Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DsQBo90P2kN_ayK29nkso2nHCEQ.roa
File: DsQBo90P2kN_ayK29nkso2nHCEQ.roa (raw, json)
Hash identifier: VjmNoYupcC7p5KTpgV5Ak/xZtXhXQg8Zy8tyq09Jgh0=
Subject key identifier: 0E:C4:01:A3:DD:0F:DA:43:7F:6B:22:B6:F6:79:2C:A3:69:C7:08:44
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10B7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DsQBo90P2kN_ayK29nkso2nHCEQ.roa
Signing time: Tue 16 May 2023 08:36:32 +0000
ROA not before: Tue 16 May 2023 08:36:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 203.79.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4279 (0x10b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:32 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0EC401A3DD0FDA437F6B22B6F6792CA369C70844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7e:fc:03:7b:ec:da:40:2a:56:a4:c1:72:4f:
cd:f6:64:fb:57:1d:c1:5e:9f:6f:df:5b:32:12:30:
0c:b5:d0:b9:a2:f2:42:6a:59:9c:b3:a3:00:af:0a:
17:2b:45:05:4a:c5:b9:2f:27:5e:3e:cc:11:05:d7:
be:4d:26:74:45:2e:1e:dd:aa:09:b4:68:c0:f3:75:
0a:84:cf:48:68:08:15:86:08:11:d6:07:6c:cc:97:
9c:6c:52:77:cd:54:c3:af:04:ca:c8:97:27:8d:41:
1b:32:fb:63:67:f9:63:44:66:4e:07:64:32:46:5f:
ad:10:50:f6:81:3b:aa:63:ec:b8:dd:ae:0f:bd:17:
ac:34:cb:dc:47:dc:9a:d5:f0:a3:77:35:e0:06:f3:
23:53:66:69:21:e0:f1:2d:b2:34:bd:e9:67:a9:2c:
3a:47:2f:f4:aa:7c:4f:8c:d3:69:d5:71:97:4b:3b:
29:4f:e9:cd:ea:bc:79:89:4f:70:0c:ba:59:51:a6:
c2:55:f9:d4:ce:8c:1b:b0:1e:f8:b4:cc:ea:8a:2e:
72:ad:aa:36:50:76:45:89:35:88:16:75:62:49:9a:
72:8f:66:97:74:53:96:5e:7d:76:36:b6:7f:b9:a2:
cf:9f:e2:b6:69:4a:a3:6c:48:c7:cf:56:e8:6b:5d:
84:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C4:01:A3:DD:0F:DA:43:7F:6B:22:B6:F6:79:2C:A3:69:C7:08:44
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DsQBo90P2kN_ayK29nkso2nHCEQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.220.0/22
Signature Algorithm: sha256WithRSAEncryption
45:49:4e:6a:92:65:7f:b4:03:11:0e:16:9b:39:c5:7a:ec:45:
d8:20:54:39:8c:ba:dc:44:15:bf:aa:cd:b0:3d:4c:16:ab:e3:
6a:34:3e:76:b0:eb:71:b7:46:90:ba:d2:42:1b:a3:ff:bb:c5:
8b:5d:3f:50:e5:6c:03:eb:59:5b:d3:d4:48:9b:1b:15:7b:93:
60:05:a0:26:aa:07:b6:96:c8:6c:1d:5a:4a:cc:4d:1b:73:f6:
56:4b:ea:00:83:5c:29:02:d2:d4:83:46:c7:46:66:8d:ce:7e:
fd:6a:73:96:61:a1:c8:bc:4e:af:45:64:59:49:f8:0c:d5:ed:
0f:28:f8:91:bc:f1:ad:a9:36:93:32:c5:3c:50:66:cb:ed:68:
5f:db:68:8f:e0:5b:35:ae:9d:33:95:ed:1a:7c:23:c6:d2:6e:
e8:a1:b7:e5:8d:18:10:af:94:ef:0f:30:f3:c1:d6:56:53:8a:
75:a1:64:86:ac:4a:b0:94:44:2e:3d:ff:d1:98:d4:a1:ff:46:
55:d6:ad:d3:d9:93:a1:c3:c1:f9:6c:f2:d0:fd:ec:8d:22:9b:
74:e6:db:e4:b9:63:84:25:48:d7:89:4a:3a:ac:ae:73:eb:6b:
62:c0:8b:dd:cd:b5:07:10:08:f5:b7:21:91:f0:3d:76:14:f0:
fd:31:5a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org