Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Aqac5vDzLlPbIcDjc4WX8kJ7jUc.roa
File: Aqac5vDzLlPbIcDjc4WX8kJ7jUc.roa (raw, json)
Hash identifier: q45iLPpXMKQMQqRoMzctnl3lKPG89/1RbY+TD9ExPGM=
Subject key identifier: 02:A6:9C:E6:F0:F3:2E:53:DB:21:C0:E3:73:85:97:F2:42:7B:8D:47
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 103E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Aqac5vDzLlPbIcDjc4WX8kJ7jUc.roa
Signing time: Tue 16 May 2023 08:35:56 +0000
ROA not before: Tue 16 May 2023 08:35:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.63.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4158 (0x103e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:56 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=02A69CE6F0F32E53DB21C0E3738597F2427B8D47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:51:ce:dc:8f:9c:56:c5:6f:0f:59:6e:b4:a2:
1d:0d:41:e6:e2:05:df:a3:35:c1:2e:c6:97:57:fb:
f0:a4:68:27:1c:fc:36:cc:1a:2e:1d:94:fd:35:c1:
79:f0:47:5d:bf:e5:ee:39:63:0e:06:f8:2d:e2:c8:
ca:da:07:20:a2:05:88:a4:4e:24:f2:b4:01:93:f7:
8a:f2:47:0c:7e:5e:f7:8b:d5:ed:db:52:7b:ff:44:
be:69:38:e6:56:2e:c1:59:4e:92:32:b9:cf:db:e1:
72:63:82:7f:64:34:4a:bc:54:45:74:09:0b:db:32:
87:a4:cb:ec:15:de:68:dd:b9:be:78:11:79:40:4a:
79:7c:a8:9c:e9:70:9f:e6:56:6d:d0:14:d2:60:76:
94:75:2f:73:44:46:b3:72:39:34:43:27:78:cd:be:
97:49:3f:e1:86:81:f4:3b:9b:f8:a0:75:f6:0f:44:
57:25:9e:e7:58:b2:bf:0d:ed:24:df:21:11:02:5e:
49:df:e9:1f:fe:17:99:dc:27:b9:25:ee:38:23:92:
46:30:e9:44:a5:e2:a1:f9:89:a3:ea:f8:d1:77:5d:
05:7f:be:42:eb:f8:bd:5f:dc:fd:a3:bc:4c:50:0b:
3e:3b:90:aa:75:83:2b:f5:4a:cf:19:88:42:88:30:
bd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A6:9C:E6:F0:F3:2E:53:DB:21:C0:E3:73:85:97:F2:42:7B:8D:47
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Aqac5vDzLlPbIcDjc4WX8kJ7jUc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.240.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:53:b8:6a:b1:6d:a3:6c:07:de:25:96:73:d6:ab:e4:e1:c0:
f1:9e:57:5d:99:2a:ba:fb:64:ee:9a:b3:45:d7:48:52:38:cd:
da:cb:3f:dc:4e:1a:89:44:b8:18:7b:4b:46:cb:c5:a1:28:a0:
8c:6a:06:17:9a:0a:5b:13:f6:b9:38:89:73:c8:5c:e7:5c:16:
32:7e:01:59:12:d6:4f:67:e5:45:0b:fd:5b:67:3e:1a:a5:5b:
d4:39:cb:d7:ce:5d:cc:31:4b:65:76:e0:06:68:a8:8e:e4:57:
5c:48:4e:a6:ca:6d:81:e5:5e:98:22:42:20:ad:99:25:62:c4:
1b:0e:41:f2:a9:f1:57:04:5a:67:2a:b0:d9:0e:2a:5a:63:98:
e2:6f:59:c8:d5:5c:b7:c2:de:f8:ee:45:3c:1b:6e:1c:a8:26:
24:0f:b1:53:61:a4:57:b7:4c:d7:f8:b7:03:92:69:85:d8:04:
36:62:c4:e2:9d:74:fa:c9:71:00:d5:59:1c:b2:d4:c6:98:72:
2c:89:ba:33:ec:a9:65:d4:95:69:1d:5a:a9:72:fd:e0:28:c8:
0b:ea:72:da:3a:17:1d:2c:77:f6:90:2c:0c:c3:29:79:a9:d1:
ac:45:ac:e4:cd:1d:b0:6f:4f:6c:48:4f:71:a4:be:64:f2:59:
25:77:15:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org