Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DpOQP-GLcFC054I9A3C5vITOHEY.roa
File: DpOQP-GLcFC054I9A3C5vITOHEY.roa (raw, json)
Hash identifier: mQPhou23RiLHh4chcWLcVA3kMDsfPPOZBv0Jb3YrLtQ=
Subject key identifier: 0E:93:90:3F:E1:8B:70:50:B4:E7:82:3D:03:70:B9:BC:84:CE:1C:46
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 092F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DpOQP-GLcFC054I9A3C5vITOHEY.roa
Signing time: Tue 29 Sep 2020 10:01:34 +0000
ROA not before: Tue 29 Sep 2020 10:01:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2351 (0x92f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0E93903FE18B7050B4E7823D0370B9BC84CE1C46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d2:28:8f:d3:d7:f6:ac:95:e1:f0:23:f6:78:
1e:a2:83:e4:b9:a7:dd:94:13:e9:f7:18:25:23:79:
4d:89:3d:a9:47:b9:ec:13:2a:36:cb:2f:d2:0e:29:
ad:e8:68:96:d6:ec:5a:64:59:ea:e8:3c:7f:22:b7:
2a:8c:4d:41:33:1d:0a:56:93:74:c9:17:6a:67:b9:
3e:34:8e:e4:8e:6a:fd:0b:4a:1b:e8:f9:d9:49:77:
e4:26:07:53:06:ea:82:92:3c:1a:35:5f:71:73:1d:
31:de:4c:19:6b:2b:3e:b9:7a:85:0f:41:15:64:a4:
7f:f3:df:44:c7:71:29:c6:9d:b1:fd:b7:d6:25:33:
0b:8d:1d:e2:1b:f1:c9:92:89:cb:a8:ab:eb:6d:dc:
12:7b:9b:47:12:7c:f1:61:11:21:35:10:2a:1a:06:
d3:a0:9c:6a:cd:e8:a5:d8:96:aa:d9:55:6a:40:6c:
60:33:1a:cb:43:53:5c:dc:35:92:8e:9a:6c:10:83:
1e:07:ad:99:ee:d8:d4:07:6e:13:b8:69:bf:76:fe:
97:a2:99:94:a2:30:10:17:36:01:b3:cd:11:17:02:
d5:0d:34:c5:4d:66:08:b0:ca:bf:86:a4:ce:9c:7c:
8b:eb:4e:6d:f7:0a:10:23:e7:1f:b4:de:15:20:f6:
2f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:93:90:3F:E1:8B:70:50:B4:E7:82:3D:03:70:B9:BC:84:CE:1C:46
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DpOQP-GLcFC054I9A3C5vITOHEY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
55:68:01:6c:c9:fa:dd:c7:f5:94:4a:05:86:6a:55:b6:fb:db:
19:e9:12:37:b1:d1:55:53:36:f7:3b:f0:5c:a3:da:23:9b:0a:
06:28:bd:2d:d8:53:64:8a:b8:c3:b0:6e:11:4d:52:d4:68:f8:
46:76:98:bd:16:7b:83:75:99:79:d6:6e:1c:2d:d1:1b:40:b0:
5a:46:04:ee:b1:5a:82:46:c6:c9:ff:7d:ae:d3:b1:7d:51:8d:
3f:81:67:28:c6:62:fe:c7:85:54:6b:64:0a:c8:13:45:c3:5a:
39:0a:60:6c:d9:44:e8:ab:21:18:80:50:e4:6e:85:9b:cc:c6:
78:55:92:d9:6b:ba:ff:5e:55:19:94:b4:fd:58:07:79:ed:21:
17:37:de:fe:b6:95:df:19:3f:25:3d:1d:f6:60:03:e5:61:69:
55:7e:80:84:37:ad:fa:9c:88:c2:f8:5d:53:5b:d5:c1:96:17:
cb:3f:19:27:2b:d4:54:14:4f:f8:ae:c5:56:20:52:ec:dd:31:
4f:ac:91:b3:db:2d:e4:4a:60:8b:13:ff:a0:08:d3:28:41:a1:
10:47:29:af:5b:7a:0c:db:9a:5c:9e:b7:9d:2e:34:4c:89:26:
93:92:1e:fc:32:3c:b1:8b:d7:83:84:2e:f7:5a:4f:5d:72:4b:
5c:26:7a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org