Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/CwUgnTQ35Z9Bf-iT8LMHvKJwtBE.roa
File: CwUgnTQ35Z9Bf-iT8LMHvKJwtBE.roa (raw, json)
Hash identifier: +6TmjXvQXAKqbn2OKnnFSN9eJAdc9J5l2MPSAjL9BLc=
Subject key identifier: 0B:05:20:9D:34:37:E5:9F:41:7F:E8:93:F0:B3:07:BC:A2:70:B4:11
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1322
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/CwUgnTQ35Z9Bf-iT8LMHvKJwtBE.roa
Signing time: Fri 01 Sep 2023 08:05:25 +0000
ROA not before: Fri 01 Sep 2023 08:05:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131142
IP address blocks: 223.22.0.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4898 (0x1322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0B05209D3437E59F417FE893F0B307BCA270B411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4a:33:67:fb:9b:82:31:2b:8e:7f:47:37:a7:
6d:ec:19:fd:b9:b2:b4:00:3f:9b:13:2d:e9:df:49:
73:a4:15:3c:13:5d:ef:83:65:df:d1:e8:17:e5:63:
97:27:51:18:1f:d5:17:15:e7:98:00:bb:a4:45:c9:
13:a1:c1:d0:8b:83:be:82:15:4b:71:99:fa:49:fd:
d8:cf:84:78:a0:b0:56:90:1b:e4:ba:6c:af:74:ea:
16:24:8d:99:22:cd:b1:86:61:0a:3a:fe:b5:09:ad:
46:46:ca:03:e1:ac:f3:96:06:62:e9:45:81:03:d3:
64:a4:e2:c2:94:e4:0c:ca:a3:37:46:a9:07:2a:65:
9b:9f:a5:16:9d:c5:09:38:4e:d6:2e:10:e8:9b:2f:
0f:2f:15:5c:3e:53:ec:8e:ab:24:33:89:73:dd:08:
e8:72:ef:1f:98:f4:5f:b9:25:b3:31:0b:1c:a0:fc:
f1:86:25:31:88:65:5b:c1:b9:79:f4:d3:5e:50:8e:
2a:ce:52:06:10:3c:f2:b0:bc:1a:9c:b4:f3:fb:ae:
a9:dc:49:e2:48:47:fd:77:ce:0b:d4:fa:da:e8:2e:
1e:18:2e:59:a4:01:a3:d3:c9:84:31:7e:9c:75:bf:
41:1f:29:62:55:f1:de:78:87:a7:51:57:c0:12:95:
f5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:05:20:9D:34:37:E5:9F:41:7F:E8:93:F0:B3:07:BC:A2:70:B4:11
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/CwUgnTQ35Z9Bf-iT8LMHvKJwtBE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:d3:00:9d:b6:36:b9:f3:e4:c9:e8:a7:10:70:87:6d:d4:8d:
ff:15:b3:d1:45:3c:9c:bd:da:9b:c1:4c:45:5c:4a:48:66:4d:
1f:3b:57:a5:8e:7e:eb:b1:df:6d:3a:a9:78:e7:f9:3b:8b:1c:
54:3c:88:c1:c4:e9:22:c7:4b:39:84:7b:ca:d0:4c:9a:c8:0d:
1a:6a:1d:dd:95:bf:be:b8:62:ed:85:2b:f6:ab:1b:67:f6:ee:
bd:8f:69:ab:45:c3:da:b1:83:49:c6:9a:e8:0e:dc:99:ca:6b:
a1:20:ec:a9:9b:d6:c9:21:95:be:b8:4c:a9:5c:66:4f:6f:0e:
f1:34:1b:bb:d7:97:82:b4:af:b4:d2:a3:cb:c2:a2:bc:2c:f9:
e2:2d:bf:9e:41:98:88:3d:72:9e:2a:b9:48:3b:40:a5:64:67:
47:66:a9:a0:e5:2a:34:dc:94:a2:58:45:0a:65:97:ba:07:1a:
c8:af:06:69:33:c5:19:18:5f:14:04:d4:e6:6f:b2:a0:84:58:
54:61:a0:9f:24:02:83:cf:94:4f:45:0b:82:9a:52:9e:f7:5f:
06:e9:97:90:b8:e3:4c:8b:ac:23:9b:cd:97:72:22:f9:c9:6b:
4d:c1:be:79:91:aa:d4:e5:ee:31:49:68:70:e4:15:20:9e:3d:
17:f6:ab:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org