Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Byh-EepcSKMbzowc_mTzVCcQHnI.roa
File: Byh-EepcSKMbzowc_mTzVCcQHnI.roa (raw, json)
Hash identifier: a2P60rMCWrGl9GNJmhFCns2MP1O0ul1uK1rNNlz0oaE=
Subject key identifier: 07:28:7E:11:EA:5C:48:A3:1B:CE:8C:1C:FE:64:F3:54:27:10:1E:72
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0976
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Byh-EepcSKMbzowc_mTzVCcQHnI.roa
Signing time: Tue 29 Sep 2020 10:01:52 +0000
ROA not before: Tue 29 Sep 2020 10:01:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 222.157.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2422 (0x976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=07287E11EA5C48A31BCE8C1CFE64F35427101E72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:e0:a3:5d:2b:7c:67:51:c5:4a:b6:42:9f:
66:d5:44:0f:6d:36:b4:32:b3:48:6e:38:02:b4:9c:
6e:f9:3c:fd:75:7b:90:72:06:a9:54:cc:53:1c:13:
fc:bf:07:58:e2:b4:e8:53:ab:f0:03:e0:f7:cb:11:
f0:89:0b:36:f4:5d:d5:96:d1:cb:e0:93:cc:b2:7d:
9a:20:90:99:a0:2f:d2:00:ca:e0:23:73:64:40:53:
58:6d:21:64:8d:52:fd:83:65:ff:44:5f:5d:fe:75:
1f:62:1e:3b:69:d4:e7:ad:c1:6e:c5:77:a3:a8:5d:
62:ab:9d:b2:d3:10:e5:5a:af:53:cd:c8:ae:18:ca:
94:a8:2a:02:13:f2:9f:06:4c:03:b1:81:43:97:6f:
0c:3a:96:24:d2:72:a1:58:4d:fe:be:dd:0c:ef:90:
4e:97:84:27:4e:74:aa:4d:aa:34:aa:f9:16:75:6b:
a5:b2:7a:0c:39:59:d8:89:ac:8e:e3:f3:55:c3:a8:
5e:64:f4:03:af:94:78:ac:1b:db:b7:d7:92:e8:01:
3b:75:95:87:ff:fb:f4:2b:a8:94:ef:3e:42:24:61:
cd:74:49:52:f4:23:bf:68:16:8f:5b:b9:c4:4b:14:
d7:70:3a:54:1a:96:2e:96:4b:5b:c5:f3:80:2e:3d:
bb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:28:7E:11:EA:5C:48:A3:1B:CE:8C:1C:FE:64:F3:54:27:10:1E:72
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Byh-EepcSKMbzowc_mTzVCcQHnI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:c6:9a:f5:dd:dc:d9:c7:e4:b2:50:25:ff:c4:f9:32:0a:17:
23:71:c1:78:71:c0:35:a8:72:35:b0:d8:5d:dc:21:2b:86:40:
1b:82:98:80:c0:d2:bc:66:70:87:5b:4a:b6:c2:27:b4:ae:be:
f1:ea:c1:9b:0b:f6:cf:ae:9d:9b:a4:1f:4b:34:db:d5:60:49:
18:68:eb:fe:c3:05:31:1e:cf:ae:20:24:e2:fe:8c:b6:72:0d:
86:77:42:f0:31:53:e8:2c:37:e6:13:dc:87:15:db:ef:f5:26:
29:f9:19:b3:f4:8f:9d:cf:19:7f:14:c6:ab:d0:41:af:99:43:
87:ac:85:4b:f8:43:b4:3e:cc:fc:5c:e3:55:49:b1:46:0d:fd:
d6:69:11:32:ae:55:37:9b:7c:51:d9:19:0e:b6:87:f1:59:27:
16:23:81:90:ac:8b:dd:91:d0:eb:b7:0b:70:3e:3f:57:d9:c9:
40:82:35:63:4e:af:0e:67:60:e1:47:4d:bd:b2:ca:6d:69:14:
52:66:1b:4f:19:d8:23:4a:d4:52:95:2a:02:7c:b1:a5:6f:7c:
1c:b8:dc:ca:a5:67:ae:c9:f9:18:26:1a:34:3f:9f:8a:fd:58:
62:d9:db:b6:1b:67:f7:17:39:57:bb:8e:d6:99:84:99:7a:d2:
9e:be:2c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org