Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/R0eIKD6IVtsbf3uNwJPQcO9LkfE.roa
File: R0eIKD6IVtsbf3uNwJPQcO9LkfE.roa (raw, json)
Hash identifier: 6vHjme7rI1LwXlg91KS8st4wrAjEZgFJliiPmxUsemU=
Subject key identifier: 47:47:88:28:3E:88:56:DB:1B:7F:7B:8D:C0:93:D0:70:EF:4B:91:F1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 127E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/R0eIKD6IVtsbf3uNwJPQcO9LkfE.roa
Signing time: Fri 01 Sep 2023 08:04:33 +0000
ROA not before: Fri 01 Sep 2023 08:04:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 203.79.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4734 (0x127e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=474788283E8856DB1B7F7B8DC093D070EF4B91F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c2:95:8e:1a:9c:bd:d4:d4:d0:f3:64:7b:34:
15:65:28:5c:30:3e:fb:88:ce:4b:6f:68:c7:3a:52:
cf:24:e8:7d:28:27:81:e0:d0:af:e5:f0:08:02:ed:
e0:54:a0:3c:69:10:bd:d3:e7:7d:23:31:3a:96:e9:
a5:81:38:f6:cb:ad:af:dc:ba:23:9c:63:d5:45:5a:
d7:17:33:b1:0d:41:60:d5:9f:1c:ce:26:93:44:2f:
b7:36:02:ef:7c:ad:50:1a:99:86:09:24:89:04:5a:
be:07:a0:0d:c8:91:4a:71:4d:f8:a6:dc:28:55:1c:
c4:2c:e8:84:3f:99:b7:25:47:26:82:f3:fd:d9:2a:
d6:27:35:cc:6e:4e:ee:9c:fa:8d:88:be:26:4d:52:
83:07:48:5c:c3:13:60:11:12:dd:f1:db:ef:a6:5d:
56:6a:8b:7b:89:4b:ee:e3:9d:08:25:0b:ad:1e:8a:
ce:04:74:b0:c4:99:0e:e7:44:7c:a1:1d:ac:78:57:
0d:9a:a5:56:e9:90:e1:2b:19:9b:40:ed:bc:43:30:
9e:ca:e6:61:bb:07:f0:7c:b9:4b:e4:78:a5:47:a8:
b1:3d:cf:33:24:c6:0a:4a:99:fc:f1:f1:1b:57:f5:
b2:63:da:89:d4:41:96:00:66:61:96:68:c6:b1:97:
3d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:47:88:28:3E:88:56:DB:1B:7F:7B:8D:C0:93:D0:70:EF:4B:91:F1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/R0eIKD6IVtsbf3uNwJPQcO9LkfE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/18
Signature Algorithm: sha256WithRSAEncryption
9a:6c:91:fe:7a:55:d0:0b:c3:44:f7:90:2b:d5:b2:f0:62:ae:
b8:63:a8:f6:b5:82:00:ed:f3:18:5e:c3:ac:25:fb:44:e4:cf:
2f:e6:70:ae:fb:36:f3:3d:72:25:c7:ec:b3:f5:ea:a1:77:2d:
65:83:b3:1e:48:b2:f1:26:02:49:b9:18:27:93:2a:8c:54:f9:
c1:83:55:38:c4:eb:98:93:82:b4:76:c8:54:7f:bd:1d:5a:66:
d5:c1:18:fb:11:a8:39:6d:5c:ee:0b:08:8d:49:ab:43:6e:78:
96:06:c3:ec:b5:fb:4e:7a:b7:ba:e9:3c:bc:29:8e:3e:7c:b6:
f2:3d:f0:df:bb:fa:8f:19:cc:63:45:12:b9:45:24:ac:eb:5a:
a5:ff:85:38:f2:f4:13:c9:6a:7b:82:43:f6:d3:01:d0:1d:c1:
7a:a9:c3:bd:d2:7d:7a:8f:8e:7a:ed:63:e6:bc:35:20:97:4d:
5e:de:72:07:60:bf:64:d5:cc:80:13:d3:d5:2d:0c:05:e9:8c:
f4:ea:8c:ee:88:39:8b:50:b9:8c:fc:5b:4e:b8:eb:65:c6:2d:
a5:16:f8:8f:6b:26:e9:5c:19:2c:06:43:63:3b:30:f6:54:a4:
c4:a1:52:70:4e:b2:50:95:5a:45:82:30:72:ca:e6:b8:0d:0b:
d3:b6:11:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org