Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/IOFjORBV84HIk2Ashv-yoU8k5yw.roa
File: IOFjORBV84HIk2Ashv-yoU8k5yw.roa (raw, json)
Hash identifier: KVDfxM2zetZFiL9PIK53csbeqPRVYJE0+iQQkgcNPkk=
Subject key identifier: 20:E1:63:39:10:55:F3:81:C8:93:60:2C:86:FF:B2:A1:4F:24:E7:2C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08FC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IOFjORBV84HIk2Ashv-yoU8k5yw.roa
Signing time: Tue 29 Sep 2020 10:01:19 +0000
ROA not before: Tue 29 Sep 2020 10:01:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.58.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300 (0x8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=20E163391055F381C893602C86FFB2A14F24E72C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e4:71:f1:8e:e2:99:b9:ec:c4:c9:ca:c7:cd:
c5:96:a9:8b:00:d2:c1:69:1d:3b:24:d8:fb:c6:65:
20:a0:bc:94:da:89:ff:34:90:1e:6d:c8:ea:4b:58:
2e:c7:08:d7:06:9d:ae:27:6a:ca:0b:66:9c:ce:90:
3c:7f:25:e0:61:bd:6e:9f:b7:a5:91:d1:7c:9c:55:
f8:88:eb:48:51:2c:6d:8f:bc:06:61:17:12:7a:4c:
62:ac:3a:b2:62:bd:f9:50:de:d6:7e:46:ab:d6:be:
93:50:13:e5:05:9f:0d:89:5b:f5:20:c2:b9:7d:f3:
ce:ab:5f:58:9c:ca:c1:b8:e9:8e:5e:b3:d3:31:4d:
41:50:43:65:34:e7:0a:83:94:25:4d:b6:f1:a1:fe:
06:53:77:27:2c:dd:47:4c:45:40:69:ea:b2:6d:30:
7b:60:c9:13:d8:f4:a2:9a:e0:72:87:12:58:ee:b5:
2d:40:87:7e:cf:fb:d5:01:ac:1b:3f:45:d6:85:56:
30:fa:31:c0:b3:65:91:05:55:71:47:85:64:5a:91:
6e:85:90:68:a2:e7:12:31:8c:ea:6a:d1:28:a9:8e:
55:28:a6:f2:f7:6f:a0:2b:f1:f3:85:e5:f1:ad:41:
ea:76:c1:07:da:a6:b6:55:1f:da:df:f3:9c:88:dd:
92:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E1:63:39:10:55:F3:81:C8:93:60:2C:86:FF:B2:A1:4F:24:E7:2C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IOFjORBV84HIk2Ashv-yoU8k5yw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.112.0/20
Signature Algorithm: sha256WithRSAEncryption
75:90:43:18:94:15:4c:46:82:f5:48:09:4b:f2:d1:c6:31:30:
ff:e7:09:cd:fb:f9:4c:c5:64:20:5a:5a:53:ba:f3:c1:f1:38:
0a:69:c9:c5:38:fc:e6:34:31:c0:99:89:11:2c:d4:d1:71:f8:
0c:90:1b:b9:78:77:36:15:c7:b1:86:f3:07:0d:61:50:25:a0:
0f:95:0f:1c:48:aa:53:a8:ca:68:ba:30:d1:40:ca:02:bd:46:
79:e6:6e:a4:1a:65:ec:c0:40:2f:d1:62:44:ea:b7:c9:d0:77:
ae:74:5b:e4:01:02:b5:7e:8a:14:e9:02:58:21:13:01:dd:54:
fd:e4:d6:81:85:d7:ce:52:a6:7e:5f:fb:9e:47:82:3c:22:25:
d7:22:9d:24:78:a7:73:27:07:c6:36:84:73:e7:fa:e7:00:c0:
7c:55:c6:38:cc:e2:42:a7:92:83:b4:97:42:43:d6:7e:00:0b:
2a:6a:be:53:eb:7e:86:c2:43:c2:31:ba:93:c3:4d:75:09:9e:
96:b5:93:42:a8:c6:66:64:d8:37:40:fb:bb:52:c0:4d:f8:7f:
39:c2:80:5f:19:c4:a0:c5:4c:05:08:02:5a:ae:52:4a:74:eb:
8b:70:3d:0a:a6:b7:4b:a1:56:b2:d1:49:c7:a4:a0:28:4c:38:
5e:d0:5e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org