Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/MpLm3q00xtQInhtkMJpZV1jcryU.roa
File: MpLm3q00xtQInhtkMJpZV1jcryU.roa (raw, json)
Hash identifier: QAYzPwMJc7fsy62cruY13tpdvynZjXk0RxgWCgSelrQ=
Subject key identifier: 32:92:E6:DE:AD:34:C6:D4:08:9E:1B:64:30:9A:59:57:58:DC:AF:25
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C81
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MpLm3q00xtQInhtkMJpZV1jcryU.roa
Signing time: Sun 07 Feb 2021 11:39:52 +0000
ROA not before: Sun 07 Feb 2021 11:39:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3201 (0xc81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:39:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3292E6DEAD34C6D4089E1B64309A595758DCAF25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9c:d2:1d:c8:e9:ae:c3:6c:06:39:6d:56:7e:
24:75:83:05:a3:92:0c:f2:bf:a0:55:b8:1b:86:47:
7c:fb:74:1f:8e:5a:48:44:62:da:e8:e3:5f:f7:0e:
66:8b:4f:b0:e2:1f:00:63:13:81:63:11:77:ee:88:
12:91:30:34:0a:2d:aa:88:c6:29:cf:70:25:18:b3:
61:67:0a:d0:d9:62:0f:c1:82:23:51:70:13:91:56:
5a:48:f2:fb:99:79:38:c7:4b:27:6c:5a:93:0a:a8:
a4:d7:97:a3:c2:42:4c:15:1a:b9:b4:b9:b4:f2:44:
6f:99:d7:3c:0c:35:fc:1e:d4:d0:50:f1:9f:f9:39:
f4:fc:01:ca:5b:1e:c1:90:e4:60:ec:6a:dd:01:91:
f7:69:01:12:39:4b:7e:d7:e3:c0:31:11:ea:84:91:
58:32:50:16:e9:64:d2:13:7e:d3:96:87:21:0b:7a:
a4:9f:76:47:9b:2f:a0:bc:ae:01:81:c7:fd:7c:b0:
0b:5b:e6:ba:7b:53:d8:74:45:ef:8b:e6:25:51:71:
2e:46:12:36:1a:dd:25:2b:fc:a2:6d:98:bf:1b:9f:
07:ea:af:67:d0:d7:8b:48:e7:90:6c:91:0c:bb:14:
d3:df:86:c7:b4:3e:cd:80:fd:89:cb:5f:a8:3e:a9:
0c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:92:E6:DE:AD:34:C6:D4:08:9E:1B:64:30:9A:59:57:58:DC:AF:25
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/MpLm3q00xtQInhtkMJpZV1jcryU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
21:87:9e:32:bc:3f:ab:1e:96:85:e0:93:8e:eb:df:74:cd:e0:
bf:73:e0:e4:d7:36:17:cc:d5:ff:cc:2a:45:77:f2:c1:41:f2:
1d:92:dc:c9:f8:83:bc:32:c8:e3:06:dc:bc:a2:95:e3:5d:d5:
c4:60:a5:1a:9c:06:dc:30:b8:84:8e:e7:c1:51:37:ef:82:ce:
ea:53:c7:05:0c:8b:5c:58:36:ac:c8:d3:e3:50:0e:d1:c5:51:
26:52:ba:34:63:a3:ee:ce:24:04:fa:87:3a:a6:50:bb:ae:7b:
5a:15:b2:bb:56:b4:ab:e9:24:2e:78:b9:69:8e:5b:8c:9f:ff:
c6:6b:8c:2a:6a:86:54:14:da:d4:20:98:fa:08:b5:b8:74:ca:
bb:fd:d1:1b:d3:c7:66:a5:2d:c7:01:cb:0e:4c:ba:00:b1:66:
da:18:b8:f5:36:1d:d2:ac:ab:84:ca:f9:7a:35:70:3c:9f:86:
8a:d5:69:00:11:ca:cd:0a:e8:a5:4d:db:a9:31:04:28:b1:a1:
d3:15:33:ae:b7:25:04:b7:e6:35:d8:74:8a:f8:84:bc:bc:1e:
d5:25:ae:a0:54:ba:36:2e:67:67:b6:d9:ca:d4:45:6f:2d:18:
cc:a7:31:69:72:03:a3:29:f4:6b:10:ad:51:5e:ce:17:1c:4b:
e4:79:a9:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org