Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/QgTpiyVbmyn_ochXUvaLqFOhut4.roa
File: QgTpiyVbmyn_ochXUvaLqFOhut4.roa (raw, json)
Hash identifier: E7197qybRDk9hKqPZhpeZJB5wbke0213la+N2p2oNj8=
Subject key identifier: 42:04:E9:8B:25:5B:9B:29:FF:A1:C8:57:52:F6:8B:A8:53:A1:BA:DE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DC8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QgTpiyVbmyn_ochXUvaLqFOhut4.roa
Signing time: Wed 29 Sep 2021 02:39:33 +0000
ROA not before: Wed 29 Sep 2021 02:39:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131142
IP address blocks: 210.200.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3528 (0xdc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4204E98B255B9B29FFA1C85752F68BA853A1BADE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:65:23:d2:43:69:0f:61:cf:22:fa:8b:c1:3f:
db:6f:b3:e5:1b:a3:dd:63:fa:71:0d:fb:63:10:dc:
75:37:03:b2:45:e1:99:fe:13:19:39:32:92:05:d8:
c3:94:c3:45:29:60:26:bc:45:19:0f:fb:67:33:e8:
58:78:08:8e:38:9b:a9:b8:ce:65:18:b4:9b:4b:30:
35:5e:96:28:b2:4c:86:fb:17:d6:13:f6:bb:53:5a:
db:b9:fb:d6:dc:9b:a0:84:fd:55:21:b1:a5:81:7b:
f0:a4:c5:11:32:15:9a:dc:0c:32:bd:92:25:c5:38:
a5:eb:bf:eb:70:22:a3:b3:4b:27:76:82:1a:45:b6:
c2:23:2c:27:18:4c:7b:5e:e6:5b:d3:41:6a:28:1b:
cc:36:ad:23:22:c0:5e:ce:ac:8c:27:5c:7f:3d:8d:
6c:bd:d2:5c:c9:c7:4c:76:d0:50:75:10:37:d9:a3:
69:a4:5d:9c:59:92:bf:dd:49:68:37:ee:8b:7e:50:
84:f0:90:a9:d0:e6:a7:af:d4:b8:dd:c7:6e:f7:66:
3b:3c:bd:52:12:b6:69:6c:49:1b:ef:cd:1f:9c:b3:
e1:54:13:38:cb:0b:4e:56:40:ba:b3:04:9b:a8:0b:
7d:21:f0:fe:22:28:07:1d:42:46:b5:57:be:dd:00:
14:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:04:E9:8B:25:5B:9B:29:FF:A1:C8:57:52:F6:8B:A8:53:A1:BA:DE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QgTpiyVbmyn_ochXUvaLqFOhut4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/22
Signature Algorithm: sha256WithRSAEncryption
23:d7:98:5c:af:b8:89:de:ba:27:69:3d:25:33:a8:f9:1b:27:
74:9d:43:f7:ab:85:8f:61:2d:ee:dc:72:48:fb:a4:13:ad:2f:
4f:80:40:9a:db:2c:8d:df:0c:4e:47:4a:db:7a:6e:4a:d7:d9:
7a:81:67:97:12:9b:74:30:53:db:10:9a:1b:9a:60:f3:a5:bf:
7f:93:bc:08:ad:c0:ef:2b:5f:15:25:b8:3a:ff:76:c4:4d:a6:
46:88:aa:6f:c1:63:7c:8b:7b:12:cf:8c:08:ff:20:5d:e5:da:
07:59:ab:7e:18:4e:3d:ee:f2:72:ea:23:6c:1e:2e:20:06:6f:
e3:98:f5:d9:c9:77:b0:c3:c8:33:96:d4:6f:de:9c:70:1b:cf:
a3:88:51:38:01:71:62:95:b3:b7:4e:1d:fd:74:bb:5b:ea:39:
b6:7e:2c:09:36:29:29:ea:15:a7:8b:00:15:86:24:eb:e8:d3:
01:1e:65:e4:97:da:08:50:f4:11:a3:52:ec:d7:15:65:eb:05:
bc:a6:61:7a:38:5e:3e:6d:99:e7:e8:9f:3f:70:74:97:3c:ea:
f6:a4:b8:e8:08:e0:2c:77:ac:2b:ff:e2:f8:b0:78:81:90:bb:
e7:3c:09:f1:e5:78:12:c9:b5:49:cb:c3:f9:74:3e:83:a2:fa:
5e:5f:40:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org