Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/M5o5TgYWMFR7gIu6WTCh3iT_6Tk.roa
File: M5o5TgYWMFR7gIu6WTCh3iT_6Tk.roa (raw, json)
Hash identifier: 40DCUdarT8fkG/4f7etv7Ax5nb8r4AWvinJix5kFx68=
Subject key identifier: 33:9A:39:4E:06:16:30:54:7B:80:8B:BA:59:30:A1:DE:24:FF:E9:39
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12DF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/M5o5TgYWMFR7gIu6WTCh3iT_6Tk.roa
Signing time: Fri 01 Sep 2023 08:05:06 +0000
ROA not before: Fri 01 Sep 2023 08:05:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 203.79.224.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4831 (0x12df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=339A394E061630547B808BBA5930A1DE24FFE939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:32:ce:7e:a0:d0:0e:aa:3e:75:c1:44:eb:b4:
f7:f4:a4:4c:a8:aa:55:e4:6a:cd:af:1e:aa:92:fa:
a9:c8:cc:16:ab:e7:4c:13:37:5a:ad:b7:d2:62:2a:
16:6f:78:81:6c:45:af:38:67:c0:2c:aa:ad:de:cb:
b0:73:66:ed:e1:16:20:18:19:af:41:cb:15:87:8f:
e4:8c:cd:6f:08:00:33:cf:1a:41:32:b6:c6:c6:de:
b9:d1:6d:e5:f8:7e:d3:93:53:97:c0:56:54:b3:9d:
06:16:20:1d:e8:61:08:dd:bf:4c:77:54:02:bd:2d:
63:01:aa:af:e3:ed:e6:26:75:93:89:88:f0:22:8e:
af:53:b4:5b:8d:c9:e9:5d:66:f2:08:18:db:3f:e8:
fa:9d:2f:36:e4:f0:f8:05:17:f2:fc:59:dc:54:b7:
40:28:32:95:ad:c5:5a:34:35:4b:63:49:a2:73:a5:
70:84:3b:d0:78:61:f5:ec:7e:fc:85:1e:fc:5b:bf:
65:ba:41:e3:b3:67:bc:91:c1:d1:81:36:24:0c:db:
86:5c:e7:a1:72:fd:f3:6f:7a:31:3e:56:7f:45:83:
80:5f:35:42:93:ad:2c:86:cf:a1:7c:8e:e0:64:17:
e9:e6:18:d5:51:4a:34:cc:76:1b:5b:c4:86:47:e9:
5a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9A:39:4E:06:16:30:54:7B:80:8B:BA:59:30:A1:DE:24:FF:E9:39
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/M5o5TgYWMFR7gIu6WTCh3iT_6Tk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.224.0/22
Signature Algorithm: sha256WithRSAEncryption
94:11:88:fd:f9:f3:ce:14:08:a6:90:6f:17:b6:e8:f9:a5:56:
46:d6:39:2a:fa:6a:fb:c0:a2:89:be:98:d7:f4:09:38:a2:48:
20:0a:d3:de:46:51:3b:5f:e6:b7:ab:72:94:8a:30:66:67:c2:
28:6f:a5:55:37:b9:83:21:01:9a:97:ac:40:81:b2:a3:4c:42:
4c:9b:8f:83:8f:05:9a:98:75:e4:d5:56:61:c5:50:1a:21:70:
8f:67:95:2f:61:ef:e3:2a:c8:d7:84:b9:26:9a:49:9e:b7:fc:
1f:d8:1a:a8:47:be:d5:7b:41:38:11:e2:38:5d:59:3e:cf:85:
45:7e:df:11:ec:ac:74:9f:35:7e:1c:9c:12:6c:65:70:04:0a:
63:84:9c:3e:40:d7:7f:32:74:08:b4:63:e1:d1:6c:23:87:8a:
db:7c:49:b6:e6:7e:f8:a4:12:a1:53:71:08:a3:f1:4c:3a:12:
7c:6e:fd:05:b3:e8:84:a9:91:6f:ed:09:b9:8f:0e:aa:b3:ef:
c3:af:8e:9a:c7:33:ad:44:84:c7:93:34:51:dc:f5:b7:e4:bf:
d0:2b:56:d8:86:40:f4:c5:1e:38:ae:40:ab:c4:fb:26:e5:1c:
e0:60:45:63:af:13:8b:c3:a8:49:9a:d5:04:c2:c3:4f:bd:9b:
59:7a:c7:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org