Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/K6HDbrJqzc-WTTvoVWS34xVBSOY.roa
File: K6HDbrJqzc-WTTvoVWS34xVBSOY.roa (raw, json)
Hash identifier: mp+/jxpHB2Rp1CtZjwEeyT0nl2i7CfSWYCl2CfWbyUA=
Subject key identifier: 2B:A1:C3:6E:B2:6A:CD:CF:96:4D:3B:E8:55:64:B7:E3:15:41:48:E6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12CA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/K6HDbrJqzc-WTTvoVWS34xVBSOY.roa
Signing time: Fri 01 Sep 2023 08:04:59 +0000
ROA not before: Fri 01 Sep 2023 08:04:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24155
IP address blocks: 203.207.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4810 (0x12ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2BA1C36EB26ACDCF964D3BE85564B7E3154148E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:b8:61:4d:e9:6c:40:97:b6:50:b0:11:b4:
43:47:ae:e1:6e:aa:13:92:5e:2a:48:2e:e4:8c:b3:
d6:fc:09:4a:93:bd:2c:c3:23:1b:d0:53:09:f0:eb:
9c:9e:a6:4d:74:5a:ff:9e:39:67:78:ed:3f:bd:62:
b8:ac:df:70:f5:40:de:43:2c:b1:e7:2f:75:e0:79:
f6:6d:ad:28:64:61:78:7a:8d:bd:a1:4b:ae:8f:7c:
83:17:b9:62:d3:af:2d:1f:12:f7:04:52:0b:f9:01:
2f:65:ac:f6:f2:d7:11:04:d0:13:2e:3c:b9:b0:49:
01:f9:87:80:f8:7d:42:e3:20:61:b5:43:4d:4e:bc:
32:71:41:fb:c4:24:95:be:44:93:10:0b:9a:64:fd:
ff:35:c7:7a:7e:d4:7f:e7:c1:74:28:10:64:bd:b2:
a3:59:e9:b7:c5:21:b7:98:b2:5a:b7:36:24:f4:da:
bf:d8:dc:20:e5:e7:a3:f7:04:79:c0:bf:2d:8e:20:
9c:d1:4a:a0:80:11:b8:b2:0c:5b:66:f9:98:c9:e0:
a1:ca:bc:8d:fe:6e:b9:e0:e5:41:69:c4:ca:59:6d:
d9:77:cf:1b:d3:84:d8:87:5a:40:a1:76:b9:48:a0:
42:c2:e6:50:53:47:ac:1b:e5:c3:64:56:cc:b5:cf:
e6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A1:C3:6E:B2:6A:CD:CF:96:4D:3B:E8:55:64:B7:E3:15:41:48:E6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/K6HDbrJqzc-WTTvoVWS34xVBSOY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.32.0/20
Signature Algorithm: sha256WithRSAEncryption
16:c1:88:ec:46:e1:b9:57:1e:c2:35:7c:99:23:51:4f:0f:73:
34:1d:fc:66:88:80:f6:2f:f8:66:0d:79:4e:c8:cc:5f:79:f5:
12:3b:6b:de:1d:6d:af:aa:93:2b:37:ac:57:9d:be:29:f1:49:
29:1c:41:64:76:5d:be:a9:8d:03:7a:b2:0b:50:49:32:37:ee:
e3:fc:a3:52:08:46:d3:6c:43:70:e1:fb:37:cd:e4:95:e6:8e:
b2:aa:5f:ff:71:69:ea:f6:0e:a5:0c:30:f9:7b:a1:0e:c3:b1:
9d:34:6f:70:83:a4:27:d3:b7:74:10:88:f0:89:99:db:f8:11:
2b:09:72:88:ae:f8:07:aa:df:bb:e8:3c:a0:5b:62:93:05:6b:
dd:89:fd:04:d2:6e:0b:05:e2:f4:d5:5e:6b:20:4e:b1:d9:b5:
21:85:8b:5d:19:bf:9e:94:99:53:df:e1:96:ba:59:45:c5:c1:
7f:5d:bb:60:3b:2c:22:50:08:53:66:ae:df:1d:76:b8:66:c3:
25:a0:d7:6d:03:f6:27:30:77:a5:b8:2a:d0:7b:ed:58:19:52:
3a:4d:61:5e:57:a4:5e:65:2f:cb:d2:92:58:da:71:ed:a8:1e:
b2:11:10:03:b3:b1:ca:3d:37:a7:e1:2e:87:73:bc:7a:13:fc:
fa:d5:59:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org