Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/RGCoQifd8Hanvqh166O4dympUkg.roa
File: RGCoQifd8Hanvqh166O4dympUkg.roa (raw, json)
Hash identifier: POx3/sAI8uKAnIpNauzzttvrsFh5OkjDzP4QOckhKyE=
Subject key identifier: 44:60:A8:42:27:DD:F0:76:A7:BE:A8:75:EB:A3:B8:77:29:A9:52:48
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1281
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RGCoQifd8Hanvqh166O4dympUkg.roa
Signing time: Fri 01 Sep 2023 08:04:33 +0000
ROA not before: Fri 01 Sep 2023 08:04:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 210.202.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4737 (0x1281)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4460A84227DDF076A7BEA875EBA3B87729A95248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c3:72:93:6e:79:91:35:8f:4f:4b:5a:39:e0:
7b:4b:89:7b:eb:96:2a:c9:52:f8:cc:f3:65:eb:19:
c6:57:ff:02:d9:55:43:89:05:bf:e8:54:4a:1d:b5:
81:44:0c:b9:c0:2a:1d:cc:19:fb:57:dc:d1:43:84:
9e:8b:25:b5:9a:81:15:e6:1c:e2:f6:b3:78:a1:1a:
5b:9a:af:2a:62:48:cc:8d:01:6f:bd:d4:2b:35:48:
75:e7:41:e5:e0:ed:43:e6:c5:b9:5a:14:3a:67:5d:
c7:7a:ab:6f:f1:6f:52:5e:6b:1c:0f:03:63:01:77:
bd:2c:2a:ba:d9:58:26:30:60:08:9e:9a:66:e0:4a:
3f:aa:52:60:2b:9a:76:72:a4:da:be:06:4b:af:37:
fe:d8:74:3a:bb:0c:1c:77:8f:44:1d:80:64:18:84:
56:12:d1:82:aa:d7:a0:2b:71:df:d9:2a:5f:9d:88:
97:c1:cc:5d:9a:07:96:06:87:4f:8f:c2:12:60:46:
cf:71:94:0f:67:89:b7:80:be:4e:a7:38:9a:5b:6c:
34:26:6a:56:49:13:af:60:d2:79:71:1f:67:8f:9e:
d8:50:3c:ae:b4:52:f9:08:0a:fe:9b:98:83:d5:bb:
aa:33:12:6f:c8:77:0f:be:7a:77:ad:27:b8:5b:6a:
6d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:60:A8:42:27:DD:F0:76:A7:BE:A8:75:EB:A3:B8:77:29:A9:52:48
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RGCoQifd8Hanvqh166O4dympUkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7d:17:50:93:2d:3e:5d:2e:c3:a4:e3:a6:8b:9d:de:73:be:36:
46:5b:3c:32:80:0b:e7:7d:50:91:db:69:38:21:83:2c:9b:a9:
83:3f:08:c6:94:1b:0d:bb:eb:05:ce:c3:c2:6d:66:52:23:fe:
34:8b:65:93:fd:b7:69:5c:21:8d:1d:f5:b1:19:1d:7b:59:6f:
bb:4c:58:d9:49:50:41:e9:85:a6:8e:d8:52:33:9a:8b:69:23:
2b:fe:00:98:f4:b3:21:88:92:57:15:5e:ed:53:5b:9a:61:74:
5e:13:f4:1b:94:09:af:8a:8a:cf:42:73:bb:27:b9:30:78:75:
49:b2:22:f2:17:b7:69:dd:59:77:9b:d4:2b:7f:7f:4b:ee:6b:
fa:8b:0a:0e:b0:7e:4b:6c:24:30:cb:e5:a0:fe:28:48:db:b1:
ef:4c:0f:bd:52:a7:58:cd:92:bf:c6:fb:58:1f:cb:1e:17:01:
9b:29:74:18:24:7c:78:74:0b:a6:c1:01:88:e8:67:b2:60:41:
df:7b:fb:5a:ce:9c:cf:d7:6e:56:17:99:4c:5f:5b:bc:a0:d5:
86:35:93:4f:87:f3:ea:9b:02:ac:52:d1:f4:f7:b2:9d:bd:23:
42:57:b4:cc:f8:02:de:14:fb:f6:89:0b:09:30:bc:8f:d6:7d:
23:c2:6e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org