Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DOR4O-00ay-ct2GvqZwo-5Sb-Jk.roa
File: DOR4O-00ay-ct2GvqZwo-5Sb-Jk.roa (raw, json)
Hash identifier: hSyb/xkUq+3A3+T4Mo2Cs9BsfHkjo15FlEYFdhsFu9U=
Subject key identifier: 0C:E4:78:3B:ED:34:6B:2F:9C:B7:61:AF:A9:9C:28:FB:94:9B:F8:99
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DOR4O-00ay-ct2GvqZwo-5Sb-Jk.roa
Signing time: Thu 15 Sep 2022 02:40:15 +0000
ROA not before: Thu 15 Sep 2022 02:40:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.200.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0CE4783BED346B2F9CB761AFA99C28FB949BF899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:af:bc:f9:66:ec:89:71:12:b1:bb:43:0e:69:
d2:7e:8d:8d:d1:e4:97:6d:e4:18:b9:d3:c0:ba:96:
4f:3c:3f:1f:f0:71:fb:d7:54:ed:dc:63:0d:fa:16:
20:e4:99:cd:1e:53:28:e1:97:72:aa:03:5c:a7:b3:
4e:ec:52:3d:75:32:29:48:66:02:1a:6e:62:4c:85:
d6:13:f6:0c:6a:db:18:a1:b5:7d:d1:81:9f:11:50:
d6:ac:47:9e:fc:45:99:50:a8:b7:ed:2c:b6:b0:9d:
c3:46:a0:80:52:dd:37:ae:38:aa:f6:b8:2c:e7:99:
d3:f9:87:a5:94:1b:12:dd:35:83:7f:3d:ef:21:bc:
f8:db:c2:7a:bb:33:8d:ff:37:e5:49:15:18:08:b2:
d4:92:b8:33:b8:29:27:59:8d:57:73:c4:47:ad:19:
61:95:87:83:fb:ac:80:46:6e:b9:aa:b0:c4:0b:6e:
29:23:4a:d4:e8:72:f8:e2:92:f6:fa:d4:17:3b:32:
ab:65:1a:62:e7:43:c6:24:38:e2:22:6d:f4:4e:28:
a5:4a:de:c3:cc:31:6b:c8:88:7a:1f:99:af:eb:ae:
ef:ad:18:5c:f5:f7:10:40:b5:47:bf:48:f0:55:80:
f8:ac:7b:52:bb:ba:bd:66:7d:66:11:44:a7:b4:b0:
07:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E4:78:3B:ED:34:6B:2F:9C:B7:61:AF:A9:9C:28:FB:94:9B:F8:99
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DOR4O-00ay-ct2GvqZwo-5Sb-Jk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:ec:93:41:79:19:93:8c:30:34:20:4b:00:63:e2:f9:2f:6b:
4e:b6:5b:2c:5d:5d:d0:12:08:75:ac:27:99:af:c1:79:6b:82:
39:59:70:08:c4:a9:79:9c:6a:e2:49:fd:dc:8b:a4:3e:13:68:
09:06:d3:a0:14:38:da:c0:69:1c:12:69:3f:e2:9a:cf:94:71:
c8:50:58:da:cb:61:d4:06:1d:65:3c:7e:3c:f6:d5:9d:7d:a0:
7f:62:d7:ed:91:85:f7:5d:01:20:2f:1e:08:30:5c:77:3a:63:
80:87:98:5c:3a:c5:50:be:19:71:ed:84:99:5c:32:5d:13:0c:
a2:f5:bc:d4:66:de:f8:ee:16:cd:00:d8:0e:df:46:91:8c:ae:
54:29:81:40:a2:38:31:94:a7:92:08:7c:04:79:92:4b:d2:86:
c9:6c:77:ce:b4:5f:b8:18:1b:4a:b6:a7:f8:d6:31:66:27:e7:
22:f5:af:6d:37:4e:c2:c9:62:41:23:41:58:3b:f5:eb:0a:d9:
f4:92:87:81:cb:0f:d8:0b:1d:fd:7f:33:f2:93:58:de:3a:83:
7c:65:2d:4a:c9:5f:db:e1:d7:90:f3:a6:62:4d:a6:bd:5a:3b:
a0:f5:74:f7:c4:05:64:0a:5c:31:04:bb:f7:84:04:71:74:39:
99:da:98:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org