Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OFWXD-JD1y5I2p3-VFQVfDxMxtk.roa
File: OFWXD-JD1y5I2p3-VFQVfDxMxtk.roa (raw, json)
Hash identifier: fFpwh0ltEItUUJZ+YzYtxm+tzuW3OrlxcAxa6gOJPOU=
Subject key identifier: 38:55:97:0F:E2:43:D7:2E:48:DA:9D:FE:54:54:15:7C:3C:4C:C6:D9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OFWXD-JD1y5I2p3-VFQVfDxMxtk.roa
Signing time: Thu 15 Sep 2022 02:39:56 +0000
ROA not before: Thu 15 Sep 2022 02:39:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 22787
IP address blocks: 210.58.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3855970FE243D72E48DA9DFE5454157C3C4CC6D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:42:cc:58:8d:6c:32:13:a7:05:82:34:d3:d3:
a0:5a:c6:0c:f4:a3:78:b1:6b:be:e7:f5:fa:e0:5d:
03:6e:a0:81:b1:db:a0:fb:8d:aa:be:83:75:16:3e:
55:0f:85:4a:d2:65:f5:b4:d1:24:97:72:d5:7c:1f:
b3:57:f7:44:1c:81:24:da:58:eb:7d:9d:05:d2:0d:
9d:76:6a:69:24:8b:41:5e:a0:8e:bf:53:2d:46:16:
45:03:bc:0d:41:57:dc:27:ee:8e:e5:62:9b:c3:31:
0e:f0:43:fa:02:ee:2b:7c:e7:b7:2e:15:60:c5:f7:
b9:ea:db:51:80:58:fa:e6:82:36:35:7e:17:77:68:
12:0d:41:fa:12:89:84:e8:8e:41:68:f2:ba:ed:d1:
ad:4d:35:96:42:19:d3:9c:39:cb:2f:a7:b8:7a:bf:
37:fd:ce:64:91:53:70:b8:22:f6:27:97:8e:8f:14:
d9:51:91:ab:d0:2f:ba:bc:22:a1:78:5b:c7:4b:5c:
ae:a7:97:db:b4:3d:32:22:df:60:a5:41:7c:06:81:
3d:5a:0f:dc:1a:1a:4d:e3:ae:94:53:7d:6c:1e:f1:
25:f6:53:2e:b5:31:7f:b7:c2:37:98:36:46:1f:ba:
0e:52:1f:4a:3b:fc:c1:e2:38:7e:3a:1e:fd:74:36:
fe:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:55:97:0F:E2:43:D7:2E:48:DA:9D:FE:54:54:15:7C:3C:4C:C6:D9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OFWXD-JD1y5I2p3-VFQVfDxMxtk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.91.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:18:9b:2b:f7:2f:04:61:54:d3:e6:17:28:27:12:26:ec:e6:
55:e1:a2:0f:8c:c1:b5:41:4f:c1:26:72:8a:8f:cf:a1:48:ec:
b3:05:fc:43:b7:87:57:b6:bc:32:0a:1f:c9:08:5a:92:ca:15:
63:9c:00:4f:9a:f4:5f:3b:bb:ae:6f:8f:e0:5c:ae:84:33:25:
18:13:5a:5d:2f:ed:92:c8:ea:ea:f0:3f:7f:f2:74:89:f9:d1:
fa:26:8a:7d:2b:02:f6:d1:4b:8a:73:27:8c:3e:c8:8c:ac:1d:
e4:2d:45:8b:f7:42:48:25:12:3c:91:61:58:bb:63:c6:97:cd:
a3:c9:8a:f1:d3:da:02:52:37:f2:ea:dc:f5:3e:b1:dd:dc:50:
70:73:fb:b7:e4:38:17:5a:5d:f1:e3:e5:ff:70:42:8c:f4:64:
f0:95:83:2c:b9:51:59:00:81:aa:b2:04:2f:e5:ec:66:65:82:
1a:1b:bf:35:2a:c8:e2:cc:81:93:36:91:84:8c:2b:d6:6e:af:
ed:ee:1c:5d:47:c4:a9:1d:12:ec:0a:b6:c0:77:e8:8c:d0:45:
9c:cd:8b:e3:87:94:d1:60:e5:05:a2:d5:da:9a:8e:cc:b6:a1:
7c:d2:c0:cf:35:dc:36:64:ce:7b:7b:43:a3:69:ec:57:a8:6b:
21:14:36:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org