Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/PSsyfofxIYIGXg6m6aDa4qVHbuU.roa
File: PSsyfofxIYIGXg6m6aDa4qVHbuU.roa (raw, json)
Hash identifier: QLbW8NsQXkxIb/N+/0tl3XfCqFnhVMJvEE8jqTlbxqk=
Subject key identifier: 3D:2B:32:7E:87:F1:21:82:06:5E:0E:A6:E9:A0:DA:E2:A5:47:6E:E5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1153
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PSsyfofxIYIGXg6m6aDa4qVHbuU.roa
Signing time: Fri 11 Aug 2023 09:11:49 +0000
ROA not before: Fri 11 Aug 2023 09:11:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 222.250.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4435 (0x1153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 11 09:11:49 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3D2B327E87F12182065E0EA6E9A0DAE2A5476EE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:92:76:49:44:cf:fe:b6:2c:92:b1:cc:d3:cd:
65:33:00:20:04:a8:e3:fa:36:96:21:43:3b:04:36:
38:11:f5:2f:f0:d5:c8:98:19:58:70:5e:78:cb:1b:
a7:e4:65:15:90:9c:4a:49:34:fe:d6:c1:6c:bc:72:
cc:08:b5:4c:78:1a:7d:27:55:40:8a:d3:32:8f:75:
72:00:b7:cb:93:07:e2:a6:2b:e8:04:6a:5a:ee:1d:
d0:96:9e:5b:fa:1e:55:1b:86:c1:17:30:81:23:43:
76:f5:ce:87:7b:19:c3:12:70:1e:51:e6:1d:37:51:
91:d4:9f:1c:01:c5:82:05:16:44:6a:1a:87:f6:1d:
31:50:3f:8b:48:43:dd:4f:2d:98:5a:cc:6a:aa:e6:
a4:0c:83:00:0e:93:b0:6f:b6:42:48:21:d3:31:57:
e6:3e:de:34:1a:22:95:cf:35:ce:c4:16:a3:2b:f1:
71:86:72:3e:61:bf:bd:e6:3a:13:5f:56:51:02:cb:
72:c5:a8:52:e9:d6:c5:d5:67:7d:7b:d7:01:d2:62:
ba:67:f7:c9:34:fe:af:7f:b7:f0:02:41:dc:23:f6:
bc:e3:0b:80:b8:b4:4e:fa:e9:81:2f:c5:0e:5d:a4:
5f:03:db:15:c9:a7:4c:f0:57:74:d3:cd:d7:2b:c5:
1c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2B:32:7E:87:F1:21:82:06:5E:0E:A6:E9:A0:DA:E2:A5:47:6E:E5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PSsyfofxIYIGXg6m6aDa4qVHbuU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:90:17:df:86:02:91:8d:af:62:00:bf:62:39:fa:7f:5c:c1:
ee:8c:ef:80:89:9c:9b:8f:42:0c:37:49:88:c6:db:b6:37:99:
e8:88:a7:b0:93:36:48:38:0b:60:b6:e4:ef:80:39:73:3b:fd:
59:57:e8:bf:2a:b9:7d:63:e2:fe:e5:ea:fa:8a:c8:bd:a7:64:
ee:3a:47:26:5e:69:5e:e3:2a:14:58:60:b0:68:79:f4:8c:55:
d9:08:db:28:38:ab:7a:6a:cf:37:30:23:45:ab:58:f6:58:ef:
1e:44:79:6d:b8:2a:e7:0a:f5:78:93:ae:9f:11:e0:e7:35:17:
69:b2:01:4c:14:b4:76:06:0b:25:d8:07:40:be:d4:1e:de:61:
b0:98:13:c9:78:7e:80:14:6b:43:53:cc:a9:03:65:02:fa:2a:
ae:96:0a:30:1a:92:35:05:72:8d:ef:8d:f2:55:03:70:55:0d:
c2:74:e1:79:b1:43:aa:66:5a:6e:64:e0:fc:61:e6:a5:9d:2e:
58:44:59:1f:64:5c:e8:41:c5:ae:e2:3f:5e:59:b5:85:4e:53:
b2:29:d3:e8:56:f1:b1:0a:40:86:07:b4:9e:7b:eb:e4:12:84:
b7:b2:62:9b:e7:ca:ad:da:86:88:88:5e:6a:5e:c0:a0:c3:4a:
d0:74:de:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org