Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/D7w3iQpoOJIGustMm_-D53FKP-Q.roa
File: D7w3iQpoOJIGustMm_-D53FKP-Q.roa (raw, json)
Hash identifier: 9zxyfLoKIGj+ryRoPX4N+GG9CT9+QmZlAHSe7Ru6ZnE=
Subject key identifier: 0F:BC:37:89:0A:68:38:92:06:BA:CB:4C:9B:FF:83:E7:71:4A:3F:E4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0904
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/D7w3iQpoOJIGustMm_-D53FKP-Q.roa
Signing time: Tue 29 Sep 2020 10:01:22 +0000
ROA not before: Tue 29 Sep 2020 10:01:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.203.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2308 (0x904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0FBC37890A68389206BACB4C9BFF83E7714A3FE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b7:4b:b7:90:61:a6:25:97:12:9f:53:95:7d:
11:d2:ea:bd:1f:c6:0b:88:1e:c1:ef:8a:a5:b7:1c:
52:c0:ee:3d:7a:9d:9e:ab:90:e1:f4:69:92:df:98:
6b:bf:da:8d:f9:79:64:52:a4:4a:08:18:99:a5:63:
3a:f7:a1:58:36:f0:29:c3:12:ed:20:20:a6:92:5a:
be:90:c3:06:cf:03:a2:7e:03:6a:d6:f7:21:38:53:
96:1f:d5:51:ff:d1:ff:c9:2e:98:38:ee:b6:65:af:
20:a4:d8:4c:95:76:61:38:25:fb:37:54:32:6e:eb:
46:3c:6c:00:5f:48:70:c3:2b:de:84:a4:a0:e7:75:
b6:41:d8:1c:04:4c:3c:a1:27:39:dd:09:c7:cc:4e:
17:fa:5a:d4:1e:b1:68:cb:25:93:a3:f9:45:ca:de:
b9:22:c5:c7:0b:88:22:27:ae:94:f1:de:48:50:74:
43:94:66:0a:70:29:af:dc:36:65:48:54:9a:13:95:
f3:94:15:2e:c0:97:78:d2:99:12:c6:f4:71:97:07:
8d:43:2c:75:16:47:12:8c:31:62:97:bf:9b:4c:c6:
5c:ad:58:4b:79:58:b2:20:03:3b:e2:a0:b6:26:52:
6b:d6:8c:09:d6:db:b0:53:ef:e8:18:1a:57:84:95:
ca:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BC:37:89:0A:68:38:92:06:BA:CB:4C:9B:FF:83:E7:71:4A:3F:E4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/D7w3iQpoOJIGustMm_-D53FKP-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.20.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:4d:6e:d5:e0:bc:6f:5a:57:ce:61:6e:89:d9:45:23:63:37:
84:9c:4e:1c:ff:f0:7c:c4:71:70:1d:58:b3:c4:7f:0a:2b:b5:
b2:c0:ae:42:09:1a:05:3e:95:c1:30:e0:e6:cc:1c:98:ea:ed:
3c:30:63:16:d6:46:ce:ca:27:fe:96:63:39:fc:7b:94:6d:56:
4a:47:df:83:e9:76:90:81:49:f6:14:f6:b4:ec:dc:e6:12:91:
81:07:64:09:d2:51:4e:57:eb:4c:02:52:4e:4b:02:20:28:c4:
79:ac:2d:b8:29:e0:ad:d8:46:bd:8e:68:0b:8d:5c:76:30:cf:
70:b0:13:c4:92:dd:99:51:7a:e1:45:c1:a0:26:bf:a0:cb:e2:
2e:8d:d9:02:d5:c8:8f:a2:be:68:21:c1:3e:a7:88:14:66:df:
65:d8:cf:a4:ea:c2:a1:f1:90:10:dc:2b:ef:ce:2e:62:42:85:
c3:e9:20:d8:4c:8c:2e:aa:31:1d:b1:71:f4:3c:e3:40:0f:60:
68:52:d1:c1:eb:5e:a8:7c:dd:85:af:f5:b9:f7:9b:07:78:f5:
1b:8a:44:14:5f:2c:fe:97:e1:ae:2d:f6:ba:8d:b4:d1:dd:98:
9b:3c:cd:89:a1:1a:dd:17:47:cb:d6:c1:6e:ab:93:0a:99:bf:
c9:c2:0e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org