Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Ae4S9sf1cq5QnHexVxmf6RsFtuo.roa
File: Ae4S9sf1cq5QnHexVxmf6RsFtuo.roa (raw, json)
Hash identifier: dUlihUpuwGPB60jmf0rBlU2EuQTiI1VfoMd7vOVt10E=
Subject key identifier: 01:EE:12:F6:C7:F5:72:AE:50:9C:77:B1:57:19:9F:E9:1B:05:B6:EA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1075
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Ae4S9sf1cq5QnHexVxmf6RsFtuo.roa
Signing time: Tue 16 May 2023 08:36:14 +0000
ROA not before: Tue 16 May 2023 08:36:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 22787
IP address blocks: 210.58.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4213 (0x1075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=01EE12F6C7F572AE509C77B157199FE91B05B6EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:33:e2:64:ea:f5:56:99:50:27:b9:97:1f:f0:
95:5a:97:c7:4d:63:66:67:86:39:7c:09:ec:05:38:
d3:1d:e5:54:1a:7b:25:26:f2:37:bb:2b:25:ae:99:
34:7b:83:b2:5e:aa:9b:a1:84:f9:36:b9:20:8e:2f:
30:56:82:de:f2:b7:bb:04:33:fe:fa:d7:54:47:f1:
fe:0e:2a:36:63:ee:c3:f8:37:10:f8:87:75:b1:8a:
0c:17:55:b7:38:78:0e:6c:9b:b7:1e:a8:12:de:d4:
83:c3:b6:73:e8:e8:6d:da:37:87:a1:88:b7:76:59:
21:3b:23:c2:1a:92:5d:5a:c3:17:1f:86:38:06:14:
4c:b0:0b:dd:e8:18:43:88:29:11:6a:d4:e8:a0:2c:
b4:eb:d4:6d:61:75:11:8d:39:0b:b1:74:fc:8e:50:
97:60:c8:14:4e:61:b3:29:6e:43:a3:48:c5:9d:d7:
a9:73:7d:ee:50:f6:8a:4f:0f:5f:6e:c4:bb:38:b6:
89:fe:73:c1:08:dc:26:92:a0:90:d0:23:c9:0f:67:
a1:9e:fc:73:a6:fc:f8:d4:49:79:c2:82:00:da:a7:
08:82:f3:8e:e7:a9:3d:0a:1e:08:88:2b:00:93:a1:
61:b3:c8:42:bb:da:17:67:74:37:0e:61:4d:eb:03:
36:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:EE:12:F6:C7:F5:72:AE:50:9C:77:B1:57:19:9F:E9:1B:05:B6:EA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Ae4S9sf1cq5QnHexVxmf6RsFtuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.90.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:64:4f:f1:66:78:97:8e:d2:2c:18:75:84:1d:22:08:cf:70:
70:57:60:96:a4:75:8e:ec:d6:57:2b:1d:af:37:b0:1b:2d:89:
15:3b:12:2d:8d:6d:84:28:1a:9a:b7:96:86:66:db:f6:e5:a1:
f8:e1:23:13:df:7d:c1:a4:4d:2a:6b:61:43:45:10:07:7a:9f:
99:ed:61:e6:40:56:c7:51:23:df:28:40:4e:f6:88:ad:91:9f:
59:ef:b9:11:20:be:d0:30:a5:59:91:a5:93:fe:81:74:7c:99:
01:93:de:ce:30:5a:47:a8:76:b6:7b:38:fe:5f:47:24:06:14:
5f:21:74:35:09:db:c9:2c:48:4f:0d:11:f1:a7:98:b5:41:8f:
b4:a9:79:aa:44:cc:93:36:16:c7:c2:b3:45:17:1a:d5:cf:fd:
6b:22:d9:c2:1d:9a:60:8b:ef:2f:dd:59:83:8c:54:79:a4:df:
fc:a3:a1:52:ce:4e:b0:5c:8a:5a:94:dc:7c:ae:2d:0d:b0:1b:
31:60:4f:35:1e:44:50:64:c2:e9:3d:10:77:cc:b5:ac:99:cc:
56:bb:fd:5c:cc:46:bd:9d:28:30:b0:8c:9e:36:a2:c1:36:81:
44:77:c3:eb:1f:59:bf:94:51:7d:72:5a:86:2c:a2:2c:7e:54:
ce:b1:f8:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org