Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/O4UmXd5R6WsiRKd-5w0QgdewmDk.roa
File: O4UmXd5R6WsiRKd-5w0QgdewmDk.roa (raw, json)
Hash identifier: kIu4yblaCEzY83slbrnOxhh3uQeNrUcyCtXdMJfoLaU=
Subject key identifier: 3B:85:26:5D:DE:51:E9:6B:22:44:A7:7E:E7:0D:10:81:D7:B0:98:39
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12E6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/O4UmXd5R6WsiRKd-5w0QgdewmDk.roa
Signing time: Fri 01 Sep 2023 08:05:08 +0000
ROA not before: Fri 01 Sep 2023 08:05:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.200.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4838 (0x12e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3B85265DDE51E96B2244A77EE70D1081D7B09839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9a:b2:25:65:f6:72:90:b5:2e:62:13:7b:1c:
28:cf:42:0b:b1:a7:2a:f5:2c:a4:8f:1a:59:7f:b3:
9f:96:b2:2f:81:65:6a:90:75:d5:d1:14:55:65:09:
d8:f0:b2:89:c2:2f:7d:6a:be:c1:d6:d0:ed:74:3b:
a5:58:ef:e7:64:87:27:46:aa:16:aa:b6:b2:be:bb:
97:c7:89:e6:6d:a0:73:dc:fe:66:f5:b4:c1:87:7f:
39:5f:9e:7f:2f:2b:53:54:07:4c:c2:1f:92:9c:fa:
5b:43:33:46:e8:26:ef:16:0e:9e:53:40:a4:ee:76:
50:3a:76:e1:98:18:6f:a6:63:12:19:a9:7b:69:9c:
85:ea:e5:c0:61:21:e1:d7:d8:3c:5b:8e:b2:bf:1a:
ab:ff:b8:a7:c1:41:f2:31:eb:03:b2:dc:dc:16:60:
fd:11:ce:3d:87:03:08:3b:6d:ca:d5:22:f2:e7:c9:
38:ab:d9:35:e3:ec:1a:d3:79:23:4f:aa:82:a9:c2:
8a:35:de:b2:45:9c:fb:57:89:bd:a6:fe:4f:09:0a:
7f:12:4d:a0:1f:c6:0c:bf:b1:9d:f3:1a:55:d6:13:
8d:a0:ff:0f:72:c8:26:0d:fc:32:5a:10:0e:d0:11:
5b:6f:56:e0:14:98:93:72:a2:f6:2a:d1:e8:b9:e6:
03:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:85:26:5D:DE:51:E9:6B:22:44:A7:7E:E7:0D:10:81:D7:B0:98:39
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/O4UmXd5R6WsiRKd-5w0QgdewmDk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/18
Signature Algorithm: sha256WithRSAEncryption
b2:c2:80:53:a6:ea:f4:5a:6f:c9:bd:ad:33:3c:12:26:63:07:
8d:77:f6:f8:e2:ea:d8:c6:41:62:d6:41:0b:49:70:af:69:ff:
00:c6:7c:25:16:64:91:f9:e3:bb:b5:ae:68:5b:7c:d9:e9:28:
eb:b5:87:fb:5d:44:d9:9c:f0:c5:a2:0d:26:7f:31:ee:71:37:
a5:53:97:79:18:09:60:5a:9d:2c:bf:90:0f:f7:fd:7f:4c:c9:
c4:e9:fe:63:f3:4e:5d:ab:20:cd:12:00:56:88:66:da:2b:77:
dc:3d:7e:62:35:e1:e1:96:37:54:97:4e:62:4e:8c:14:9c:67:
b8:d5:42:5e:d6:f8:1b:63:3a:7f:cf:ee:0a:31:d7:dd:a0:b0:
12:33:c2:32:4c:f7:fd:07:cf:4f:2f:b4:7c:6a:b3:a6:a8:57:
b8:9a:6f:b4:6b:cb:6d:b4:34:e3:23:49:47:1c:86:63:86:76:
b8:c5:61:1f:fa:bb:f0:4d:f8:06:b7:18:88:6d:a9:d6:03:6d:
71:d6:77:61:27:b6:41:ca:b2:c3:90:c4:db:a5:24:b7:21:1f:
4c:ed:bc:35:36:bd:97:ef:e2:79:28:11:a6:b3:13:2a:84:9f:
01:58:58:ed:23:95:19:9c:ba:ac:6e:e4:03:80:89:d4:d7:4f:
67:3a:87:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org