Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/G2tNS_DmYSSAYFxo2vGxsYTg1eU.roa
File: G2tNS_DmYSSAYFxo2vGxsYTg1eU.roa (raw, json)
Hash identifier: u8ewehI50wEhaR5pw6KioJmY1kKhh6Gm6JqSU1pTr14=
Subject key identifier: 1B:6B:4D:4B:F0:E6:61:24:80:60:5C:68:DA:F1:B1:B1:84:E0:D5:E5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1340
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G2tNS_DmYSSAYFxo2vGxsYTg1eU.roa
Signing time: Sat 23 Sep 2023 00:21:34 +0000
ROA not before: Sat 23 Sep 2023 00:21:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 60.244.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4928 (0x1340)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 23 00:21:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1B6B4D4BF0E6612480605C68DAF1B1B184E0D5E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f7:8c:2b:d1:4a:7b:ec:b9:eb:cf:14:f8:a5:
ab:ec:2e:bf:f7:f0:21:14:8c:af:91:c9:9d:0a:35:
f0:4f:6b:21:32:8b:09:2c:e6:b5:7a:81:65:65:c2:
2a:6f:a5:66:49:8e:3f:66:af:77:9c:95:3e:ce:3f:
6a:16:a8:11:c3:45:fc:96:05:62:1b:4c:94:e7:41:
de:62:6f:d5:5f:ea:34:b3:0f:a8:b1:df:e2:35:b0:
f1:c5:6e:03:f1:59:08:39:ac:7c:46:47:a8:90:de:
4b:d0:4e:51:ee:cf:f1:1d:ee:ff:b6:25:2f:4a:ee:
d2:14:b9:d9:a0:02:85:29:d4:72:cb:8b:e1:8e:e9:
64:1b:38:15:43:69:e0:48:49:f3:4d:5f:ff:b0:4d:
e3:9c:1e:b1:28:35:b2:2f:97:4c:e3:aa:fc:5d:83:
4f:6b:ed:9b:4d:a9:b0:31:9c:fc:c4:e2:5e:f3:33:
2b:29:ba:fa:d9:f3:17:f0:a7:ca:4e:07:f3:09:c1:
ea:94:94:64:57:79:92:58:3a:30:fb:80:f3:9b:3e:
00:41:1d:06:7a:46:06:5a:c3:61:27:1a:8a:1b:ff:
a3:59:a8:4c:6b:b1:97:36:72:99:e5:17:fb:82:1e:
5e:05:7f:0b:5c:6e:14:af:75:2d:f2:f3:97:c4:b6:
31:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6B:4D:4B:F0:E6:61:24:80:60:5C:68:DA:F1:B1:B1:84:E0:D5:E5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G2tNS_DmYSSAYFxo2vGxsYTg1eU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/18
Signature Algorithm: sha256WithRSAEncryption
33:df:17:be:16:cd:23:7e:22:f5:32:b5:3e:33:5f:ab:bd:48:
0d:85:29:6f:73:d8:20:25:fd:0b:a6:51:c0:c1:e7:5f:68:bc:
af:d6:d9:86:c2:ed:02:14:22:3d:7f:75:f5:8d:81:c9:f2:27:
3b:6c:4f:97:af:7f:f9:3e:92:0a:16:4d:da:35:9f:1f:a0:ae:
e4:59:0d:e3:ca:f4:fc:ac:59:38:db:5e:34:60:45:3b:0e:8a:
3e:d3:8c:d5:70:bb:7e:42:59:66:6e:c6:22:34:bf:ee:a3:ab:
01:1b:85:98:bb:bd:95:a4:47:b4:f4:3b:fa:08:88:6b:0b:6d:
86:f7:36:8a:80:9a:66:de:8b:bb:75:c5:e2:ff:85:12:48:14:
45:37:ff:cb:a5:20:8f:c0:59:c4:8b:db:8b:1a:2a:29:41:ea:
0f:01:b8:ee:2d:a5:ab:80:34:11:5e:3e:44:21:d6:20:2d:92:
6d:d2:4c:74:36:a4:56:c8:f0:3e:18:1e:bc:04:06:d9:c4:6a:
87:6c:e1:d6:e5:5f:47:cd:74:44:23:bc:e5:47:5e:bd:1a:cf:
6b:cf:a3:aa:bc:3e:3d:56:4f:fa:92:b8:d2:3b:8a:21:fb:12:
19:86:83:46:2a:a0:8e:2c:ad:a7:39:c6:bd:d4:19:c0:56:f1:
2a:05:fb:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org