Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OS5DZM7nJ6VlXzjceBEvyWiieVc.roa
File: OS5DZM7nJ6VlXzjceBEvyWiieVc.roa (raw, json)
Hash identifier: NgQLb2cYKA0nJ/Vdj2TIXpJaLtFiyZYAyzZ7oQMZPqY=
Subject key identifier: 39:2E:43:64:CE:E7:27:A5:65:5F:38:DC:78:11:2F:C9:68:A2:79:57
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1046
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OS5DZM7nJ6VlXzjceBEvyWiieVc.roa
Signing time: Tue 16 May 2023 08:35:59 +0000
ROA not before: Tue 16 May 2023 08:35:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.58.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4166 (0x1046)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:59 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=392E4364CEE727A5655F38DC78112FC968A27957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ac:9f:ca:9e:ae:93:50:aa:a5:58:02:8d:12:
61:c1:b2:9a:1b:5f:d8:f6:ff:b2:be:5e:ab:54:c5:
8f:96:55:ca:47:79:73:2c:6a:df:c3:db:d1:af:97:
43:44:cb:02:bc:25:07:28:0f:cf:96:49:60:66:de:
6a:12:18:03:28:41:03:b0:44:4f:21:38:86:a8:7a:
2e:f2:a0:83:74:c7:e0:c4:ec:b6:60:d3:47:63:a6:
48:5b:ce:6a:db:35:59:a7:79:df:7e:32:af:11:38:
fe:69:78:03:50:fd:c6:8b:a1:fb:d6:8b:b2:d2:77:
a4:e0:04:bb:02:95:1e:98:c7:31:46:07:8c:33:78:
61:b6:02:c8:4c:2d:14:96:9a:62:6a:9d:77:2e:20:
64:79:94:6d:83:d7:0f:a5:54:93:20:fd:7e:cd:6d:
be:5e:79:dd:3e:90:59:e3:3f:4c:7e:57:a0:f0:da:
96:a1:f9:e2:20:a1:1d:6a:b9:82:41:80:b0:28:50:
ce:40:df:28:41:74:e3:c5:7d:3f:36:6e:ed:e4:db:
0a:d4:f9:c2:0c:2e:7c:37:c3:96:61:48:61:bc:35:
10:7b:e6:8c:6b:c7:be:00:82:be:af:0d:7d:39:2d:
6e:e2:fb:d3:e6:60:3b:57:e6:82:c2:5a:8c:28:8c:
94:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2E:43:64:CE:E7:27:A5:65:5F:38:DC:78:11:2F:C9:68:A2:79:57
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OS5DZM7nJ6VlXzjceBEvyWiieVc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.120.0/24
Signature Algorithm: sha256WithRSAEncryption
05:d7:2b:34:80:16:f3:6b:76:ac:2b:7e:be:9b:75:dd:ac:6f:
78:8f:1d:f5:2d:7b:82:9d:4b:a9:f2:1e:3c:cb:60:72:0e:69:
ee:91:b6:5a:ea:f2:a0:78:08:75:63:f0:4b:2d:9d:ee:8f:44:
fe:7a:48:74:22:d6:d4:7b:4f:c1:a0:0f:0b:9e:9a:53:59:43:
64:17:02:33:f8:15:23:df:6a:40:c2:12:66:05:bc:6b:30:19:
32:5b:85:20:83:c5:34:52:02:5c:37:12:5f:0b:f8:92:aa:e2:
a1:41:f4:7a:3b:1b:79:14:d1:49:5a:1b:50:37:2e:36:1e:91:
4e:85:2f:4c:65:dd:8a:96:60:3a:96:9b:c1:b7:c2:c3:d1:12:
2c:18:b7:3d:9f:6a:4b:f1:c2:d3:da:1e:f8:8d:8f:04:67:32:
6f:fd:15:52:1d:26:6f:6b:30:64:45:59:5c:8a:06:f2:a0:d6:
1a:bf:fb:80:fe:86:c3:57:38:eb:77:41:e5:62:a4:58:15:db:
9f:33:5d:6b:c5:a4:2f:ab:19:75:bd:24:a7:97:9d:62:8b:ff:
7c:11:48:67:f4:6d:79:13:5b:95:31:b4:58:47:37:5e:e9:d6:
13:f2:e7:b7:97:9d:07:c8:15:93:49:16:63:18:c2:0c:e2:b1:
e5:68:09:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org