Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/H4BOvxjFNNeIxDs5ts92ONSwlNg.roa
File: H4BOvxjFNNeIxDs5ts92ONSwlNg.roa (raw, json)
Hash identifier: /6+4Z3t5JNlfIEZLvDnH7Zz0CLywkb182wfZEbTYnCc=
Subject key identifier: 1F:80:4E:BF:18:C5:34:D7:88:C4:3B:39:B6:CF:76:38:D4:B0:94:D8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E05
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/H4BOvxjFNNeIxDs5ts92ONSwlNg.roa
Signing time: Wed 29 Sep 2021 02:39:52 +0000
ROA not before: Wed 29 Sep 2021 02:39:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 218.35.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3589 (0xe05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1F804EBF18C534D788C43B39B6CF7638D4B094D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7c:c1:e8:96:c9:1c:7a:7b:2c:fa:57:6b:74:
e7:18:a2:5a:48:a8:b0:43:da:07:00:de:fd:4b:c7:
fc:2a:44:3e:e4:47:83:3a:97:0a:ff:05:01:c8:de:
47:a0:6a:90:a1:51:cf:45:ff:00:74:5c:b3:15:85:
da:1d:59:51:47:8f:97:85:1a:d7:4b:6a:0f:b4:47:
00:9b:ff:c7:a2:7e:e8:ff:04:9e:94:ad:80:7e:75:
aa:ae:ad:d3:26:f3:b3:77:28:08:a5:3d:68:75:08:
dd:fb:52:dd:c2:21:ab:d1:73:72:9d:23:6f:23:77:
8e:5a:99:88:15:6e:6e:1e:5d:96:91:45:45:02:5b:
de:63:ec:bd:5c:b1:43:e4:4d:7f:c4:81:ba:ba:2c:
12:c6:21:31:7c:45:83:02:16:be:9f:b3:5d:c4:7c:
69:e6:b6:52:0e:9b:8a:d1:bb:86:32:02:48:3d:1b:
1a:8c:46:41:81:06:49:d3:23:66:ee:ab:1e:97:2b:
f5:e0:64:d5:46:6f:59:c8:a2:66:90:b1:a3:ae:74:
21:4b:88:46:81:9e:fa:09:c5:d2:85:08:84:0b:e5:
e9:1d:60:dc:92:cf:1c:15:6c:7a:e6:16:84:ec:8e:
3e:a2:b3:c8:e2:2c:28:74:5f:e8:74:6a:61:22:4a:
0d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:80:4E:BF:18:C5:34:D7:88:C4:3B:39:B6:CF:76:38:D4:B0:94:D8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/H4BOvxjFNNeIxDs5ts92ONSwlNg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8f:5c:30:44:59:7e:d4:55:40:a6:2f:85:51:a2:86:02:34:7d:
4d:49:c4:24:ea:a9:6e:aa:47:bf:d6:e6:7f:9d:14:1d:65:44:
3f:c5:a2:67:b1:5a:2f:ab:a4:f7:9c:96:2c:ce:11:8b:73:3b:
92:0a:09:86:1f:bf:45:d7:1f:26:87:9f:77:26:1e:c9:78:88:
83:0c:54:a4:08:77:4c:5c:1c:6d:0e:07:ac:22:8e:97:74:b9:
e9:aa:70:10:de:7f:49:ae:a3:bd:9c:d5:04:d7:a9:56:8e:15:
9e:16:2e:99:10:51:f5:77:da:c9:7d:df:98:d2:1f:6e:1c:ee:
5f:b5:d1:26:d2:fa:ba:81:87:fd:83:cf:66:c4:b0:4f:d1:9c:
4e:05:9a:21:87:b3:d1:cd:e1:e9:c9:c8:a2:30:b0:4d:54:4c:
21:0a:05:6e:cf:33:f2:92:c9:5c:c2:76:d0:22:af:ab:91:5e:
88:ad:13:6a:1a:16:c5:6c:18:c3:eb:11:fb:d2:98:ce:b2:de:
a3:8a:bf:28:5f:fb:f4:1b:7d:f8:29:91:68:eb:8f:42:8c:4e:
2f:37:2d:74:3a:4a:4e:8a:3b:4c:fb:1c:43:a2:8b:f3:55:05:
62:99:ee:d0:53:e7:58:cb:9f:b6:d6:06:3d:01:0b:f2:86:b7:
1b:0d:af:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org