Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/FNmRNYbxv6V5aU2ZqP00yIxdTIk.roa
File: FNmRNYbxv6V5aU2ZqP00yIxdTIk.roa (raw, json)
Hash identifier: SRMihTYaFR3tZ6QjllRdPgLPVS6r9Zl7Cz7QnEeGDHc=
Subject key identifier: 14:D9:91:35:86:F1:BF:A5:79:69:4D:99:A8:FD:34:C8:8C:5D:4C:89
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1074
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FNmRNYbxv6V5aU2ZqP00yIxdTIk.roa
Signing time: Tue 16 May 2023 08:36:13 +0000
ROA not before: Tue 16 May 2023 08:36:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131142
IP address blocks: 2404:0:7000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4212 (0x1074)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=14D9913586F1BFA579694D99A8FD34C88C5D4C89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:16:e8:bf:c5:f8:d6:93:03:5a:7c:8f:c1:99:
69:37:33:34:41:38:d2:e9:b9:49:43:30:07:c1:d8:
d4:72:fc:e4:4e:30:e1:3e:34:85:a0:4e:36:60:1b:
80:25:7f:8b:83:5d:12:3b:af:77:8a:8b:c1:50:a5:
8d:f5:df:da:b8:bf:0c:97:46:f3:bb:3b:82:e0:84:
78:f8:1f:2c:5a:09:97:3f:61:05:8c:17:51:45:04:
7b:73:66:c3:aa:78:0b:2d:45:6f:ae:03:4f:02:1e:
6c:cf:77:20:6f:71:51:00:8c:ee:45:cf:1f:44:5f:
95:7d:4f:49:4e:46:ab:2b:8d:d7:4c:84:40:60:7b:
cf:c0:b9:db:1c:fb:e2:ea:cf:14:82:4f:6e:6e:77:
33:d7:8c:05:3c:70:b8:d0:28:5d:07:1f:b4:69:a3:
93:2e:ba:33:ab:1c:35:be:f8:8d:21:f0:83:03:94:
75:4e:55:37:c2:6a:4a:33:28:16:17:28:60:08:63:
06:49:5f:ab:18:17:41:86:46:db:1a:e0:94:1b:f3:
5e:4c:3a:fd:40:47:01:3f:25:18:7f:8d:b2:88:0a:
cd:d2:d1:9b:b9:a3:47:7b:bd:5f:ea:ae:50:af:c7:
98:94:ad:5d:99:35:02:72:b5:31:70:cc:3b:4f:8e:
65:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D9:91:35:86:F1:BF:A5:79:69:4D:99:A8:FD:34:C8:8C:5D:4C:89
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FNmRNYbxv6V5aU2ZqP00yIxdTIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:7000::/36
Signature Algorithm: sha256WithRSAEncryption
32:6d:c0:01:81:01:99:cc:a4:86:c1:36:ae:0a:72:d8:76:5c:
c6:55:ea:44:ee:aa:9c:5a:8e:21:3f:62:2a:67:69:5b:bd:2a:
34:64:53:70:6f:5d:d3:ae:9b:1e:f1:c0:35:b9:f4:80:c4:eb:
90:1e:a4:e0:19:9c:3d:04:59:c4:41:ef:94:11:8a:6a:3d:e5:
f2:51:12:5e:fa:31:55:70:83:dc:e3:dd:7f:a8:e7:54:37:ed:
5b:b2:14:75:7d:86:d9:46:a3:45:2c:3a:0f:7b:43:14:10:b2:
91:3d:b6:76:8a:55:9a:09:ab:82:ed:f4:11:28:21:d2:f9:48:
e8:91:09:fd:36:98:0a:8a:86:65:d5:d5:57:16:5a:75:10:10:
f0:8f:d7:fd:00:4c:d2:17:1c:47:d6:f7:ff:f1:e5:3c:c0:7b:
a9:2d:e7:1d:b5:1b:7d:01:a8:ae:09:2b:58:db:3d:b0:be:6d:
f6:5a:33:29:58:d4:32:f5:b6:8b:e9:74:3b:06:9f:31:11:14:
a0:72:00:66:aa:35:40:e2:01:50:18:2f:26:03:6d:f2:06:4d:
75:9e:21:ee:6e:88:67:ff:8c:66:d5:cd:23:03:3f:cf:cf:87:
93:14:bd:f7:de:f0:44:79:86:0b:30:06:10:61:1c:c1:44:c1:
80:9e:e5:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org