Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/II_0OoMG1nhXK04dT4ptt7eKt9c.roa
File: II_0OoMG1nhXK04dT4ptt7eKt9c.roa (raw, json)
Hash identifier: 7l+gYxyudMysz3UZ9ztexf5HHU67QP1UJpO0120f48A=
Subject key identifier: 20:8F:F4:3A:83:06:D6:78:57:2B:4E:1D:4F:8A:6D:B7:B7:8A:B7:D7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 105A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/II_0OoMG1nhXK04dT4ptt7eKt9c.roa
Signing time: Tue 16 May 2023 08:36:05 +0000
ROA not before: Tue 16 May 2023 08:36:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 219.91.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4186 (0x105a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=208FF43A8306D678572B4E1D4F8A6DB7B78AB7D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5c:a3:4b:0a:49:6f:e8:fc:f7:6b:64:60:f5:
75:27:c8:2e:18:31:41:a0:0b:b5:86:30:b6:30:a6:
c6:94:57:11:0a:ec:f0:d3:46:02:15:c0:c1:00:d0:
82:52:ff:37:98:f0:45:b9:c3:e5:dc:f1:a3:a5:68:
14:cd:02:1f:a7:66:c1:9c:38:9d:3e:0c:e2:22:b8:
80:21:8e:86:0e:4f:6f:9a:c2:d1:82:ad:97:f6:70:
c2:5c:9e:a3:9c:e7:35:fa:2a:2f:91:03:c5:24:19:
d9:14:c7:de:8a:56:0d:16:60:ec:fc:ed:fb:d4:82:
8a:81:a6:a4:0a:d8:a0:ff:54:a5:68:a3:2a:4a:bd:
a6:62:0d:00:ee:6b:63:b6:f7:86:cb:5d:12:b9:26:
4c:8d:63:67:4f:31:73:67:df:47:73:7a:bd:bb:eb:
68:55:82:68:47:e4:83:38:02:b4:4f:97:1a:e0:77:
c2:b9:ed:96:cf:90:dd:a5:25:eb:bf:66:5f:e1:25:
d0:20:cb:7d:2f:69:49:ac:50:33:81:0b:e4:dd:a7:
84:1e:36:00:34:a2:6d:4b:e6:ca:55:7b:bf:d0:cc:
8a:31:6a:77:bc:ab:be:28:77:65:dd:4b:a3:90:aa:
f4:9d:84:9e:d6:61:ea:c3:20:0b:be:c3:7d:59:60:
ef:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8F:F4:3A:83:06:D6:78:57:2B:4E:1D:4F:8A:6D:B7:B7:8A:B7:D7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/II_0OoMG1nhXK04dT4ptt7eKt9c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:91:69:6b:51:4b:6a:17:d5:90:12:10:d2:ee:98:2e:8f:3c:
34:89:b6:82:c1:e0:80:64:d1:eb:b3:28:0a:da:98:52:8d:c5:
d0:e1:87:19:ac:6a:01:02:03:d6:3f:f5:16:95:dc:01:f9:f1:
fe:1d:cf:38:d4:23:94:7a:c4:48:49:58:cd:f8:ad:fd:44:fe:
93:ae:a8:a3:23:f6:89:5c:ba:c6:c6:1e:d1:c4:bf:93:5c:29:
15:12:f4:0c:a2:c1:f2:a8:82:d5:12:86:b6:ba:63:1d:44:fe:
9b:94:35:fa:78:f7:c3:93:57:4b:cb:38:58:ef:f4:56:58:85:
36:d8:98:74:56:8a:4c:fd:09:03:9e:70:5c:fc:1e:e8:83:b3:
ee:8e:12:19:32:88:a6:18:d1:b2:6b:5f:d6:79:db:36:b0:78:
01:79:47:d6:7a:2a:8e:a3:aa:94:a9:0e:46:79:d7:cc:c6:25:
2c:38:9d:ff:f1:5c:fa:fe:ef:9d:fd:b1:6e:72:6d:0a:e2:d2:
c4:c3:03:6a:1f:9d:0d:ef:ba:6e:b9:c7:5c:f6:16:0a:b2:03:
6f:ea:64:12:db:9f:7c:59:3d:b3:2a:36:fd:54:c5:90:57:86:
51:1f:fc:40:cc:c4:12:af:9f:e6:69:b8:f6:99:0c:9b:4c:86:
b4:25:ab:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org