Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/EFI5UvEwV1g-VqR823le69-VH2g.roa
File: EFI5UvEwV1g-VqR823le69-VH2g.roa (raw, json)
Hash identifier: SGWTVr3Ij5SnHJkb4E2QuPpfb21eC24OlV3tsbuPF5w=
Subject key identifier: 10:52:39:52:F1:30:57:58:3E:56:A4:7C:DB:79:5E:EB:DF:95:1F:68
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BCF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EFI5UvEwV1g-VqR823le69-VH2g.roa
Signing time: Sun 07 Feb 2021 11:33:57 +0000
ROA not before: Sun 07 Feb 2021 11:33:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.200.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3023 (0xbcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=10523952F13057583E56A47CDB795EEBDF951F68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d3:62:8e:2b:f3:68:e6:96:64:42:11:b5:c9:
e4:c7:48:b9:90:4c:44:a3:c6:5b:c7:fb:f5:8a:b0:
4f:5d:9d:dc:11:7b:f1:17:aa:20:7d:3a:d6:bd:21:
2d:99:a8:e2:f0:6e:70:bd:ba:21:4d:55:8d:f8:d7:
88:65:6c:a1:67:fd:ff:2a:e8:dd:10:77:bd:c7:8b:
cf:20:89:62:9c:8b:b0:cf:d6:92:4d:ef:fc:97:be:
76:24:be:02:15:ba:b3:84:c7:40:ac:a6:b6:d2:6f:
4c:ed:82:fd:b6:74:50:74:e8:29:22:17:ef:ab:cf:
9d:b5:7f:9c:91:e9:52:61:7b:4e:1f:00:d1:b8:7a:
e7:d9:45:bb:e0:e9:1b:92:9b:93:87:dc:0b:a4:e6:
5a:3a:03:63:98:45:47:89:50:09:d2:64:49:b9:55:
fa:bf:b5:72:15:a7:5e:cc:46:33:21:f6:b9:de:c9:
a1:8c:f2:89:73:c3:4f:d2:ee:b1:7e:bb:78:f4:40:
b7:4f:2c:7f:a1:19:40:76:09:6d:6b:bb:c8:34:a8:
e3:27:dd:f7:c6:f4:2e:d7:40:83:dc:38:a5:15:3c:
8c:74:dc:f6:f4:7c:38:10:e1:8d:1b:4d:f1:89:13:
04:d1:89:b4:56:37:46:09:8f:f7:6f:10:85:73:cf:
c4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:52:39:52:F1:30:57:58:3E:56:A4:7C:DB:79:5E:EB:DF:95:1F:68
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EFI5UvEwV1g-VqR823le69-VH2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.4.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:f6:5d:4d:c3:e1:a9:6e:2b:b0:7c:5b:63:0d:d0:95:ac:39:
9d:eb:33:98:bc:73:36:53:70:37:75:38:f0:1a:5c:53:e8:32:
fc:24:45:c0:92:a9:70:ad:70:aa:22:55:81:5c:a8:e1:e6:ec:
e3:28:c8:99:cc:92:a3:b1:ae:32:02:1b:0c:ec:4a:8e:5c:f1:
36:96:01:cf:94:d4:bd:c1:cb:02:46:8d:7d:5b:5f:1e:3d:2b:
72:7c:f5:0a:d4:38:7f:c2:7e:a9:d5:29:5e:32:e5:7c:bf:47:
46:40:f2:23:31:82:67:5c:dc:d1:a9:96:82:f7:a0:72:07:f1:
7b:d1:26:63:d9:27:ea:2d:46:ff:07:bd:f4:12:bc:29:39:19:
57:2f:d7:e0:16:b5:67:cd:31:56:0b:a8:58:71:52:60:1e:08:
c1:a4:0c:6a:59:b7:c3:6f:02:55:7a:09:0d:78:c4:8b:14:88:
31:a1:ea:a4:79:d2:83:4f:4f:09:5a:be:87:73:88:83:9b:60:
33:f2:71:4a:7d:47:86:2d:35:de:7e:05:9e:37:a3:5d:a6:60:
d6:86:41:d8:85:16:ae:ce:b9:4b:95:c2:1b:7c:d1:00:02:26:
b0:10:be:5d:90:60:07:31:66:62:94:8d:ff:0e:85:f7:a0:c0:
b7:cf:cb:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org