Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/MSbomNoGK4IDq_hfsQGxAvvpeDg.roa
File: MSbomNoGK4IDq_hfsQGxAvvpeDg.roa (raw, json)
Hash identifier: ele+WueTcGYahazkSz4hPrCEOIxuD7oGXWkAv5TVZZ0=
Subject key identifier: 31:26:E8:98:DA:06:2B:82:03:AB:F8:5F:B1:01:B1:02:FB:E9:78:38
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DBA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MSbomNoGK4IDq_hfsQGxAvvpeDg.roa
Signing time: Wed 29 Sep 2021 02:39:29 +0000
ROA not before: Wed 29 Sep 2021 02:39:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 203.79.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3514 (0xdba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3126E898DA062B8203ABF85FB101B102FBE97838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6b:1e:d8:52:db:3d:a0:ed:af:75:2e:3b:fa:
c4:70:51:d5:ae:a8:6a:a9:90:bf:22:00:78:d1:19:
13:0c:25:db:09:92:f5:64:2a:a2:1b:59:3d:9d:01:
2c:31:2b:58:67:09:2b:00:08:ac:b3:d2:2b:10:a0:
68:f3:cf:7c:88:2b:b5:2d:15:e6:ab:93:79:dc:ef:
8d:2f:d9:31:c3:ff:30:2d:87:b9:b1:79:85:07:f8:
93:60:94:d9:2a:b3:d5:10:e0:9c:58:e3:90:23:a4:
08:c7:ce:0b:1c:ff:81:92:e7:34:01:cc:de:76:d2:
c6:9a:1a:bc:55:84:4a:aa:21:ef:48:5b:79:95:92:
d8:12:7e:13:46:38:91:75:5b:b0:a9:f8:8d:06:6e:
74:3f:90:fd:51:93:16:9c:de:e2:4b:0d:fc:0f:03:
9f:5c:c4:87:b3:6e:14:a2:db:69:d8:9f:2a:8b:df:
aa:33:6a:cb:69:21:ba:08:aa:03:d5:d2:0b:47:a6:
38:1f:fd:f5:f0:85:34:e7:b9:3b:ef:21:56:de:fa:
0a:44:a8:82:53:7f:e1:b4:44:6d:c7:fb:d4:40:a9:
21:8e:76:94:df:50:3c:ab:64:8e:19:7c:1b:78:be:
fa:fd:bf:ef:1b:88:d4:6c:e6:06:52:75:38:27:ee:
61:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:26:E8:98:DA:06:2B:82:03:AB:F8:5F:B1:01:B1:02:FB:E9:78:38
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MSbomNoGK4IDq_hfsQGxAvvpeDg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.196.0/22
Signature Algorithm: sha256WithRSAEncryption
83:13:39:56:15:c0:0c:e6:69:43:bf:ee:11:95:d9:12:14:a7:
ea:6b:f9:27:96:f7:88:9e:c4:4c:f5:f2:60:84:f2:e5:4e:4e:
a8:d0:82:75:4b:e4:e0:40:d2:ec:2a:28:d1:2c:b3:ec:9f:61:
4d:a0:01:88:81:88:88:a5:72:1d:fc:32:6d:a8:a2:5f:e7:62:
ac:6a:29:33:a0:53:1b:71:e2:66:e9:09:ca:88:42:d1:f9:52:
f4:56:5e:fa:4c:f8:93:e1:85:90:8e:3a:ec:9c:be:dc:97:e1:
5e:a7:d5:78:74:40:7c:c2:b7:b0:21:a3:3d:87:3c:b8:3f:77:
52:60:62:40:8d:2b:63:5b:b0:f2:4f:99:92:42:3e:1e:63:11:
e1:28:db:e5:21:02:a9:85:d2:ad:54:62:68:d3:fd:50:c1:71:
9c:6c:3b:85:5a:d5:63:a3:d2:e4:03:88:23:84:a4:c1:3d:2d:
86:03:9a:05:53:e3:48:84:c8:71:11:bd:e9:74:ce:13:03:6c:
b3:bb:f1:16:a6:4f:4e:6a:73:4f:eb:d8:b6:e7:54:40:f3:7c:
41:11:90:4a:2b:23:d1:de:4f:86:97:cb:08:ff:13:a1:77:84:
6f:ec:e5:23:e0:d0:ae:13:f4:67:f9:60:c0:49:c2:d1:7f:d0:
72:90:55:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org