Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NchHgIX6lxuUzfOlMk8wjiODfW8.roa
File: NchHgIX6lxuUzfOlMk8wjiODfW8.roa (raw, json)
Hash identifier: 9j+XvXYDgiSopjVHfu+doPf6HCHrfOutvI2U+fB1yn0=
Subject key identifier: 35:C8:47:80:85:FA:97:1B:94:CD:F3:A5:32:4F:30:8E:23:83:7D:6F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1054
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NchHgIX6lxuUzfOlMk8wjiODfW8.roa
Signing time: Tue 16 May 2023 08:36:03 +0000
ROA not before: Tue 16 May 2023 08:36:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4180 (0x1054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:03 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=35C8478085FA971B94CDF3A5324F308E23837D6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:eb:32:d8:66:a7:b0:6d:a1:66:86:60:64:c3:
63:ff:de:58:97:9d:d3:25:77:41:51:8b:6d:1a:09:
69:d4:f6:82:c2:a9:ff:ba:62:d5:43:dc:4f:8a:af:
9c:7c:cd:12:e6:b6:4e:98:73:fa:53:2e:5d:a4:e3:
71:78:07:de:df:e1:9c:f9:d4:b4:6e:19:5c:e4:25:
d5:84:7f:56:c6:35:fe:9f:fb:5b:b3:8f:17:fd:22:
6f:96:58:c3:cd:0c:23:f6:c2:8e:7c:8a:0b:32:ac:
36:d4:d1:7d:cd:3b:5a:86:5c:b3:d3:24:84:bd:6e:
82:6d:95:7b:f2:31:18:c8:3c:1b:e6:dd:37:00:a6:
ee:94:a8:97:39:e4:6b:45:4a:e5:e9:8e:45:29:7a:
96:b6:81:ca:4d:85:21:c0:d1:aa:8e:88:93:01:98:
87:ea:84:a5:bc:ce:21:19:4c:20:65:eb:0d:f0:7a:
d5:c0:03:15:54:44:7b:82:dc:69:da:01:70:de:07:
4c:50:76:f2:25:16:97:44:ee:1d:a8:e9:f0:26:fc:
81:62:ab:e8:2b:2d:c2:b8:1b:13:83:9e:a3:81:7b:
44:84:09:8c:3e:7f:89:9b:e3:a6:92:3e:60:71:48:
6b:dc:d1:d0:b6:63:47:32:d7:bd:65:0e:00:5b:ee:
49:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C8:47:80:85:FA:97:1B:94:CD:F3:A5:32:4F:30:8E:23:83:7D:6F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NchHgIX6lxuUzfOlMk8wjiODfW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
7d:3a:30:62:fe:62:a5:e7:6f:4c:a1:20:3f:32:8f:27:2d:a9:
8f:29:0d:00:c6:9e:cb:de:f1:07:5f:fe:fe:8f:11:d2:c4:08:
ba:33:f4:52:47:b0:80:66:71:07:a0:c6:86:35:e9:3f:78:1a:
2c:8c:0e:ad:b2:9c:d7:c3:9e:b2:41:fb:5c:cb:71:01:2f:18:
a4:11:71:70:be:8e:62:d9:e5:12:4a:66:91:6b:90:c7:9b:ba:
08:c6:27:21:16:22:5a:f0:0a:8c:10:07:b5:e2:50:30:e3:ae:
d1:d3:57:1f:0e:ad:3b:25:8a:b5:b5:c6:a2:9a:16:67:28:50:
92:98:6d:48:64:ad:40:cc:3e:a9:fd:37:a4:f9:92:d0:3f:da:
4c:5b:e9:38:4e:c3:21:9f:de:c2:8b:71:0e:4d:e8:a5:a6:5e:
32:a8:4e:70:76:8a:93:b1:4d:43:49:fb:f0:ad:07:0b:da:3f:
f9:90:98:2e:61:95:1b:6b:e9:fa:cb:10:d8:b6:21:28:81:f6:
82:65:58:d1:64:d1:80:7e:03:78:f6:8b:ef:37:0c:21:62:f7:
7d:a8:c3:b6:dc:b2:0d:41:f9:25:a5:b2:32:61:db:07:4f:ba:
45:0c:78:86:87:74:0c:dc:24:55:05:b3:b0:cb:ba:c8:1f:22:
4c:6b:14:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org