Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DY0ITfmsNAvOX7a5C6l4CZklABc.roa
File: DY0ITfmsNAvOX7a5C6l4CZklABc.roa (raw, json)
Hash identifier: kGaY3DnL4LmdwkF99vkpt3QRTEq5Dqy2qlpmpVB2TZQ=
Subject key identifier: 0D:8D:08:4D:F9:AC:34:0B:CE:5F:B6:B9:0B:A9:78:09:99:25:00:17
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DY0ITfmsNAvOX7a5C6l4CZklABc.roa
Signing time: Thu 15 Sep 2022 02:40:09 +0000
ROA not before: Thu 15 Sep 2022 02:40:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0D8D084DF9AC340BCE5FB6B90BA9780999250017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7f:a8:bc:79:59:e8:a4:f5:05:ad:49:5b:09:
57:ef:18:7e:a2:07:fc:67:76:38:62:f6:e5:5c:47:
c0:41:ad:0c:d9:4a:9c:5f:33:92:92:2e:6a:b8:e0:
84:e8:1f:dc:44:e4:17:23:3d:0e:17:64:a7:78:ab:
d3:31:52:a4:98:9e:54:53:7a:60:19:1a:3a:02:2a:
b0:8d:60:f2:34:33:48:2a:57:c3:fe:f9:90:69:9a:
76:e7:09:7e:fc:46:83:1d:3d:2b:2c:0c:76:e7:94:
4a:c0:17:c4:b7:99:3d:11:62:b1:ad:01:4f:e0:d1:
52:21:62:4b:89:38:e7:a3:cb:d5:b6:28:eb:4c:26:
4d:0e:f2:16:1d:ae:fa:15:fd:d6:0d:d1:ab:f5:ea:
c6:33:21:91:5d:4e:16:e0:2d:4e:9b:be:8b:02:cb:
49:df:83:bd:3f:f4:e7:49:31:6c:90:59:43:7a:74:
2a:64:1c:cb:0e:04:d0:10:39:a2:d8:af:b6:e9:59:
4a:58:63:73:88:8f:6b:8f:8e:49:03:99:6a:70:e4:
a5:3e:9c:db:f3:4c:da:bf:d2:24:4b:8c:69:12:3b:
f6:fe:1e:cd:de:82:43:a8:0b:50:49:75:7a:be:df:
9a:26:a8:1f:55:e9:c0:f4:cd:15:1b:8a:c5:d6:d3:
4a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8D:08:4D:F9:AC:34:0B:CE:5F:B6:B9:0B:A9:78:09:99:25:00:17
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DY0ITfmsNAvOX7a5C6l4CZklABc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
50:b8:86:d0:29:c4:be:4d:9a:49:f5:6d:a3:50:86:71:37:2f:
09:fc:f7:d7:47:4a:8d:d6:ef:b4:ae:44:52:a8:8d:92:1f:72:
b6:17:e1:6c:e5:c7:79:5c:f8:37:94:9b:a8:68:d8:db:e7:6c:
43:ea:ff:f3:73:3c:94:af:c4:f7:29:98:d9:55:34:25:d4:ee:
20:76:b1:80:a2:bb:2f:2a:15:91:fc:06:e2:0e:56:a8:60:fd:
57:11:35:29:9d:85:57:d2:11:54:f0:19:0f:7c:2c:14:0e:88:
f6:68:6e:69:a0:91:c0:34:88:81:c6:18:e8:4e:ee:f3:3e:97:
01:26:b4:34:54:38:d1:04:ee:2f:77:96:cc:c5:a1:4a:1b:5a:
8a:0a:2d:d3:61:8e:eb:ef:d1:04:c5:40:71:00:13:93:6a:d8:
45:c8:4c:91:c6:b8:7f:da:d0:b9:3f:cc:a1:96:1d:c7:8a:1d:
70:8c:28:b1:10:b0:b4:7f:30:55:9f:90:5f:0e:9b:87:1f:8d:
f0:69:c1:e4:fd:14:9a:da:38:b6:0c:1a:59:f9:93:4a:9e:e6:
7b:64:c0:47:7c:9c:63:25:e3:ff:45:ab:26:6e:ff:b3:74:f1:
b3:b3:73:2a:f6:cc:38:90:9e:61:14:8b:6f:58:01:21:bd:6b:
2d:5f:ab:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org