Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NaNgxl3oSl7R1RjrPYihu52vtas.roa
File: NaNgxl3oSl7R1RjrPYihu52vtas.roa (raw, json)
Hash identifier: XIodYNpDB2mbf1gBuD8GvcUYWRTCLozDdKVKfgezgpM=
Subject key identifier: 35:A3:60:C6:5D:E8:4A:5E:D1:D5:18:EB:3D:88:A1:BB:9D:AF:B5:AB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10B0
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NaNgxl3oSl7R1RjrPYihu52vtas.roa
Signing time: Tue 16 May 2023 08:36:30 +0000
ROA not before: Tue 16 May 2023 08:36:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 203.79.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4272 (0x10b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:30 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=35A360C65DE84A5ED1D518EB3D88A1BB9DAFB5AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f5:5d:7b:c3:dc:56:64:5b:6e:eb:ae:2c:34:
05:bb:0d:e1:7d:b7:4d:0a:8a:a3:30:52:8d:2e:9c:
e5:29:a7:50:9b:25:da:c9:d1:61:26:8a:5b:e3:9a:
94:55:1e:25:44:ab:4e:f3:2f:9b:a9:8b:4a:fd:14:
6c:94:e2:fa:9f:a3:2b:44:55:c8:d1:cb:27:a4:02:
87:fd:77:f2:6a:21:c0:09:79:62:5e:e1:04:6e:3a:
ae:08:bf:c8:39:bb:9f:59:da:b8:a4:c0:49:e6:3a:
80:a5:6a:fe:35:fd:3a:c4:48:2d:34:b0:55:02:17:
95:03:21:94:59:4e:89:ca:c0:65:99:00:8d:13:a1:
4e:93:74:47:4b:90:95:44:66:a5:bb:b7:5c:14:2b:
ab:71:ed:6d:76:59:a6:c0:cb:39:8f:0d:ae:8b:b2:
4e:00:87:38:4b:6c:f1:5b:83:82:1d:a6:2e:fb:34:
43:2f:de:f6:26:b1:a5:60:19:a1:9e:4b:b9:9f:ed:
bb:05:76:33:43:71:e0:69:06:de:81:43:d1:a4:c5:
42:da:44:7e:55:76:e7:51:8f:5e:72:36:a9:eb:bd:
d5:34:01:3d:6c:b7:0a:77:f8:58:87:e6:ca:a9:9d:
9d:98:f7:90:96:51:06:f3:7f:35:b0:7c:ec:6c:e4:
1e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A3:60:C6:5D:E8:4A:5E:D1:D5:18:EB:3D:88:A1:BB:9D:AF:B5:AB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NaNgxl3oSl7R1RjrPYihu52vtas.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.235.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c9:d0:70:0e:ed:db:eb:ab:4c:3d:58:14:25:35:59:eb:3f:
92:33:44:5b:b3:8e:72:e3:eb:cb:5a:8e:12:bf:e1:59:74:60:
dc:34:b3:c9:ab:43:1d:51:39:3b:b5:44:36:31:d5:2f:53:32:
80:35:5b:4a:89:0b:7e:b2:51:40:a6:52:84:9a:cc:cc:26:2e:
28:a1:b2:bc:a1:19:2c:d0:2f:82:92:50:f3:23:a8:8a:eb:57:
e1:bf:45:5f:4f:5b:55:1a:c8:57:ce:bf:14:6e:32:e7:d1:71:
24:1c:eb:91:90:b1:d7:bc:00:3c:f3:51:b1:47:f8:56:32:de:
f3:38:33:f8:3f:c7:34:fe:7a:06:16:90:92:c5:eb:3a:36:b2:
29:d8:5c:92:04:35:4d:56:ff:41:f8:36:5b:6e:b2:4d:b8:01:
b3:e9:bb:00:f1:13:38:88:92:83:6a:55:7d:7b:91:99:e0:82:
5a:2f:3c:74:ba:ae:31:6e:b7:c2:2b:0d:81:00:4f:71:ba:bc:
94:95:34:32:9e:a8:dc:dc:5d:ff:c8:aa:37:7c:0f:cc:0f:92:
04:3e:6d:75:27:14:fd:fa:ab:dd:5f:57:20:f5:b3:b2:d0:73:
6c:df:8a:96:c8:b9:06:5a:d0:2f:c0:0e:58:f7:4f:dc:1c:03:
1f:7d:af:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org