Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DNHuTmAfW9XGA746NZ3DWWlyTnQ.roa
File: DNHuTmAfW9XGA746NZ3DWWlyTnQ.roa (raw, json)
Hash identifier: 5IcyCSE9LthBDnOko+mcQuIIGiwd2CfNlYj0yc/BrqI=
Subject key identifier: 0C:D1:EE:4E:60:1F:5B:D5:C6:03:BE:3A:35:9D:C3:59:69:72:4E:74
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 125A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DNHuTmAfW9XGA746NZ3DWWlyTnQ.roa
Signing time: Fri 01 Sep 2023 08:04:21 +0000
ROA not before: Fri 01 Sep 2023 08:04:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 203.207.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4698 (0x125a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0CD1EE4E601F5BD5C603BE3A359DC35969724E74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:bb:3f:54:c6:33:c3:a5:24:03:d9:63:95:
13:93:1b:45:de:0c:3c:b6:52:41:16:ca:92:c3:23:
d7:1b:fe:5a:80:8c:c2:40:7a:0f:70:82:71:d6:f3:
23:b5:8b:84:4a:0f:cb:c7:2c:19:5c:e0:58:7d:ab:
9a:d2:d5:22:df:7d:6f:1a:81:f3:60:ef:cf:29:8f:
79:8a:05:18:34:ec:87:b2:e6:c4:9f:d8:e8:34:cf:
8f:b4:13:76:05:af:58:4e:4d:81:e1:02:1a:7c:d7:
73:fd:6a:74:a2:51:59:72:30:ff:f2:d0:92:55:8c:
d3:71:29:2a:80:96:84:ed:04:c2:8f:23:9b:50:55:
46:1a:66:e1:dc:6e:6a:df:1a:4f:9f:61:10:a3:06:
0f:dd:e4:18:50:ad:2a:11:8d:02:ac:f4:9a:8b:6d:
ab:81:69:95:9d:0b:78:dd:02:b5:9f:55:a0:49:74:
a8:00:1f:5e:ac:0c:e6:c9:e6:fb:8a:43:9d:38:25:
79:67:f7:fd:c9:ec:28:37:17:8d:d4:fa:cd:4a:24:
2b:8d:ec:e2:c6:06:60:1b:2b:31:97:1f:c5:0d:00:
2d:e9:5d:5b:91:c5:7c:4f:b3:01:6d:57:86:39:89:
a1:57:20:05:21:1c:33:39:35:55:ed:94:b7:09:d5:
67:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:D1:EE:4E:60:1F:5B:D5:C6:03:BE:3A:35:9D:C3:59:69:72:4E:74
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DNHuTmAfW9XGA746NZ3DWWlyTnQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:88:7d:87:6b:b4:5a:97:fe:ee:83:49:e4:0a:ce:a1:71:c5:
ec:81:ce:fd:a7:41:de:fc:06:a5:97:60:32:fd:2a:9e:b1:a8:
db:e6:43:5f:b6:8c:73:20:18:ff:27:04:3c:08:76:7a:4c:b1:
2e:f2:37:c9:43:99:da:db:2f:a5:70:86:74:ff:f0:8a:60:0e:
c0:99:f0:8a:91:f8:9a:f6:7a:fb:7b:45:68:8e:7d:09:0e:74:
0a:b7:07:76:7d:0d:54:00:d2:fb:9d:1b:73:75:2f:c4:4d:a3:
8d:36:3b:ea:f5:da:68:80:ca:cd:dc:cc:8c:59:ce:60:89:70:
da:26:ba:f8:04:85:99:a3:29:5b:91:d0:f3:78:0f:75:de:56:
a6:29:77:03:56:c1:71:2e:bb:49:5f:af:1a:b4:ef:41:96:68:
b2:a9:d2:d9:f7:df:01:ee:ab:3f:08:e5:be:8e:00:f7:a8:78:
95:28:66:38:59:80:ce:17:5d:e6:66:cd:fc:f1:0a:f1:e2:43:
fc:3f:99:14:26:48:83:f2:32:2a:97:2f:53:a6:19:fe:4e:1f:
84:bb:be:f4:43:47:ca:cb:c6:24:7f:34:56:38:7e:79:53:7d:
0b:d0:f1:82:d1:ef:54:c9:f1:8a:47:d4:15:47:8c:3a:2f:31:
3d:65:98:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org