Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/KE8fkGzwYslxAcI1YvmRGLmhS6k.roa
File: KE8fkGzwYslxAcI1YvmRGLmhS6k.roa (raw, json)
Hash identifier: L9ESnxTIYQsOeZh2WMPWc1813KAqhICP9kcQzsD4kmg=
Subject key identifier: 28:4F:1F:90:6C:F0:62:C9:71:01:C2:35:62:F9:91:18:B9:A1:4B:A9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1092
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KE8fkGzwYslxAcI1YvmRGLmhS6k.roa
Signing time: Tue 16 May 2023 08:36:21 +0000
ROA not before: Tue 16 May 2023 08:36:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 210.58.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4242 (0x1092)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=284F1F906CF062C97101C23562F99118B9A14BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4e:d5:9b:9e:d1:9b:c9:ce:81:04:ec:37:0b:
e2:c1:fc:2c:db:8f:84:b8:e3:c7:56:e8:52:78:e8:
da:3e:ce:4a:b2:5b:4e:2c:0c:3c:0d:13:54:c2:dd:
08:7c:d5:bd:46:98:8b:9a:5a:f5:84:9b:3a:34:a6:
f0:e9:29:09:6d:6d:07:a4:5a:34:35:76:5f:b2:75:
72:9a:f5:9e:0c:6b:cc:fd:6f:51:ed:86:cd:28:73:
a4:f9:61:fb:ad:43:ee:05:8b:c7:61:d2:c9:d9:bf:
b2:8a:ce:5c:90:fd:02:9e:5e:78:9f:a2:09:f3:30:
1d:a6:7e:56:39:bc:b5:4d:20:8b:9a:68:ad:8a:01:
da:48:b4:44:6d:12:4d:be:42:9f:50:03:64:03:30:
94:01:5a:e0:ea:96:94:e5:65:84:96:41:9e:71:6f:
6a:81:a2:d8:92:54:76:4f:af:88:4e:f6:f3:e3:59:
b9:07:68:5f:21:e9:22:b2:84:d1:46:9f:6e:c0:e1:
71:67:c9:a6:65:a2:8c:68:eb:72:b0:b3:5f:e2:5c:
81:b3:e6:8c:4c:3d:7f:3a:a4:cc:8c:b3:13:14:45:
d4:2a:19:2f:2b:33:13:84:89:1a:4c:dd:11:74:0b:
45:7e:ab:a2:5c:3d:4b:c6:c8:52:e7:0b:bf:2c:01:
eb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4F:1F:90:6C:F0:62:C9:71:01:C2:35:62:F9:91:18:B9:A1:4B:A9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KE8fkGzwYslxAcI1YvmRGLmhS6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.92.0/24
Signature Algorithm: sha256WithRSAEncryption
39:3f:a5:8e:d5:14:7c:a7:69:f9:5a:27:3b:e1:ee:51:bd:c0:
8d:7c:9a:63:c7:b7:34:85:b6:24:d3:22:49:ab:bd:8e:9b:1e:
fe:61:4f:e3:20:ee:40:8a:3b:57:f4:b6:d0:6d:76:58:93:fe:
e1:2e:a6:cd:19:5b:06:98:d1:7b:01:27:aa:dd:05:dd:08:4c:
18:58:c2:8b:20:70:7c:bb:e3:62:86:3b:8f:8d:17:85:9c:65:
c9:b9:05:9f:4a:5e:6e:b8:95:fe:30:b1:55:e2:70:a4:d0:a0:
9d:b2:38:d7:c6:04:1f:1c:76:38:e1:87:0a:ab:c2:b7:00:2a:
44:1e:5d:86:6d:7a:86:84:4a:3e:7d:23:f2:1c:88:3b:68:76:
1f:1f:9a:15:60:7f:4f:76:fd:d6:50:69:f9:03:7e:9a:ef:19:
81:35:e5:c2:11:20:25:2a:3c:8f:0d:42:57:46:3e:66:f8:fb:
15:ae:f4:15:4e:6e:f4:46:4a:b4:cf:e4:67:db:40:86:0a:15:
7a:64:dc:f9:b8:20:91:64:a3:e2:cb:e6:c1:34:85:cd:17:fd:
3f:86:38:e9:8d:46:d7:8a:d4:ce:47:f1:ea:c1:7f:15:8c:f7:
bf:0a:a6:8b:69:85:3e:0a:38:0f:1b:98:72:fb:6f:04:1a:f1:
68:21:75:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org