62:64:e8:20:
e8:3e:4e:3b:c5:a9:7b:e1:8f:1c:b4:ff:90:d1:ad:a6:aa:5e:
76:bb:6b:1b:2a:cf:30:a7:f2:db:bd:22:be:ab:6f:99:86:25:
3e:e6:b6:a2:ce:a4:e9:b5:e4:3a:fe:91:ac:0e:b3:28:ed:5e:
7d:a3:58:d9:0c:2e:3f:9c:30:2f:c9:19:f4:57:61:72:da:32:
20:35:59:f4:a4:99:26:63:cc:7a:7e:8b:65:23:e7:fb:5b:dc:
f9:81:0b:ee:2c:9b:ef:37:36:c5:8c:8b:6a:b8:9d:8e:40:b7:
14:b7:ac:ad:3b:b4:86:0e:c4:6b:12:98:bd:49:83:cd:77:3c:
7d:3e:0b:8e:f7:04:0d:56:9a:38:67:68:04:aa:ef:b2:56:d1:
17:70:ff:17:21:49:45:06:f9:14:b9:14:7c:0d:07:57:f4:50:
8d:93:08:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org