Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/LOe84PI5s3RjGRkF2DlNmcUhWdk.roa
File: LOe84PI5s3RjGRkF2DlNmcUhWdk.roa (raw, json)
Hash identifier: raCdtKEdH6K2muiFE784BCXZrC53lw3EYNWlXVlIT4c=
Subject key identifier: 2C:E7:BC:E0:F2:39:B3:74:63:19:19:05:D8:39:4D:99:C5:21:59:D9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12AF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LOe84PI5s3RjGRkF2DlNmcUhWdk.roa
Signing time: Fri 01 Sep 2023 08:04:51 +0000
ROA not before: Fri 01 Sep 2023 08:04:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 203.79.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4783 (0x12af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2CE7BCE0F239B37463191905D8394D99C52159D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:eb:7e:2e:e2:3a:10:c7:b2:94:e0:68:82:42:
cf:f4:2a:58:70:09:4a:f4:a6:76:18:e6:a6:81:e4:
80:31:75:8d:3a:5b:10:29:98:ff:a2:a5:63:3a:f1:
11:67:0d:69:8d:80:e4:a2:7f:4d:66:4a:48:f9:32:
d8:bd:1d:75:ff:e9:7a:c5:6a:19:0a:af:68:bb:9f:
55:00:cf:20:cb:eb:53:5d:09:66:3c:07:9c:d4:9f:
22:1e:6f:a0:fe:81:e0:fd:94:7e:67:35:70:12:8f:
27:65:9d:51:d5:cd:3b:e3:41:10:59:82:08:b3:de:
c1:c5:9b:e1:46:60:41:1f:71:1b:77:35:b2:1e:4e:
23:ba:5f:54:17:5d:df:8c:c6:1b:ee:32:31:6e:f7:
12:0d:da:51:96:54:59:9a:95:9a:8a:8e:8d:3e:f5:
d2:10:c5:2a:0f:01:85:25:05:bd:66:b6:34:3b:4c:
1c:4e:a9:e0:c8:cf:86:f9:b4:2f:51:4a:88:3c:5f:
75:67:57:62:36:45:4e:46:64:9c:80:38:cf:74:c1:
70:96:97:b7:ef:cf:ca:7a:0b:50:8c:59:8c:83:ef:
79:66:70:7d:5b:4e:01:3b:b7:78:ef:d1:28:6e:10:
a5:f9:27:e5:fc:f0:a8:e6:32:85:7a:dd:6c:10:c9:
88:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E7:BC:E0:F2:39:B3:74:63:19:19:05:D8:39:4D:99:C5:21:59:D9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LOe84PI5s3RjGRkF2DlNmcUhWdk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.216.0/22
Signature Algorithm: sha256WithRSAEncryption
af:26:b4:39:b9:05:13:41:59:3f:d5:3d:89:46:85:28:60:50:
1f:70:1e:a8:d6:da:25:95:86:97:0b:48:94:1d:fd:5b:ce:4a:
d1:51:0d:1f:61:d0:5a:1c:56:a5:37:8a:fb:f0:d5:11:ef:25:
19:a3:b1:4a:5d:27:92:f1:3d:de:a1:9d:db:ec:0f:6b:e3:c2:
09:0e:e8:b7:33:06:a5:ee:08:79:08:c1:25:e9:d2:98:ef:bb:
ea:9c:f3:c7:f8:31:90:77:18:c0:62:51:63:36:47:d5:c7:d9:
ae:f7:e2:24:a2:53:45:12:db:d6:70:29:12:a0:5f:e5:dc:17:
ba:fc:b7:b1:a5:ec:d1:e8:28:bf:c1:c8:b1:13:1a:e3:51:b5:
13:bc:e3:85:9d:9e:d3:21:31:72:02:e0:c6:7b:09:3d:40:13:
a0:cb:59:90:eb:60:0d:ec:0b:20:ac:32:24:7d:37:3b:e8:67:
db:f4:8c:8e:fc:00:a9:cb:8d:b6:ca:78:29:6c:db:01:01:08:
0f:f3:ca:a7:78:34:fd:c2:41:3b:cb:ac:e5:6a:0a:e9:aa:db:
2c:8a:29:75:ba:84:16:17:c3:19:b5:56:04:2f:f3:b4:48:59:
67:42:bb:c4:20:17:39:17:81:6b:20:ff:83:60:5d:bb:3b:36:
16:fb:96:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org