Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ALpsB83_pggpSKlXX3wJVK1at_8.roa
File: ALpsB83_pggpSKlXX3wJVK1at_8.roa (raw, json)
Hash identifier: rTmifTdAPlu1jCN+5argqyqwntg9skCJ8xzXVXhnBBo=
Subject key identifier: 00:BA:6C:07:CD:FF:A6:08:29:48:A9:57:5F:7C:09:54:AD:5A:B7:FF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12CD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ALpsB83_pggpSKlXX3wJVK1at_8.roa
Signing time: Fri 01 Sep 2023 08:05:00 +0000
ROA not before: Fri 01 Sep 2023 08:05:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 60.244.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4813 (0x12cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=00BA6C07CDFFA6082948A9575F7C0954AD5AB7FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4f:30:25:9d:7c:eb:25:5f:5f:61:71:63:0a:
59:66:ad:a9:b9:55:7e:29:f4:cb:7e:dc:c5:cf:03:
c0:19:2d:9f:26:81:80:29:10:d1:0e:0b:d1:fc:cb:
ff:c9:ba:fb:2a:84:dc:fb:f1:f4:52:a9:a2:34:82:
34:17:d6:f4:02:e2:d2:46:0b:3d:5d:48:78:3b:6d:
e2:67:32:1f:48:79:64:78:8f:f4:27:fc:d2:75:3b:
90:75:d2:88:ab:b1:4f:dc:55:0e:05:09:b2:71:cb:
11:89:b6:47:74:02:e2:43:73:3c:66:86:72:4a:f4:
96:8d:5f:9e:91:1b:74:9a:84:37:f3:2e:f7:c0:36:
18:5c:85:17:69:ad:fc:b3:3f:08:ac:59:8a:de:f8:
1d:4f:4c:ca:ef:98:da:0a:35:a2:10:a2:2e:b4:03:
ff:d4:bf:46:ce:62:28:c3:ef:11:a0:99:e6:42:c7:
29:ae:78:95:11:d4:48:e1:71:0a:f8:5e:03:4d:9e:
dd:a7:3f:44:a7:b5:60:d2:da:e3:f2:86:b3:38:27:
f5:b8:06:74:af:e9:4e:d1:45:c1:93:d0:7e:14:72:
2e:20:79:af:d9:b9:2b:d9:33:c6:7e:ee:38:18:b1:
19:b7:67:76:82:41:ec:9a:88:a4:f7:48:e9:dd:1a:
36:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BA:6C:07:CD:FF:A6:08:29:48:A9:57:5F:7C:09:54:AD:5A:B7:FF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ALpsB83_pggpSKlXX3wJVK1at_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.0.0/24
Signature Algorithm: sha256WithRSAEncryption
64:89:dd:38:54:4e:a8:9f:6d:cd:f7:36:20:3a:ee:5e:e8:37:
f7:91:99:e1:3e:8a:2c:18:2a:65:19:31:27:1d:ec:73:e5:63:
9b:bd:6b:43:8c:15:b2:bd:01:d6:6d:56:a5:d4:59:c6:f4:1c:
3a:18:93:de:02:c3:9e:8c:31:da:3f:8d:69:13:d2:ee:87:b4:
27:b0:dc:f5:4f:ce:06:1b:5c:68:ed:d3:b9:c4:6c:f6:4c:2b:
ac:8f:41:fa:10:69:17:33:61:c0:8a:39:cc:6f:3f:1b:45:1b:
e8:37:e2:05:f7:c5:48:e0:c7:8e:58:dc:52:57:51:27:0f:fd:
3d:07:bb:d7:c9:98:0e:1f:b1:7b:55:02:71:fd:ba:90:7f:f5:
d4:b2:c1:ea:ba:ae:27:bf:48:0e:4e:f9:35:97:9e:1b:e0:b1:
e1:c4:06:69:0d:90:8b:f6:12:21:9b:d0:fe:21:b4:49:36:c6:
ba:d9:38:e5:8d:c3:43:5d:58:78:e4:92:66:37:e6:b3:b9:e9:
4b:7e:35:02:2a:19:66:07:cf:2e:38:06:6d:77:c8:f4:15:f2:
3d:8f:34:44:c5:45:e8:5e:25:bb:e1:0d:9c:9f:8d:d0:21:88:
a5:db:8f:1e:c3:d8:14:ba:59:3f:0d:0b:b7:75:ad:e5:a9:f4:
26:f4:07:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:42 2024 by rpki-client on console-fra.rpki-client.org