Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/RAjYNQ165w2-Qo-pvBzq3CRowiU.roa
File: RAjYNQ165w2-Qo-pvBzq3CRowiU.roa (raw, json)
Hash identifier: qc4M9wOUheeavU5g/LP7L24ifpOaRJteH73vK0VsEmo=
Subject key identifier: 44:08:D8:35:0D:7A:E7:0D:BE:42:8F:A9:BC:1C:EA:DC:24:68:C2:25
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12D6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RAjYNQ165w2-Qo-pvBzq3CRowiU.roa
Signing time: Fri 01 Sep 2023 08:05:03 +0000
ROA not before: Fri 01 Sep 2023 08:05:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131591
IP address blocks: 2404:0:8000::/36 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4822 (0x12d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4408D8350D7AE70DBE428FA9BC1CEADC2468C225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:02:70:c3:6e:6d:42:df:d4:74:48:2c:7e:93:
96:01:0b:1c:c8:4b:2a:2c:be:10:78:50:58:76:d3:
11:d8:43:77:43:f4:f8:27:c3:a7:35:e2:1a:94:4e:
6c:08:0d:55:60:ad:17:37:25:be:3e:72:17:bf:52:
f1:4e:01:e1:6e:fe:05:4b:3e:91:fd:f5:89:42:af:
2f:da:6e:c6:48:37:c3:00:71:ee:b7:fa:55:36:43:
d7:30:79:b4:51:d6:ac:2b:d1:3b:a0:38:f7:e2:fb:
03:5b:15:f2:2f:cc:ac:40:a0:2e:33:99:a7:be:8e:
49:b5:c8:9c:d6:4b:c5:c4:11:c5:49:f6:d6:50:96:
19:b1:df:02:39:8c:fb:26:7c:2c:3e:d8:f4:ef:aa:
5d:b4:75:9f:e1:76:18:b3:c4:0b:b6:b9:cb:3b:fd:
a8:cf:dc:c2:ad:73:6a:21:e3:89:e4:d4:e5:6f:af:
ca:9d:01:12:1a:e9:cb:81:ba:47:b7:42:77:70:48:
aa:1e:50:4f:3e:d1:90:d0:6a:16:55:25:f2:3a:8b:
09:a1:b4:49:e8:2f:80:a7:7c:55:36:03:92:7a:11:
17:1a:ce:4c:b5:83:a9:43:2c:9f:0a:07:cf:d9:fe:
21:a2:01:22:30:0d:6e:5e:28:1e:e3:70:a0:70:41:
56:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:08:D8:35:0D:7A:E7:0D:BE:42:8F:A9:BC:1C:EA:DC:24:68:C2:25
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RAjYNQ165w2-Qo-pvBzq3CRowiU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:8000::/36
Signature Algorithm: sha256WithRSAEncryption
71:6a:2d:c8:ec:4f:d5:fc:1f:76:69:b5:79:6d:13:8b:7c:91:
4e:bf:ce:db:19:2c:e3:c3:c2:83:f5:f2:a4:47:db:7c:e5:d2:
fd:68:f2:df:76:87:65:1e:e7:7f:c0:1f:3c:ef:a2:0f:6d:9d:
44:91:b6:5d:14:16:49:41:0d:23:45:f6:1c:2f:66:af:c7:e3:
e1:ad:2c:bd:01:ff:18:68:d8:1b:57:e3:30:51:c3:05:29:d5:
6c:6c:12:a7:57:04:a0:a1:62:1d:e7:ad:61:19:dc:da:ee:2b:
f7:ab:cc:2d:d0:cc:5e:4c:68:2b:39:4d:91:2d:72:64:87:67:
a9:4d:c3:ca:10:83:5d:47:d0:91:94:80:fb:4b:fa:03:77:2d:
e5:2a:dd:4d:5a:28:5f:3e:c2:7a:66:f4:fd:47:c2:a6:c0:91:
a3:41:29:7e:21:6d:20:cf:ec:31:d5:f4:cc:df:66:f3:d0:a5:
b8:57:3a:23:11:9e:9b:25:22:d8:bd:b3:27:bd:5b:df:2d:41:
bd:ba:81:bd:9d:15:58:1b:dd:b2:d9:34:c1:ff:b5:d0:ec:07:
fb:0c:60:7c:11:ab:1d:27:44:0d:e9:b7:36:4e:d6:85:a9:e6:
6f:cf:19:93:ce:8e:08:d4:07:fe:57:e0:20:5e:82:5f:55:93:
87:d3:59:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org