Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/BnDH8TkQI9-LqWfZIlcLF0falD8.roa
File: BnDH8TkQI9-LqWfZIlcLF0falD8.roa (raw, json)
Hash identifier: 4yDiatmEdcuMTv0GSKdwvFXy6l7BDrZQdAofwB01qTE=
Subject key identifier: 06:70:C7:F1:39:10:23:DF:8B:A9:67:D9:22:57:0B:17:47:DA:94:3F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0912
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BnDH8TkQI9-LqWfZIlcLF0falD8.roa
Signing time: Tue 29 Sep 2020 10:01:25 +0000
ROA not before: Tue 29 Sep 2020 10:01:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 203.79.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2322 (0x912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0670C7F1391023DF8BA967D922570B1747DA943F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f1:9f:de:d1:0a:c6:f8:e4:ba:99:47:b6:8e:
53:c2:b8:f6:6b:d0:ac:a2:07:f6:a8:7d:5d:9b:04:
c2:f0:ed:97:6e:a5:b2:ca:17:49:47:de:51:81:80:
fb:62:03:b9:86:6b:a0:f9:0a:e3:33:8a:a7:0c:21:
00:4c:4c:15:e1:bf:7a:46:94:1e:c2:5b:df:e3:cc:
11:c5:1c:fe:de:0e:57:1f:98:44:31:f3:9d:1b:58:
db:da:2c:c4:1f:a0:93:b1:51:5b:d2:01:7b:43:d1:
01:43:ef:31:63:3a:e6:34:99:ee:a4:3e:f6:ef:b4:
a0:8d:b8:07:d5:30:4d:f3:ad:6a:e1:b6:a4:58:73:
aa:78:d5:3d:b5:02:8a:23:7e:51:02:ac:15:ad:54:
44:ee:56:0b:da:c6:b3:cf:fa:9d:1b:66:31:25:8d:
b1:36:63:55:c8:3b:42:54:16:cc:62:54:3b:ce:d5:
b7:da:f4:99:0a:39:d6:14:da:36:9b:1c:02:02:12:
96:a6:2c:41:ea:eb:8b:34:83:d1:85:c6:36:39:e3:
6e:ab:b6:67:a4:ae:c1:e6:14:b1:83:8d:9e:39:5f:
ee:ba:7a:9a:fa:36:10:91:82:33:60:69:af:cf:82:
0c:63:77:af:10:ee:63:16:9d:3a:53:85:e7:fe:3c:
5a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:70:C7:F1:39:10:23:DF:8B:A9:67:D9:22:57:0B:17:47:DA:94:3F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BnDH8TkQI9-LqWfZIlcLF0falD8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.196.0/22
Signature Algorithm: sha256WithRSAEncryption
58:52:11:1c:07:df:17:6d:be:7d:fc:fa:35:1e:c1:83:86:39:
40:ec:40:46:d9:4e:d0:93:34:f0:33:ea:91:f8:42:8f:d7:d0:
54:17:be:76:36:e1:3a:98:12:ed:e3:2f:3f:62:f9:4e:e7:ec:
15:5e:59:2c:ba:9a:59:67:91:fd:dd:52:12:c4:b1:23:bc:38:
02:9e:a5:a2:2f:0c:fb:9c:6a:01:eb:7b:18:5a:12:72:47:d5:
58:08:fe:8f:7e:80:34:3c:ba:7b:0a:96:cb:ce:fd:1c:12:f9:
56:86:ca:c3:1f:52:aa:10:fd:8a:bd:f1:24:de:4a:b6:f1:e6:
13:62:51:4e:32:d2:59:da:c1:f4:5d:91:53:7d:2d:c2:f9:16:
dc:a7:30:e7:4c:ee:e7:a5:bc:54:fa:b2:3f:ce:5f:41:34:cb:
bc:fa:b6:39:07:8f:96:d5:ae:fb:58:7c:68:33:c0:85:9f:b4:
0b:b0:0b:e1:ef:87:ab:06:94:e0:aa:4e:b2:9d:24:57:0d:b3:
cc:c5:90:3f:29:66:62:b8:90:95:03:b4:74:dd:06:30:8c:78:
01:c2:b2:6b:2f:f6:64:5c:5b:c3:59:46:27:27:3c:1d:e7:bb:
bc:c1:c8:5c:43:06:f8:66:27:01:87:c5:d1:4e:39:d1:2b:1b:
8a:ed:ba:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org