Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/IojYkoeeuFw5wpEzK-hVheyLzrE.roa
File: IojYkoeeuFw5wpEzK-hVheyLzrE.roa (raw, json)
Hash identifier: aFmZRnOU8vRcl7A+c+dymwrBeXGV0aP43FeUcXizqEI=
Subject key identifier: 22:88:D8:92:87:9E:B8:5C:39:C2:91:33:2B:E8:55:85:EC:8B:CE:B1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E2B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IojYkoeeuFw5wpEzK-hVheyLzrE.roa
Signing time: Wed 29 Sep 2021 02:40:02 +0000
ROA not before: Wed 29 Sep 2021 02:40:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 223.22.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3627 (0xe2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2288D892879EB85C39C291332BE85585EC8BCEB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:89:72:47:d6:0d:9c:e5:cf:26:6f:6a:38:77:
cf:b0:f7:ec:74:7f:fc:5d:17:54:aa:7d:d0:4d:7d:
25:91:e5:b0:21:a7:a4:6a:82:6e:1e:75:5c:19:21:
17:dd:aa:ab:1b:6c:c7:96:43:7f:73:24:b6:f9:87:
5b:98:c3:b8:23:1b:2f:ac:57:57:e2:7e:04:b9:7a:
da:17:43:3b:88:34:70:e1:36:26:aa:80:a8:5e:a4:
00:03:dd:7e:59:66:85:5c:d7:23:16:2f:0c:8b:e1:
65:42:6b:86:6e:a3:f0:f5:dd:15:cc:5b:98:a9:d6:
5a:58:08:22:b2:4c:12:b0:31:c4:25:f1:ff:a7:00:
62:fa:46:4f:0e:dd:be:a0:7b:49:19:0f:19:37:df:
d6:dd:1e:77:99:c6:b3:02:9d:20:8b:d0:b2:b7:48:
f5:b8:eb:4a:70:f5:04:f5:e1:cb:f7:af:d8:9e:c7:
2a:ba:b5:4e:eb:80:ae:47:a1:3e:41:8f:b1:69:7b:
99:29:52:db:4a:b4:7e:75:62:06:46:32:51:cc:36:
df:c3:03:70:fc:ec:05:07:96:c5:9e:bf:cb:db:45:
a9:21:97:2a:c1:b2:1b:af:49:50:a6:b9:26:89:cd:
16:47:e0:e3:52:3f:7f:d9:f3:1a:39:61:d9:67:45:
0c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:88:D8:92:87:9E:B8:5C:39:C2:91:33:2B:E8:55:85:EC:8B:CE:B1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IojYkoeeuFw5wpEzK-hVheyLzrE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/18
Signature Algorithm: sha256WithRSAEncryption
35:f6:4e:de:e7:0a:d4:c8:af:5c:54:6d:65:8b:26:28:35:1f:
cc:f4:ef:b1:55:2a:ab:f9:2b:25:81:1e:f5:ad:5a:ce:32:d7:
cc:c2:86:8d:b7:85:21:18:63:5d:a9:ad:24:10:5d:d7:37:b9:
02:81:da:a7:16:a1:b7:08:3b:dc:a8:f6:5a:e6:80:29:a5:dd:
f7:34:ff:f0:bf:79:81:29:2b:dc:37:0d:fc:25:1c:c6:c0:23:
b8:cb:90:ea:ed:ef:f9:3c:61:3f:8a:d4:98:d9:8f:78:47:19:
b7:38:18:ae:e3:78:9a:92:4f:61:c0:dd:92:9c:cb:22:b8:56:
07:b6:5e:12:59:a6:79:2f:53:b9:05:53:47:d8:d0:ba:80:d7:
10:bf:3f:f9:86:74:d9:10:4b:63:96:e9:3c:2c:8f:a9:9f:7f:
aa:48:e2:7a:b6:24:59:e0:5d:41:9b:27:3d:71:4e:06:6b:58:
55:d6:c1:68:ab:34:d5:66:47:cc:8c:41:d7:08:4f:08:8c:fa:
65:8a:4d:7e:c3:55:91:79:15:a1:c8:63:55:8f:cc:d6:aa:b6:
63:9d:b2:7a:a7:38:b2:01:0f:0a:c5:1f:32:25:c8:52:b9:4f:
fd:87:bc:90:68:1c:f7:fd:16:e8:9c:cb:7c:03:95:74:3e:10:
b6:a4:03:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org