Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NZb_tLDHV9loG2j6lXZBCjEh4fY.roa
File: NZb_tLDHV9loG2j6lXZBCjEh4fY.roa (raw, json)
Hash identifier: VIUe9W3LI5+wHp8eXZMOl8+FWuQPiHV3O/F7p94AErM=
Subject key identifier: 35:96:FF:B4:B0:C7:57:D9:68:1B:68:FA:95:76:41:0A:31:21:E1:F6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BF3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NZb_tLDHV9loG2j6lXZBCjEh4fY.roa
Signing time: Sun 07 Feb 2021 11:34:23 +0000
ROA not before: Sun 07 Feb 2021 11:34:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.201.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3059 (0xbf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3596FFB4B0C757D9681B68FA9576410A3121E1F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b9:62:48:73:15:9c:f5:4e:95:09:1a:17:e4:
de:d2:0f:1b:66:ef:6b:09:cf:c1:40:45:0d:5b:6d:
ab:7a:75:b4:f9:d6:6d:cd:6d:74:10:22:3a:6e:ff:
7a:ff:d1:e6:8c:7d:66:01:a1:3f:8f:e9:ba:2d:da:
be:f4:9f:0c:c9:ce:89:1d:97:27:8c:d3:a6:dc:a3:
de:78:02:7c:ff:a7:5a:c3:c1:53:b6:48:b6:a7:5e:
8f:5a:7e:36:2a:f6:4b:94:2f:d7:42:61:f7:77:f1:
e4:2f:65:20:ea:31:f3:c1:14:68:75:51:e7:fa:d7:
8e:0f:e1:f7:98:42:c9:fd:f1:09:af:83:21:72:6f:
8d:8d:7f:ca:13:32:4b:4f:55:0e:be:83:7e:a6:95:
aa:88:74:7e:78:60:d7:7b:f7:94:03:99:b7:b1:46:
6e:8f:30:df:1a:b1:60:b1:2e:41:cf:bf:39:38:6b:
3b:b2:0d:9d:eb:58:9e:70:01:a1:8e:cb:93:ea:ea:
18:6b:57:8a:a4:63:72:4a:ff:eb:8c:ec:8e:a7:be:
78:c8:28:f7:dd:e3:af:50:eb:81:d4:96:0a:c8:bc:
ec:38:a4:d8:b5:87:16:50:b5:5c:60:17:e9:8f:62:
27:86:35:d0:72:d8:7c:2c:3d:3d:fd:b3:54:98:38:
a1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:96:FF:B4:B0:C7:57:D9:68:1B:68:FA:95:76:41:0A:31:21:E1:F6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NZb_tLDHV9loG2j6lXZBCjEh4fY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.52.0/22
Signature Algorithm: sha256WithRSAEncryption
15:b1:90:3a:1d:49:40:24:eb:80:82:cf:7e:82:71:67:22:ad:
6b:87:a6:bc:69:66:a9:02:94:26:32:59:4d:63:b9:33:0f:95:
a8:2d:21:c6:3c:03:8a:c6:c7:e4:fe:f4:66:57:11:dc:98:63:
83:4f:75:25:e7:51:a2:11:26:3f:90:bd:94:03:19:45:eb:c0:
b5:ec:f0:83:9b:d4:29:8b:c4:0f:54:8e:e6:e9:f7:58:df:f9:
be:fe:ef:52:f4:ad:fd:bf:f3:95:34:fb:29:c6:d9:30:aa:fc:
b7:56:e4:69:60:31:9f:1f:90:be:a7:0a:2a:fa:bc:62:b3:72:
3f:b8:f9:ec:5d:bc:ee:7f:97:a9:d2:4a:d7:23:5d:a2:53:fd:
b7:c2:cc:9c:8e:e2:38:9f:38:5f:4e:7b:b3:77:af:97:c3:95:
86:f6:14:7f:eb:06:ae:9e:a0:6c:b9:68:51:d4:69:9f:72:95:
05:5c:5f:a6:66:52:d6:52:b9:ec:b2:b7:5f:f5:4f:f0:05:46:
37:d5:f4:f7:c2:e7:a6:42:8a:52:f8:76:ba:22:2d:de:51:b7:
f2:9d:ff:1a:da:cd:49:d0:06:9c:7c:ad:91:1c:14:db:c8:40:
7f:1e:46:46:ac:09:95:86:e2:0a:d3:42:7b:cd:b6:38:77:af:
32:f8:18:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org