Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Kz670Rp7844VOV-qu3NjbMMIWfI.roa
File: Kz670Rp7844VOV-qu3NjbMMIWfI.roa (raw, json)
Hash identifier: FFZdko+qq1i2mJuIGm3TYkcaY4DRYqVRWPFXbYjyGzc=
Subject key identifier: 2B:3E:BB:D1:1A:7B:F3:8E:15:39:5F:AA:BB:73:63:6C:C3:08:59:F2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10D7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Kz670Rp7844VOV-qu3NjbMMIWfI.roa
Signing time: Tue 16 May 2023 08:36:43 +0000
ROA not before: Tue 16 May 2023 08:36:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 210.203.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4311 (0x10d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2B3EBBD11A7BF38E15395FAABB73636CC30859F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3e:74:6a:8b:54:ec:02:c5:ac:a1:c2:88:02:
55:ab:7f:20:68:e9:fa:af:86:20:f7:64:d3:64:7d:
f4:d7:d0:48:9f:2c:10:44:f2:4f:5c:8a:bc:07:26:
88:d4:06:94:55:05:f9:72:12:6e:4a:0e:3a:ad:e6:
3d:c7:c3:8f:7d:06:a1:89:81:c7:ee:f1:64:d2:22:
3a:e6:1d:f5:d6:6c:61:0b:f7:a9:15:92:de:81:46:
20:a5:15:8c:9e:06:5d:18:c9:10:4a:9b:c4:93:ee:
8c:e8:87:bb:c7:a5:e0:e9:2a:2a:73:b5:64:8a:b7:
2a:d2:0c:73:46:c2:2d:2f:59:0d:96:d4:09:44:6e:
9c:81:cd:e9:57:fc:55:ef:1e:84:69:37:e0:ef:46:
a8:b6:1f:ed:16:51:df:1f:ba:e0:ff:92:9f:23:da:
d1:79:7f:7c:fa:80:2d:9f:96:20:bd:10:bb:e2:5d:
56:3f:a4:8f:32:d2:01:11:df:13:40:4c:11:37:54:
6c:de:c8:fb:06:ff:23:08:0e:e5:04:93:04:b9:bf:
ae:b0:f6:b8:22:ee:13:60:a8:48:3d:28:b3:1b:1c:
69:cb:06:2a:5b:12:e5:ee:e5:d9:6e:67:0d:e8:ca:
b3:5c:3b:6f:90:a9:4d:76:b4:39:f7:74:42:e7:cf:
37:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3E:BB:D1:1A:7B:F3:8E:15:39:5F:AA:BB:73:63:6C:C3:08:59:F2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Kz670Rp7844VOV-qu3NjbMMIWfI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.48.0/20
Signature Algorithm: sha256WithRSAEncryption
64:c2:e3:69:f9:27:fe:71:07:a8:a6:e0:7a:3d:f5:81:dd:2a:
30:b7:97:e7:c9:47:d9:38:76:cf:ed:ae:cd:ca:1a:fb:96:f0:
9f:03:3e:2d:4a:6b:bd:16:ef:1d:8c:9d:1e:d9:a7:71:7f:c9:
e2:74:11:d0:e5:3b:56:f0:b6:ea:e4:aa:80:07:bb:96:72:12:
22:eb:c6:72:80:00:be:46:0d:ee:5c:e7:4c:4d:45:81:7f:3a:
f4:cf:3d:a3:80:15:68:f2:f9:04:68:0b:b9:76:ad:02:eb:99:
61:13:1c:d5:c4:0b:06:24:77:bd:b3:88:2e:2c:9b:ea:93:0b:
c0:73:c1:5a:d4:5d:0d:d0:54:90:ab:30:57:6b:b3:b7:7c:e9:
ca:fe:6c:39:7f:b4:0d:c8:ef:d7:9d:fe:25:c8:19:d0:22:9e:
d5:a7:89:dd:78:29:d3:94:0d:2c:2b:24:5f:fb:1b:ad:99:91:
3a:ca:94:81:b7:de:bb:91:22:78:5b:4b:5d:7f:ac:1c:73:51:
bc:45:ce:ae:9f:86:64:90:eb:f0:04:e3:99:53:80:f7:5b:55:
21:ce:a1:94:4b:5a:15:90:65:2f:84:37:19:57:a0:29:e4:33:
04:86:54:13:22:a3:e5:50:1b:d8:53:dc:e0:19:9d:16:60:e1:
49:f3:71:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org