Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/GWlFttQki-mtkWV1R-lu3b3D8Q0.roa
File: GWlFttQki-mtkWV1R-lu3b3D8Q0.roa (raw, json)
Hash identifier: yK/uA++aiFIMh8mlDcCS5t7p8f4GTr4kHCeMy1t0VBQ=
Subject key identifier: 19:69:45:B6:D4:24:8B:E9:AD:91:65:75:47:E9:6E:DD:BD:C3:F1:0D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12DA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GWlFttQki-mtkWV1R-lu3b3D8Q0.roa
Signing time: Fri 01 Sep 2023 08:05:05 +0000
ROA not before: Fri 01 Sep 2023 08:05:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 223.22.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4826 (0x12da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=196945B6D4248BE9AD91657547E96EDDBDC3F10D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:11:f1:7f:ff:dc:c0:83:cc:12:1c:c2:bc:
44:f0:4f:72:60:74:dc:f4:da:ce:77:54:5d:7b:25:
70:e9:90:77:ad:7e:de:1e:20:db:79:4a:e6:90:37:
f2:1a:62:92:7e:28:1d:20:9d:14:59:dd:ff:71:d7:
63:96:27:53:6d:f6:6a:4d:10:8e:c3:8f:9c:9e:ac:
ae:0b:e1:2f:e5:cd:5a:86:d6:f7:73:77:bb:3f:5c:
17:67:50:24:0c:72:32:52:79:d1:16:ab:b0:76:4b:
ea:61:c2:e5:d3:95:95:90:74:dc:23:36:0a:fe:57:
16:85:a2:20:99:38:37:a4:bd:34:9b:f3:62:79:91:
16:85:9c:d7:6f:d0:e8:83:c5:99:bf:dc:75:da:20:
77:28:80:ff:96:5a:8b:42:24:1d:90:43:9a:c1:9f:
fa:0f:30:a9:c8:50:1b:cb:80:31:a4:25:c8:24:7e:
81:a8:f8:99:2e:f0:32:be:4b:d1:b1:0b:98:03:7a:
eb:d1:97:16:36:5e:ee:2e:1e:f1:f8:15:ea:ff:d9:
ea:68:ad:3a:44:b8:4a:08:0e:a1:b8:49:36:41:1b:
03:22:08:77:05:3b:f3:61:44:fb:ae:f1:92:c7:03:
76:fa:47:46:11:c1:d8:88:7a:89:e7:11:d0:63:9a:
4d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:69:45:B6:D4:24:8B:E9:AD:91:65:75:47:E9:6E:DD:BD:C3:F1:0D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GWlFttQki-mtkWV1R-lu3b3D8Q0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/18
Signature Algorithm: sha256WithRSAEncryption
35:12:f5:70:5a:b8:dc:b1:96:63:8b:a4:ad:bf:b9:d6:43:e0:
85:91:8b:95:11:37:3f:9d:e9:33:f8:1e:74:c8:aa:53:cd:29:
54:98:ff:8f:e9:f9:05:97:4a:70:bd:fb:3f:8c:e5:00:92:e9:
6b:af:e2:b9:4a:ea:b5:23:83:ac:79:7f:97:e0:a7:63:8a:49:
fa:05:bc:2b:c9:1b:fb:e2:19:4b:28:2f:fa:29:45:d8:f7:37:
f8:42:e0:77:7a:03:70:1f:71:dc:4e:46:70:c8:02:96:b8:35:
e7:e9:79:ba:bd:ce:43:62:d7:64:b3:1e:91:79:c8:36:02:5e:
e3:42:fc:6f:40:3f:20:f8:49:cf:4b:79:74:ac:e0:2f:32:b5:
2c:c9:13:06:76:c2:65:9e:d4:ca:8d:70:ff:60:1c:f9:61:e8:
b7:2b:1f:bc:ca:6f:1b:8a:a1:d5:bd:78:50:36:13:4e:29:51:
18:14:a7:9a:75:de:f6:f3:d8:70:9d:89:05:7c:91:dc:7b:05:
a7:7e:d3:15:74:0d:c8:ac:0e:78:61:b1:e4:bc:5a:14:bd:13:
31:cc:36:f6:c3:99:f8:9c:ce:ac:d7:ec:26:76:fe:69:66:9a:
a0:ce:e0:6c:d5:4f:fd:80:0e:14:d0:c8:c6:1e:d6:e9:c5:a8:
17:40:14:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org