Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/GieehufWjXWgk0Qp5uTm5EopRHQ.roa
File: GieehufWjXWgk0Qp5uTm5EopRHQ.roa (raw, json)
Hash identifier: maZH+g6nmv+IVI13lUbrcejG0XkwpOjuuVy8Q5Kimfw=
Subject key identifier: 1A:27:9E:86:E7:D6:8D:75:A0:93:44:29:E6:E4:E6:E4:4A:29:44:74
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12B9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GieehufWjXWgk0Qp5uTm5EopRHQ.roa
Signing time: Fri 01 Sep 2023 08:04:55 +0000
ROA not before: Fri 01 Sep 2023 08:04:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.203.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4793 (0x12b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1A279E86E7D68D75A0934429E6E4E6E44A294474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:26:01:dd:57:ca:ac:4a:74:29:9a:97:19:4d:
2e:5e:5b:cb:a1:f0:b2:06:09:17:bb:f3:3c:db:ff:
44:b1:6b:49:34:05:c1:11:47:51:08:35:ba:93:cf:
00:a0:24:25:9f:0f:fe:bc:3b:2f:01:61:4a:b4:b2:
64:84:f3:86:e4:cc:7a:94:3c:46:ad:bd:b1:c6:3d:
cd:9f:30:06:ba:5a:b6:12:ce:c7:2b:66:ff:f4:1b:
68:57:82:af:26:5c:98:8a:50:b6:94:b9:b6:e6:ca:
24:14:07:61:8e:c7:11:52:8a:c8:3f:66:d7:79:f8:
0b:3f:31:c4:11:a2:d0:fd:b3:a4:25:0b:f4:47:b5:
7d:b0:9c:34:54:25:1e:c8:40:86:33:6c:33:f6:14:
4e:95:ac:db:92:ac:85:ee:13:cb:f4:50:59:b3:30:
d2:78:35:fd:41:29:fa:9f:7e:23:d5:7e:27:a6:61:
06:7a:37:00:9d:97:98:32:a9:a1:54:49:a6:63:d8:
48:90:8f:53:13:0e:29:1d:aa:41:d5:bd:d6:e1:c4:
9c:17:37:97:af:5a:c5:34:5e:e0:77:9b:58:6d:53:
f7:dd:44:ac:29:e2:90:2a:89:7a:47:55:a1:66:05:
e5:99:50:b6:68:ea:8f:c9:a3:ba:1a:a6:6e:e4:7b:
58:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:27:9E:86:E7:D6:8D:75:A0:93:44:29:E6:E4:E6:E4:4A:29:44:74
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GieehufWjXWgk0Qp5uTm5EopRHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/18
Signature Algorithm: sha256WithRSAEncryption
4a:6f:cd:69:35:6a:30:5b:40:d1:98:13:7f:1f:b8:f3:84:6f:
1b:3a:31:c4:e4:8a:cf:f1:47:07:bf:e8:d8:69:d9:e2:fa:c0:
4c:5c:70:ae:ab:33:60:47:a4:7f:b1:1b:cb:e8:24:f3:f9:e2:
5a:b2:ab:c9:40:0d:77:58:cd:2d:62:f7:d7:6a:c3:69:44:ba:
f5:20:3a:ff:9b:d6:f0:8b:0f:99:b4:8b:2a:86:a9:f9:02:81:
d0:21:96:04:ca:f2:02:5c:be:a7:12:17:e5:ad:80:b1:0f:98:
66:c6:a2:f6:54:d8:fb:4d:ce:b2:a1:fe:db:05:d6:29:12:fd:
1c:4b:3e:20:6d:df:06:93:1b:1e:31:b2:61:a3:de:fc:52:49:
da:05:5b:50:8f:a4:ba:c4:db:24:1a:d3:4e:23:46:64:74:79:
f0:7c:76:2f:29:72:20:19:3f:2c:e7:d5:0c:87:13:a1:ab:44:
ca:65:75:5b:22:bf:32:b4:98:8f:7c:f4:55:ca:df:1e:38:86:
6a:3e:f3:ad:5a:92:34:64:40:30:7c:f3:f4:f4:cb:69:d7:0f:
7d:99:65:11:ae:c8:8c:40:9f:33:8d:8c:ab:27:4d:2d:ef:a2:
10:92:99:0a:4a:20:34:b3:99:76:13:07:03:f7:8f:6f:f7:ef:
ae:79:be:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org