Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Ket2RQCvGQHlRraU4VtXavatFqM.roa
File: Ket2RQCvGQHlRraU4VtXavatFqM.roa (raw, json)
Hash identifier: bEBGxRzRdaddL1Q8xhy3Q8qC4GAR92/LxuIiez3PnJI=
Subject key identifier: 29:EB:76:45:00:AF:19:01:E5:46:B6:94:E1:5B:57:6A:F6:AD:16:A3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0974
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Ket2RQCvGQHlRraU4VtXavatFqM.roa
Signing time: Tue 29 Sep 2020 10:01:51 +0000
ROA not before: Tue 29 Sep 2020 10:01:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24155
IP address blocks: 203.207.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2420 (0x974)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=29EB764500AF1901E546B694E15B576AF6AD16A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c0:95:45:37:44:ce:1d:a5:f9:69:5c:b0:f5:
e8:58:6e:6d:c9:a6:81:2b:e0:d4:be:0a:7e:a6:a4:
9f:06:52:8a:36:b8:90:53:25:75:70:79:d5:89:d9:
30:2b:dc:f2:cd:2a:c4:a0:f2:bf:e3:c3:0f:d9:10:
6b:57:d0:fa:bd:dd:12:46:6b:5a:6c:12:69:69:d6:
de:bc:86:f9:95:95:44:38:b4:70:c3:71:5f:1f:17:
4d:55:6a:dd:7d:e3:80:04:c3:89:fa:02:7e:51:2a:
e3:ec:14:f7:8d:e4:01:92:8f:74:7e:56:a0:d6:37:
12:13:12:6c:eb:85:46:a5:25:1d:6b:62:11:40:ad:
8c:d3:1e:ee:d0:9d:6e:81:27:20:b0:24:ec:3c:47:
a7:e8:59:ca:f3:27:0d:41:eb:db:3c:b1:d2:7a:1c:
ba:50:56:1f:c3:8f:6d:5f:3d:74:14:86:e3:59:75:
43:53:da:6b:f5:04:8a:bb:56:10:f1:ba:eb:e3:8c:
6f:00:48:e7:1b:09:aa:64:c9:06:da:d8:08:b8:7b:
fd:17:35:8b:c3:9c:09:c5:5b:fc:12:6d:f5:21:b8:
24:86:07:f5:a7:a7:b3:25:cc:cc:f4:98:ec:a5:3c:
fa:83:b5:be:02:4f:b9:f6:59:9a:d1:d8:52:c3:a1:
d5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EB:76:45:00:AF:19:01:E5:46:B6:94:E1:5B:57:6A:F6:AD:16:A3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Ket2RQCvGQHlRraU4VtXavatFqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.32.0/20
Signature Algorithm: sha256WithRSAEncryption
8f:39:d0:d5:e2:36:b1:c8:81:f7:ae:bc:f1:20:86:66:80:15:
38:a3:97:51:6c:e1:43:5b:18:7d:b9:d3:cf:2c:5e:0a:1f:95:
ca:2c:66:2e:72:53:f0:98:fb:ad:46:ed:a6:79:ef:28:5d:62:
79:b6:6b:e3:75:d3:45:54:28:3f:5c:72:ed:8e:25:53:24:0c:
41:6a:b0:24:88:aa:f0:ff:33:a9:a6:18:3a:00:6c:2b:70:94:
ea:0f:3f:85:82:22:0b:41:17:a3:e1:55:38:b2:be:ce:61:35:
be:46:5a:7e:26:8b:9e:2c:59:da:8d:f2:97:bb:21:b1:4d:94:
a7:16:8d:87:c8:26:db:48:df:38:2e:70:4b:63:73:c3:4c:7b:
8c:dc:c2:34:bb:1a:eb:41:20:35:60:20:db:a7:dd:86:06:1f:
ea:c5:57:60:6b:f4:27:9f:6c:5e:12:b9:ec:e9:8e:e6:28:40:
14:a9:cf:fe:d3:44:a4:52:da:46:8b:55:c3:34:ae:39:d7:0b:
20:72:71:51:2a:42:82:56:16:49:2f:1e:99:7b:88:d6:6e:43:
04:f1:c9:60:f8:4f:5b:a1:cd:43:59:45:15:bc:3a:dc:64:3e:
7a:43:cd:25:17:df:a4:61:04:11:43:44:fa:f6:2e:89:53:3b:
76:c9:8d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org