Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ANoJLYGOk8SegaaLq1jAnVIcwfI.roa
File: ANoJLYGOk8SegaaLq1jAnVIcwfI.roa (raw, json)
Hash identifier: oPnmhiNRCglbW2SClhxWewu/TCvC4iOexBkf2vBTBZM=
Subject key identifier: 00:DA:09:2D:81:8E:93:C4:9E:81:A6:8B:AB:58:C0:9D:52:1C:C1:F2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 107C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ANoJLYGOk8SegaaLq1jAnVIcwfI.roa
Signing time: Tue 16 May 2023 08:36:16 +0000
ROA not before: Tue 16 May 2023 08:36:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.200.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4220 (0x107c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=00DA092D818E93C49E81A68BAB58C09D521CC1F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:96:3f:38:b0:78:07:bf:08:b0:0c:4c:5d:79:
b7:30:c4:29:10:5c:4a:c7:b9:0f:89:9b:dc:01:c1:
4f:00:48:6b:f7:59:4b:de:4e:8d:bf:c9:d7:f2:dc:
e0:ed:87:f6:de:70:af:5e:59:ee:ea:bc:f9:28:66:
ea:dd:10:97:d1:95:4a:3c:04:77:36:c8:41:07:1d:
11:79:e4:4b:87:a7:85:f3:46:33:2d:a7:e5:28:d8:
5e:95:e3:aa:2f:bb:50:3e:8d:23:e4:e0:fd:a6:30:
39:a2:c5:ed:59:98:52:3c:7b:3f:68:c7:aa:73:4a:
d7:d8:bd:64:a9:36:b5:bc:7d:0b:be:19:d2:5e:98:
f1:d6:2c:cc:14:78:91:1e:9e:f8:0f:1c:54:d9:7c:
b0:ed:f8:9f:7a:24:db:62:d5:0f:18:75:fd:fa:c2:
f1:b4:ec:a8:c0:62:c6:13:3e:72:9c:45:22:dd:40:
27:41:da:17:97:59:15:68:d4:d8:31:a6:93:bb:c1:
b4:1d:dd:33:e3:68:d7:4c:f8:72:bb:97:2c:22:5d:
51:da:2d:d4:e0:2a:d6:e9:d6:39:6c:62:8f:64:62:
21:b3:33:a1:ba:19:f3:8f:47:5e:b1:47:52:6d:99:
32:1a:33:ed:67:1a:9e:7c:23:d3:32:1f:90:4c:d6:
3f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:DA:09:2D:81:8E:93:C4:9E:81:A6:8B:AB:58:C0:9D:52:1C:C1:F2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ANoJLYGOk8SegaaLq1jAnVIcwfI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:5f:c0:54:b8:c1:a1:27:51:9c:6d:d3:91:ce:90:c3:e4:06:
ee:83:b5:40:e4:88:1f:26:b4:d3:57:c1:a9:47:a3:55:16:d2:
0a:f7:10:91:b9:b5:3e:6b:e9:00:51:09:6d:a0:ee:66:09:3a:
74:61:c4:e2:75:5a:97:9a:7b:b0:b5:53:a5:07:75:4f:ed:0c:
20:6b:6c:92:fa:e6:8e:8f:0e:82:b7:4b:33:9e:02:36:70:86:
8d:78:36:be:df:4f:ff:01:bd:c5:b9:e0:c3:e0:d2:72:6f:1c:
d7:bd:a3:ae:3f:59:08:50:9a:8c:07:cc:e5:0a:f2:81:41:c6:
ff:fc:ee:c2:56:09:bf:3d:85:41:b7:51:5c:b4:95:50:62:06:
73:f3:55:82:d6:df:5f:33:72:0f:a4:41:18:a1:e9:f9:b4:0e:
58:0f:38:93:60:ef:98:e4:0f:ce:f3:e3:b7:b1:00:f3:c9:2c:
d5:8b:87:53:7b:90:65:9a:1f:24:5b:61:67:7d:35:10:92:2f:
d3:12:50:3f:a7:cd:ea:f6:bd:cd:df:1c:e7:9f:55:b5:06:5c:
d8:c1:31:06:de:0b:36:35:7b:0d:01:48:d5:45:39:54:21:c7:
83:a7:0b:28:94:bf:60:54:c3:a2:65:be:26:37:7b:6e:b2:73:
df:6e:8e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org