Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/QnTpIZXWcovLfgjWUMBdZAwb2uA.roa
File: QnTpIZXWcovLfgjWUMBdZAwb2uA.roa (raw, json)
Hash identifier: 3yZHPvxvz9X85DsDymBm/CXOsz5QOl/VuTG60/EHb1c=
Subject key identifier: 42:74:E9:21:95:D6:72:8B:CB:7E:08:D6:50:C0:5D:64:0C:1B:DA:E0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1036
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QnTpIZXWcovLfgjWUMBdZAwb2uA.roa
Signing time: Tue 16 May 2023 08:35:53 +0000
ROA not before: Tue 16 May 2023 08:35:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.202.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4150 (0x1036)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:53 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4274E92195D6728BCB7E08D650C05D640C1BDAE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:67:31:36:4b:3c:b3:af:62:15:f9:cc:84:dd:
9a:37:bc:3e:33:d4:b2:5c:07:16:d6:b6:cf:f7:a0:
48:45:76:22:f8:eb:9d:9e:d0:91:77:51:fc:57:cd:
7d:48:e7:38:04:a1:e6:56:e6:25:4c:19:d2:46:42:
98:67:37:0b:7e:94:8d:e5:47:1e:eb:f5:ab:de:2a:
4d:1e:eb:55:1a:a6:0e:d0:b3:17:d8:2e:e1:06:6b:
23:a2:a4:30:ee:2c:ec:42:7a:bf:e1:5d:f4:81:0a:
fd:53:d2:56:9b:69:89:74:e5:32:04:17:58:a6:16:
72:20:30:7d:84:9e:30:64:0a:ac:c5:00:ae:f3:74:
24:38:58:85:24:58:8b:cd:2e:83:80:c0:38:27:54:
3a:ad:cd:36:98:ee:29:dc:47:ee:41:b1:8d:48:ac:
d9:ed:f7:b1:23:c7:72:20:77:60:02:02:1b:02:4b:
9b:4f:8c:8a:3d:26:63:6e:78:82:5a:af:0c:4a:1f:
62:0b:4c:ae:1e:e7:df:aa:a9:f4:27:3e:44:ee:b2:
52:8d:e2:87:37:ac:74:22:0a:0b:79:d5:a9:e2:dd:
f5:f8:c2:7c:3a:df:7e:96:86:ad:18:2e:59:69:c1:
01:92:f4:6e:74:52:0e:ec:c5:78:01:1e:2b:08:ac:
12:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:74:E9:21:95:D6:72:8B:CB:7E:08:D6:50:C0:5D:64:0C:1B:DA:E0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QnTpIZXWcovLfgjWUMBdZAwb2uA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:4a:20:f6:84:ad:d1:09:bd:44:b1:92:99:43:f0:a1:c7:a9:
8f:f3:30:39:d6:65:19:7b:31:3c:b4:14:ca:be:fb:2a:76:75:
07:e6:e4:a7:ac:6b:ba:45:e0:fb:de:73:21:25:93:46:1a:be:
8d:a3:b0:9b:01:9a:f3:5a:2b:22:4a:37:57:ad:83:f9:f1:74:
df:a4:f7:d1:ca:c6:a2:bb:de:ef:2b:75:fc:ae:2c:80:9b:21:
f9:5b:5d:2f:d5:1e:af:f9:c1:5a:c3:54:07:9d:61:8c:dc:3e:
ed:a7:8a:b2:03:67:8f:bb:d8:df:30:70:0e:17:83:f7:34:82:
d2:57:ec:ef:fa:85:ee:25:24:63:21:1c:8e:0e:33:69:ee:82:
60:a2:84:f1:1d:4d:9a:bc:2c:c4:a7:ff:cd:c1:3d:a3:90:e6:
0f:88:2d:3d:38:5a:86:6c:1e:b1:36:0a:e9:1a:11:21:2a:fb:
47:b8:4e:ae:4b:96:95:88:f4:65:61:31:7b:a4:22:38:54:f8:
e4:f3:6b:15:26:a5:70:2f:bf:2d:fe:f8:78:d9:36:ea:3f:11:
bc:c9:0d:dc:98:4f:2a:14:7b:80:b7:26:81:48:3d:6c:06:ae:
22:fd:52:3a:f6:b3:4e:2a:45:1d:17:8d:82:2b:b1:f1:62:d1:
dc:1b:20:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org