Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/BcPpvqEKfzCt7hLclu9sqpWLg_o.roa
File: BcPpvqEKfzCt7hLclu9sqpWLg_o.roa (raw, json)
Hash identifier: nixQAwfSB6oKtxfmtyMiEAD16qDV1Exv16d0fJlCiyc=
Subject key identifier: 05:C3:E9:BE:A1:0A:7F:30:AD:EE:12:DC:96:EF:6C:AA:95:8B:83:FA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12AC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BcPpvqEKfzCt7hLclu9sqpWLg_o.roa
Signing time: Fri 01 Sep 2023 08:04:49 +0000
ROA not before: Fri 01 Sep 2023 08:04:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.201.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4780 (0x12ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=05C3E9BEA10A7F30ADEE12DC96EF6CAA958B83FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b9:d3:1e:e6:4c:93:a1:6e:d7:b6:7e:de:08:
88:3c:52:b2:61:e4:4b:b1:a1:7b:b4:a2:ce:68:28:
85:61:b1:71:01:e9:0e:27:d2:22:7e:bc:97:2d:92:
50:e9:31:d6:e0:b2:ab:54:ad:44:43:bb:e2:72:44:
cd:b9:0a:ce:f3:6e:2d:ec:e2:00:9d:fc:fb:53:70:
f9:80:f9:75:35:7c:a8:14:92:99:ad:f1:9e:76:22:
da:d2:e0:c1:1b:47:00:16:02:31:06:6a:27:18:d2:
e8:54:0e:e2:f6:d5:1d:1b:65:24:a4:53:7e:de:9b:
7f:ee:71:4e:5d:b0:00:e0:02:03:7b:65:02:58:9e:
3f:c5:20:6a:bb:96:61:4f:48:23:42:5a:4e:21:5a:
b1:21:0f:fe:f3:11:d6:cb:1d:6e:8a:ce:a5:2a:50:
55:4f:fe:e0:09:66:c8:e4:0f:65:d8:4d:d5:06:25:
6c:e2:ba:88:f7:18:3f:00:fa:80:25:c6:32:0e:dd:
30:f2:be:da:41:9b:f9:ab:aa:71:2a:12:9f:54:a8:
d6:a2:fa:db:48:f1:f4:e0:ed:fb:14:67:a1:4d:46:
f8:96:ef:72:25:54:1e:06:1e:60:12:43:62:0d:09:
5d:a9:27:de:b3:2d:7e:18:c2:b8:d5:b4:1c:76:45:
36:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C3:E9:BE:A1:0A:7F:30:AD:EE:12:DC:96:EF:6C:AA:95:8B:83:FA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BcPpvqEKfzCt7hLclu9sqpWLg_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.32.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:9f:1d:46:c4:32:28:8d:a0:12:ea:5e:22:f7:f7:ac:b8:dd:
78:cf:1f:bb:ff:f4:4c:89:81:80:2e:e6:e6:38:1a:00:a1:ad:
c3:9b:dc:8d:34:30:0f:02:04:0d:c4:cf:63:14:10:fc:d2:e6:
22:e1:f9:ad:f5:ed:c9:6d:a9:0b:cf:ba:b8:f6:d8:d0:ad:52:
c7:4c:9c:96:c0:b8:7c:75:48:aa:61:ec:fa:fa:52:89:45:f1:
e9:8e:32:e2:97:cd:11:d5:20:eb:18:02:39:c0:40:43:37:6e:
fd:ea:37:41:b9:e8:a3:24:13:11:3c:db:07:57:7a:3b:c2:a9:
8b:57:4a:dd:3a:c3:d3:9e:2f:3f:62:66:61:fc:f8:35:07:b8:
17:8c:30:76:23:cf:f6:00:d1:b8:e5:fd:b8:d0:50:7e:fc:37:
de:dc:2a:2a:b6:1d:a8:a3:eb:cb:85:24:9d:56:ac:70:74:50:
01:26:a3:ed:63:47:26:dd:87:b1:11:39:17:c5:0d:c5:b1:6f:
72:8a:07:e8:da:c7:d6:eb:4c:0c:2c:09:d1:df:72:00:2b:53:
ac:dc:d7:dd:f0:99:42:84:1b:e2:4d:55:67:0d:63:29:16:cc:
20:5e:f9:aa:70:c0:18:2e:2c:ce:c6:21:11:d4:78:12:c0:83:
58:9f:57:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org