Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DTnQRPG5GPvimQcibd5niR4O14Q.roa
File: DTnQRPG5GPvimQcibd5niR4O14Q.roa (raw, json)
Hash identifier: Mlo1fkaZVpUzqw4NnsBMcHmQWHTaY7hslTddwP+uvUs=
Subject key identifier: 0D:39:D0:44:F1:B9:18:FB:E2:99:07:22:6D:DE:67:89:1E:0E:D7:84
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1251
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DTnQRPG5GPvimQcibd5niR4O14Q.roa
Signing time: Fri 01 Sep 2023 08:04:19 +0000
ROA not before: Fri 01 Sep 2023 08:04:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 60.244.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4689 (0x1251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0D39D044F1B918FBE29907226DDE67891E0ED784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:35:60:47:c0:fb:dd:63:49:72:8e:3b:79:b9:
cb:40:60:20:ff:a2:27:f9:48:8c:8c:07:7c:f8:1d:
d1:70:c2:cf:fe:94:35:ec:3c:2d:a8:24:f9:d1:2c:
d3:4e:aa:22:f8:7e:fa:3c:33:b7:71:ff:a1:26:48:
3b:bd:e2:a7:1b:54:7f:10:b2:c9:58:4c:6d:83:b7:
22:f0:e6:ec:90:28:dc:55:fe:cc:68:71:f7:6e:a4:
86:14:20:a8:70:e9:05:8d:a2:3b:2e:df:55:8e:3c:
bd:c7:0e:cc:62:40:4a:16:f6:7c:56:cb:c1:01:e1:
b7:22:2a:8f:95:61:84:45:5c:13:c8:d2:67:0f:40:
4f:bb:33:c0:30:3c:82:89:8a:63:aa:10:74:51:7d:
eb:d0:ed:bb:9b:93:3c:8a:5f:a8:f0:1d:fe:26:93:
d8:3f:bf:e5:d2:d6:fc:2f:21:ac:27:1c:88:66:ef:
a3:1d:c7:75:99:a5:2d:c3:b3:14:a8:bd:7f:77:64:
1f:65:37:8d:75:16:c4:47:7e:33:ba:8f:e6:36:33:
62:05:bf:e9:0c:aa:a7:25:52:7a:fb:d0:7c:4a:00:
26:d7:e3:1d:16:04:42:98:c6:7a:51:22:8d:68:f5:
b6:54:fd:91:0c:e6:82:d0:9b:a7:72:5d:06:a6:df:
bf:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:39:D0:44:F1:B9:18:FB:E2:99:07:22:6D:DE:67:89:1E:0E:D7:84
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DTnQRPG5GPvimQcibd5niR4O14Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.1.0/24
Signature Algorithm: sha256WithRSAEncryption
66:28:1f:0b:88:7b:8d:64:19:16:e1:e4:26:64:fa:c4:8b:ab:
2f:3a:e8:d1:25:a5:c4:4e:07:68:da:a5:ef:3a:7e:88:9b:2c:
60:52:48:b8:c6:28:30:c5:7e:fe:dd:80:62:4b:cf:71:bf:5e:
ee:b1:d2:0c:13:c2:14:84:54:11:60:24:6d:0d:92:21:7e:13:
cb:ed:3c:08:45:63:a8:cb:13:84:09:62:5d:7c:32:9c:3d:72:
83:68:ba:69:a7:a6:1a:22:70:0a:ff:36:8e:0d:3e:19:11:00:
5f:e1:93:60:1a:6f:89:78:2a:61:49:2a:f6:f3:cd:ec:26:08:
67:3b:5e:c7:eb:b1:c0:0f:e7:1e:19:04:fb:4c:64:c0:9e:35:
dd:fc:5a:93:2e:66:92:fc:48:bb:8c:3f:c7:1d:3e:c9:9c:0c:
6b:32:bf:eb:2f:8a:2e:f9:74:90:71:08:c5:59:67:8b:3a:fc:
2d:3d:0a:e4:cc:54:00:8f:ce:f9:c6:3d:82:cb:56:98:26:5a:
2d:6e:29:fa:5c:b2:49:ab:df:03:d6:16:d8:21:ae:99:1e:23:
96:fc:57:d9:8b:ab:8e:46:1e:63:28:cb:89:5a:7b:96:0f:dd:
25:d4:c3:44:88:e6:d8:77:66:b5:f0:38:4b:38:da:79:c7:43:
06:6b:d8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org