Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/A4YIHc_wCPM-LCKc0BUp-viKP4Q.roa
File: A4YIHc_wCPM-LCKc0BUp-viKP4Q.roa (raw, json)
Hash identifier: DRHS63cqbb6lFS5kKV4pkBnOkpv2OPReqi1PdmX3+fk=
Subject key identifier: 03:86:08:1D:CF:F0:08:F3:3E:2C:22:9C:D0:15:29:FA:F8:8A:3F:84
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1321
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/A4YIHc_wCPM-LCKc0BUp-viKP4Q.roa
Signing time: Fri 01 Sep 2023 08:05:25 +0000
ROA not before: Fri 01 Sep 2023 08:05:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 203.79.128.0/17 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4897 (0x1321)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0386081DCFF008F33E2C229CD01529FAF88A3F84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6b:9c:3d:02:46:66:0f:15:79:e0:ef:ac:58:
0f:be:7c:c0:a0:ba:49:48:66:be:cc:49:11:5c:34:
17:3b:f9:12:9d:5e:6b:8f:62:8b:3e:e6:41:e2:27:
10:0b:5f:10:0f:9f:a0:44:ec:80:1e:dc:c9:98:66:
4e:61:b2:46:cf:68:21:e8:40:e1:18:71:c3:5e:05:
40:24:92:e8:a5:ed:d1:07:31:19:a1:82:6f:60:a3:
26:25:c4:17:43:34:ee:9a:a2:94:ed:dc:98:be:1b:
9d:11:e7:ca:a2:c3:63:2e:de:e7:2c:98:69:bd:21:
7b:e1:75:44:fd:dc:3b:89:e5:f2:14:c3:98:8a:8e:
4f:e6:d3:29:66:a6:3d:b4:dd:db:1b:30:74:53:c8:
df:3e:9d:14:a5:a6:69:ec:2b:9a:3a:6d:88:f1:91:
ce:df:c2:a6:91:09:e9:e9:21:29:32:9f:85:01:d1:
cb:0d:26:95:15:dd:ae:e6:08:98:64:ef:c8:68:c6:
de:01:72:08:9d:1d:2c:2e:b6:b5:dd:12:40:a6:97:
b0:3e:92:2d:00:aa:5f:a3:df:87:9b:ae:a8:3d:a6:
0a:3a:70:b5:05:32:bf:5c:47:e1:61:b2:6b:53:44:
70:8a:78:49:d5:6c:19:e8:1f:02:dd:47:fe:fe:57:
65:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:86:08:1D:CF:F0:08:F3:3E:2C:22:9C:D0:15:29:FA:F8:8A:3F:84
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/A4YIHc_wCPM-LCKc0BUp-viKP4Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
48:c7:62:12:91:3e:c0:2c:4c:d0:de:e3:0b:15:2c:4d:94:ec:
e7:7f:ae:f5:0a:99:82:a2:1f:ce:a5:74:76:a7:5c:ad:dc:e7:
a2:21:8e:c1:4b:7e:1f:78:5c:ea:3e:2c:9d:a5:1d:d4:26:08:
e8:ff:36:0a:41:3e:8a:bd:01:be:ae:e8:b1:1a:f7:0e:36:48:
ff:b2:3c:eb:d6:ba:a1:72:41:45:4d:bb:91:22:8b:29:a4:ef:
77:21:3f:ee:9a:ff:7f:66:e3:16:08:3b:1d:a4:78:70:67:31:
cd:f7:bf:5a:32:99:23:ac:9a:ee:2a:14:6e:e7:63:57:f7:4a:
62:57:8c:11:0c:3b:2d:1a:73:46:c5:66:13:54:72:4a:0f:82:
6e:90:3b:69:6e:d5:12:78:6e:e0:d5:25:55:85:b6:40:d3:a6:
d6:dc:19:9a:1d:48:c0:ec:84:12:9c:24:e5:55:9e:94:d9:55:
53:91:95:d2:7e:2e:45:ae:9d:61:56:4d:f0:d4:1c:36:ea:e0:
1f:24:3f:69:62:31:b3:dd:5d:69:f9:d5:b8:02:72:b3:00:35:
8c:67:d4:f3:26:c1:41:af:94:bf:65:07:a0:df:0d:34:6a:9b:
a7:17:71:b1:26:53:91:55:00:eb:ae:4a:94:f5:dd:9e:62:17:
95:36:cf:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org