Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/E8S9Wo4PRRTU32eAgp2P3m4S1rM.roa
File: E8S9Wo4PRRTU32eAgp2P3m4S1rM.roa (raw, json)
Hash identifier: 9R7rUQBcF5HQ+JJh4DwTg8nQdM/gDZUjSLMi3MNtsic=
Subject key identifier: 13:C4:BD:5A:8E:0F:45:14:D4:DF:67:80:82:9D:8F:DE:6E:12:D6:B3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 127A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/E8S9Wo4PRRTU32eAgp2P3m4S1rM.roa
Signing time: Fri 01 Sep 2023 08:04:31 +0000
ROA not before: Fri 01 Sep 2023 08:04:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131591
IP address blocks: 223.22.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4730 (0x127a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=13C4BD5A8E0F4514D4DF6780829D8FDE6E12D6B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:63:b0:35:ce:96:57:df:fc:f9:8f:79:48:10:
f4:9d:e0:9e:c4:0e:5c:7f:e9:6a:ad:cc:84:34:99:
10:f1:04:4d:18:fd:e6:78:4e:13:0f:7d:09:62:9d:
4a:15:97:d0:00:1c:bc:28:14:5b:70:05:2a:ad:be:
c7:7f:6d:15:03:6b:a5:02:16:df:cf:2d:73:20:5d:
ab:b9:63:b4:3c:67:95:5b:44:32:c6:d5:4c:c6:58:
c6:ba:bd:7c:6d:ca:bb:3e:88:f6:63:65:36:83:bf:
e1:37:48:66:a2:fe:f8:c1:6a:d6:11:c7:2f:3e:e2:
64:a9:f5:69:52:80:29:55:16:9e:73:e6:ae:37:c0:
f7:c0:a2:00:37:fc:79:44:7f:b0:98:07:ca:fc:b9:
0b:09:ed:dd:4a:7a:b7:11:53:4a:d6:b2:09:e3:de:
89:0f:8d:aa:06:aa:13:f7:76:ae:d5:17:b1:db:89:
67:f0:14:cd:e0:95:fc:59:2e:f5:7e:be:e5:5f:d2:
9b:05:5b:e5:0d:21:74:7e:14:59:e7:ff:83:6b:57:
b1:ff:e4:34:52:af:15:b2:fc:c5:6f:92:db:e7:60:
b5:79:f5:99:ef:84:b7:7b:db:fd:c6:45:51:a4:ae:
05:4a:93:4e:9a:2e:a0:9e:8d:3d:38:67:bd:2e:4f:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C4:BD:5A:8E:0F:45:14:D4:DF:67:80:82:9D:8F:DE:6E:12:D6:B3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/E8S9Wo4PRRTU32eAgp2P3m4S1rM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b6:16:7c:03:09:a1:65:5b:28:88:80:ff:15:ae:22:9e:04:2c:
fb:2a:d4:8c:c7:c4:d6:e2:84:03:33:dd:5c:11:80:8c:56:81:
81:15:4d:93:31:77:45:b2:78:03:0a:fa:0f:66:7b:c6:26:ae:
e5:aa:63:e7:bc:cf:84:a6:31:27:97:a5:36:70:54:09:49:1c:
29:ed:d9:e0:be:ee:a7:7b:19:99:79:53:11:92:22:81:ed:b3:
4f:b6:c7:b7:54:18:5e:c8:b7:d9:a5:57:d0:95:b1:93:97:c0:
ab:bb:36:38:c8:99:b9:95:e4:69:a9:6f:b6:67:23:dc:8c:fa:
ee:da:35:fb:ef:b5:43:4e:fa:d1:47:10:bb:6e:94:0d:c6:e9:
44:3c:af:16:24:b9:14:9f:8e:86:22:f0:1c:eb:1f:e3:4f:32:
ce:9b:3a:2c:b6:e7:87:ee:1e:3b:de:31:bd:89:32:a1:b5:b7:
63:b3:ed:a8:52:9b:92:53:24:b5:7e:41:c2:57:43:2c:cb:39:
5e:3d:7b:c8:3b:60:5d:d1:65:2f:f5:76:9f:66:71:dc:5a:08:
e4:47:0d:e6:b4:32:3e:48:23:e6:6a:e0:6e:d9:fd:c4:53:e5:
63:49:54:99:f8:81:b4:e9:cf:ef:c2:3a:d1:34:45:58:5b:69:
e5:cd:68:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org