Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/GydWdS7RnGG9wR6vf8ABJGtrY40.roa
File: GydWdS7RnGG9wR6vf8ABJGtrY40.roa (raw, json)
Hash identifier: p6s1tqP7/MGsaS9JZ26/huIOWEKdYxoOPHh16Ed5JTE=
Subject key identifier: 1B:27:56:75:2E:D1:9C:61:BD:C1:1E:AF:7F:C0:01:24:6B:6B:63:8D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1307
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GydWdS7RnGG9wR6vf8ABJGtrY40.roa
Signing time: Fri 01 Sep 2023 08:05:17 +0000
ROA not before: Fri 01 Sep 2023 08:05:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.200.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4871 (0x1307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1B2756752ED19C61BDC11EAF7FC001246B6B638D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9d:5c:f9:21:aa:78:5c:4c:52:5c:77:84:b1:
c4:8e:c6:ca:d8:f7:ed:1c:c6:4d:4d:be:75:5e:2e:
bd:1c:f0:ec:e8:73:28:22:43:3a:ef:89:af:16:b0:
3c:ef:00:58:61:41:6a:3d:16:57:78:d4:27:28:34:
f2:2a:4f:a3:8e:c6:d7:29:10:29:08:15:23:b0:9d:
51:70:38:11:f8:06:ee:4e:2c:57:38:4d:81:29:04:
86:79:5a:8a:7a:5a:c5:c3:32:3d:d8:08:bb:13:17:
70:e6:b1:c0:3a:83:a6:09:32:83:f2:88:f7:5d:11:
20:a6:cb:97:ad:68:3d:43:af:76:95:d0:de:58:7e:
cf:f8:83:fc:42:86:66:95:9a:ad:73:f8:e8:de:fe:
e4:42:4c:b1:0d:5d:3d:96:3d:de:84:88:24:27:ab:
87:f9:b8:fa:b4:22:14:15:e6:b7:e8:ae:35:03:16:
6f:4f:6d:72:15:08:61:ea:f6:07:2e:e4:81:8f:4a:
14:c3:a7:c2:b0:6f:f3:f7:8a:f6:ee:c3:8f:4e:7d:
92:68:df:67:50:c8:f6:3a:e1:7f:cb:6d:ce:fa:f1:
21:8e:a8:7d:0b:29:b3:80:83:b5:61:7f:48:13:4e:
cc:86:2d:e6:5d:dc:75:0f:83:89:2d:a4:da:47:a1:
47:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:27:56:75:2E:D1:9C:61:BD:C1:1E:AF:7F:C0:01:24:6B:6B:63:8D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GydWdS7RnGG9wR6vf8ABJGtrY40.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.192.0/18
Signature Algorithm: sha256WithRSAEncryption
29:ad:fd:85:0a:5e:21:09:0e:3d:15:6e:79:b2:17:33:a5:ce:
07:20:87:51:31:87:42:a2:4d:17:b2:27:06:67:68:d8:c7:67:
31:79:a9:a2:49:80:34:a0:14:00:8a:7a:23:a4:bf:9a:b1:1c:
5b:95:ce:2b:da:23:4b:8b:ef:30:26:bf:a4:69:72:3f:20:06:
41:1b:7e:b0:42:21:7f:74:de:e8:1c:87:54:94:ad:2a:e6:6c:
10:fc:d0:97:7c:40:e0:93:86:75:56:07:72:46:0e:cd:12:12:
d7:8c:bf:a8:d8:e7:f5:c5:68:de:e2:ac:c8:a2:06:1f:ed:3a:
19:b1:7f:1a:c7:5c:ca:aa:42:f1:28:38:0c:b2:7f:d8:68:10:
81:4f:c1:5e:b4:46:ef:6e:51:60:26:8b:af:b9:64:a4:83:c3:
bd:f2:50:15:15:78:57:bb:ed:0b:02:39:27:0b:72:b7:e0:db:
33:06:f4:55:47:f5:4e:d1:aa:f5:28:8d:53:ca:f4:78:4d:eb:
cd:0d:22:e9:86:bb:bb:55:42:9d:ed:be:5a:42:ca:68:8f:27:
6a:a4:0c:dd:79:42:b7:f6:87:a4:20:ad:48:55:aa:d1:d9:01:
18:87:b4:17:53:4f:1e:7a:4a:d9:20:f0:30:13:0a:ca:61:c6:
42:73:b0:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org