Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NQbxO9Os9xu--7oAjWKk-_Ck5Eg.roa
File: NQbxO9Os9xu--7oAjWKk-_Ck5Eg.roa (raw, json)
Hash identifier: 8mUrananJX26nSiKWusBw44o5RHBG33e9GypZ8OECQg=
Subject key identifier: 35:06:F1:3B:D3:AC:F7:1B:BE:FB:BA:00:8D:62:A4:FB:F0:A4:E4:48
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DCE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NQbxO9Os9xu--7oAjWKk-_Ck5Eg.roa
Signing time: Wed 29 Sep 2021 02:39:34 +0000
ROA not before: Wed 29 Sep 2021 02:39:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131142
IP address blocks: 210.200.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3534 (0xdce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3506F13BD3ACF71BBEFBBA008D62A4FBF0A4E448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:55:10:e4:4b:20:c5:00:98:28:fb:24:36:97:
0a:64:cf:05:0f:cb:1e:17:32:d1:24:68:87:fc:cb:
9c:72:29:a9:ba:3e:13:9e:62:e2:dd:ae:fb:72:fa:
56:dd:47:ea:9a:4d:a9:b8:14:23:61:a1:10:6e:aa:
df:74:ca:e6:3f:30:5e:8f:86:aa:d3:a6:1f:18:27:
0c:99:3a:c8:10:92:29:d1:cc:b9:20:4d:8e:86:4c:
a6:89:14:20:7f:fc:d0:20:b4:d9:d0:6c:32:96:e9:
da:32:ca:2f:5e:55:5f:52:bf:1e:7f:16:7e:f8:1e:
ca:ed:88:a8:92:c1:57:f1:56:e7:da:28:dc:3d:0f:
83:e8:04:bb:f9:16:3f:6a:b3:ba:8c:4e:09:77:07:
f3:66:8f:75:03:08:72:c9:85:79:08:26:a0:a9:eb:
bf:63:b6:f7:3b:77:d2:60:cc:71:91:1e:d6:82:ce:
55:7c:6b:68:e4:5d:22:2c:7b:5f:9f:7e:6e:21:07:
85:63:52:35:e0:b4:39:f6:2b:70:93:e3:53:b4:8c:
75:9c:9f:f8:73:cf:95:b3:42:41:af:b3:9e:78:1b:
ff:39:d5:11:bd:a2:e0:8a:04:ee:f8:f3:4d:dc:d4:
8a:92:5f:f2:90:38:34:6d:48:1e:06:97:29:ed:56:
85:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:06:F1:3B:D3:AC:F7:1B:BE:FB:BA:00:8D:62:A4:FB:F0:A4:E4:48
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NQbxO9Os9xu--7oAjWKk-_Ck5Eg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/20
Signature Algorithm: sha256WithRSAEncryption
5d:1e:42:6c:10:e0:a3:c6:a1:eb:bf:0c:8b:d9:a0:ae:b8:13:
ac:f3:8a:56:da:28:31:0e:c4:7e:bd:8c:57:1c:d4:ca:9f:41:
3d:96:9c:5f:03:76:c8:44:18:0b:31:28:00:b7:0b:91:6e:fd:
59:97:23:9d:3e:36:28:6f:2d:fb:51:8a:cd:f2:ae:a4:3d:0b:
89:cf:e0:5f:52:db:39:61:7c:0f:a2:00:7c:b9:92:6a:c2:ac:
9f:40:be:93:16:bb:a9:39:25:b1:1c:3d:cc:43:ac:a1:0c:72:
f5:fd:ae:e6:03:2f:30:bf:2f:6d:80:9b:9e:ec:e6:76:06:15:
05:31:ff:47:fa:1a:d7:44:16:96:2d:09:62:47:c9:55:c1:57:
55:d5:bf:b5:03:8b:5c:44:0a:f2:e0:c8:56:7d:4b:20:c9:c4:
f9:7b:20:87:12:82:49:31:4c:ce:67:4a:7e:11:e8:19:f9:3a:
b3:6b:ce:41:d7:7a:a7:9e:cf:b6:89:5b:fa:07:39:92:4c:9e:
0b:e9:fc:af:62:9e:13:fb:c0:f9:32:c2:4e:1a:0c:52:60:7e:
9c:35:68:51:dc:ea:ad:f6:e5:85:28:b2:8c:75:a7:f6:09:4b:
f2:4f:05:10:15:05:1a:3e:74:44:31:fe:46:ab:02:ff:82:a9:
bc:ff:cb:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org