Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/EsR48fT5sUqkYXORlSInwV4E_l4.roa
File: EsR48fT5sUqkYXORlSInwV4E_l4.roa (raw, json)
Hash identifier: ujofVs02WkFzb+OkTGFJTZL1/JP/neq1m+mvFip4G/w=
Subject key identifier: 12:C4:78:F1:F4:F9:B1:4A:A4:61:73:91:95:22:27:C1:5E:04:FE:5E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BB5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EsR48fT5sUqkYXORlSInwV4E_l4.roa
Signing time: Sun 07 Feb 2021 11:33:38 +0000
ROA not before: Sun 07 Feb 2021 11:33:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 203.79.204.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2997 (0xbb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=12C478F1F4F9B14AA4617391952227C15E04FE5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:48:02:96:d5:7a:3e:d2:e4:74:1d:42:8e:f5:
7b:e6:eb:ee:70:81:38:91:63:12:df:15:76:c2:77:
e6:20:19:78:57:eb:51:1b:00:e1:b6:60:86:ae:79:
bd:b2:bb:45:78:e5:4e:5d:1f:68:95:5d:40:e2:26:
33:9e:57:42:94:84:f4:ea:f1:a7:2d:ff:44:d8:28:
fa:ab:e1:38:e3:02:38:78:8e:9f:82:03:d1:d1:ea:
e9:01:84:00:c2:9e:7a:15:06:86:00:3e:dc:b8:1e:
b9:75:e2:19:6f:a6:d2:94:4a:c8:f9:da:ed:4b:5a:
36:fd:cf:4d:ff:e6:ec:5b:ee:f7:7e:25:8b:e5:38:
ae:33:be:88:51:1e:ed:75:86:18:1d:37:f6:05:f5:
94:4c:30:0b:4c:80:75:9f:2b:c0:1a:4d:a1:ef:2f:
07:f1:08:e7:ae:ad:36:86:9b:f7:6b:1e:84:46:4a:
f6:9e:e1:19:7a:1c:df:c9:53:8a:64:10:79:e0:0a:
8f:5b:8b:55:1d:e2:7c:cf:78:2b:6b:e8:24:8f:2d:
c1:c1:24:36:20:56:d8:ee:10:22:14:a3:d8:f5:6c:
83:54:9b:d9:81:73:a5:90:4f:0b:b1:d7:c8:83:33:
28:b9:9c:2c:a0:64:e5:73:d7:ce:5b:06:97:ba:f4:
87:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C4:78:F1:F4:F9:B1:4A:A4:61:73:91:95:22:27:C1:5E:04:FE:5E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EsR48fT5sUqkYXORlSInwV4E_l4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.204.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:49:79:5f:b4:df:c6:c8:43:44:d4:ed:64:83:af:07:9e:6c:
26:e2:20:ca:e5:0c:3b:be:ec:72:bd:e2:35:96:64:a7:24:44:
92:45:7a:a0:f2:8f:82:4e:52:7e:59:14:b4:72:0b:c0:71:a5:
91:e8:ae:09:33:52:c7:13:44:cd:18:cd:41:8f:1c:62:22:2e:
39:90:3f:80:f8:9b:ea:cc:c1:7d:d9:61:7a:88:95:d8:7c:ce:
f0:c9:c5:2c:73:62:8d:6c:76:5b:cb:ae:d6:35:5d:96:8f:3e:
e2:d8:3c:d8:39:ba:1d:d4:37:f1:e6:2c:d6:6d:be:4b:af:d4:
e0:e0:74:a5:e4:e0:47:6d:d2:ee:de:35:08:c8:6b:ac:43:61:
b9:bd:d5:b0:47:33:23:bb:18:99:c5:3c:a6:a4:2b:ba:f0:c3:
c3:e7:2f:63:07:12:7c:36:e5:eb:8b:be:10:38:e7:63:f6:31:
d7:75:79:52:02:40:b1:03:4d:43:3f:fc:a6:9d:59:6a:8d:a6:
8d:12:84:7e:fb:c8:aa:67:59:3b:e0:e8:0e:76:c8:4b:68:4d:
32:f8:16:67:f9:c6:e3:c7:25:c8:47:35:36:32:fb:e0:a7:37:
b5:5f:27:84:2b:28:61:78:ee:74:1c:30:45:9a:e6:f2:8d:66:
41:a0:ed:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org