Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/K0JFH7RACvbpbtGtAyTXszr_kpY.roa
File: K0JFH7RACvbpbtGtAyTXszr_kpY.roa (raw, json)
Hash identifier: lWy+AbfE8cOfAqvq5ou3cfAvWhu/l3qPUsT6L8i8rwE=
Subject key identifier: 2B:42:45:1F:B4:40:0A:F6:E9:6E:D1:AD:03:24:D7:B3:3A:FF:92:96
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12F4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/K0JFH7RACvbpbtGtAyTXszr_kpY.roa
Signing time: Fri 01 Sep 2023 08:05:12 +0000
ROA not before: Fri 01 Sep 2023 08:05:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 210.202.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4852 (0x12f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:12 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2B42451FB4400AF6E96ED1AD0324D7B33AFF9296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3d:79:41:63:3f:04:a5:a4:6d:e6:af:e8:f0:
e9:8a:2d:9f:6a:6a:70:60:c4:75:d1:df:27:1b:09:
62:0e:d4:8b:6a:5d:0e:9a:9e:62:36:48:80:dc:5d:
cd:ec:49:7f:7f:c8:8d:46:53:38:e1:ae:fa:d0:f0:
3b:a2:1f:47:13:f3:16:f5:1d:22:35:09:7e:3a:cc:
89:27:4c:87:bb:90:8f:02:1d:0b:44:d9:6c:94:70:
9a:a0:5f:19:ed:51:8f:01:45:47:85:2f:d3:6d:46:
f0:c7:35:de:00:33:5f:84:d4:70:fa:15:4f:cf:f5:
e1:7a:f3:98:da:43:67:3e:6b:19:42:e5:8c:8d:1d:
15:49:ca:d3:fe:34:08:53:bf:10:e5:0a:1e:0c:46:
d2:20:19:53:4c:8d:42:e6:7b:27:72:80:f8:a5:32:
84:9a:97:f8:8b:25:8f:10:07:b6:41:a6:9f:bb:a8:
12:d6:3b:96:97:f2:4e:f6:1b:1b:d5:9a:07:22:be:
20:b6:bc:33:c4:93:5b:5f:75:b5:9f:05:d4:5a:62:
d9:65:f9:09:c8:25:9d:16:47:ce:48:92:7c:bf:79:
e6:82:e0:cb:26:73:08:f1:21:36:0a:d7:05:1f:79:
ce:19:bd:3c:3c:fa:3d:ac:b9:41:ba:78:5e:82:fc:
64:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:42:45:1F:B4:40:0A:F6:E9:6E:D1:AD:03:24:D7:B3:3A:FF:92:96
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/K0JFH7RACvbpbtGtAyTXszr_kpY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.192.0/18
Signature Algorithm: sha256WithRSAEncryption
ab:10:b4:f9:a0:be:db:d8:2d:f3:55:1c:aa:62:83:de:15:3d:
62:a2:5c:ad:b8:1b:ed:1a:64:51:41:41:86:be:84:17:2c:29:
d4:a1:26:a8:dc:e6:78:84:ca:4c:e1:b7:3e:95:5d:b5:5a:0f:
c5:d4:44:be:33:68:ad:95:22:74:71:c9:a6:a4:e1:85:0d:03:
6b:0e:d9:fa:78:24:af:77:02:94:89:f0:53:1d:62:47:2d:0e:
5b:a3:45:12:2f:21:e5:15:f9:4e:ce:2c:06:25:25:59:9b:77:
55:73:4e:12:df:ad:73:ec:63:44:a1:9f:95:4f:2d:d1:42:03:
5d:7d:ac:9d:c8:3b:35:3a:37:94:34:a3:0e:c7:29:57:f2:e9:
a0:b4:f2:c5:da:17:e5:7b:d1:8b:46:64:20:a8:1d:07:43:e7:
8a:20:04:3d:ed:c1:b2:f4:08:af:c2:ef:7e:e0:ec:94:f8:b6:
93:35:43:19:79:89:74:07:28:1d:38:58:8a:d5:f9:46:c8:a3:
7c:7a:28:8f:8a:50:f4:2d:0f:90:b9:f9:8e:da:8c:9a:1e:c9:
61:c8:73:c8:f0:a4:33:12:fe:34:df:f1:c0:93:60:d1:bd:82:
61:84:ff:99:50:13:8c:b2:c1:3f:b3:b7:e3:fa:53:63:64:cc:
42:ec:c9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org