Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/RSnZb5l4biQNq5n9d2Bb3_SmK30.roa
File: RSnZb5l4biQNq5n9d2Bb3_SmK30.roa (raw, json)
Hash identifier: Jqs2x1wg0lVLCFsxfxLoPupmhQXCVFEZ+dq5x6rB/DY=
Subject key identifier: 45:29:D9:6F:99:78:6E:24:0D:AB:99:FD:77:60:5B:DF:F4:A6:2B:7D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12CF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RSnZb5l4biQNq5n9d2Bb3_SmK30.roa
Signing time: Fri 01 Sep 2023 08:05:01 +0000
ROA not before: Fri 01 Sep 2023 08:05:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 203.207.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4815 (0x12cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4529D96F99786E240DAB99FD77605BDFF4A62B7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:e6:c6:8c:6f:a2:35:0f:05:38:69:5c:a2:
a8:8e:5d:6c:d2:6e:1b:ee:e1:66:47:28:77:85:8d:
0c:8a:6b:43:ab:1a:b7:01:f3:a7:f9:db:6b:a9:33:
c5:7a:3c:06:5d:99:cb:6f:26:59:cd:f5:c7:06:be:
4c:01:1c:55:42:ad:d2:60:56:8b:9b:a1:2a:64:a4:
a6:76:cd:61:0e:36:17:24:72:03:c8:ef:cb:05:e2:
cf:37:1f:80:9d:01:a9:96:0b:84:80:bb:28:cf:ed:
28:b6:dc:e0:63:b4:1c:b2:10:1a:a2:44:ed:d6:95:
c9:ee:8b:ae:e5:9d:d6:46:86:a8:da:b8:c7:41:89:
2a:4d:c5:e4:96:94:b1:83:ae:8c:14:f9:2a:60:f8:
0f:3d:03:00:14:33:b0:0c:ff:b3:9d:32:20:df:ab:
bd:48:fc:32:42:1b:60:4f:1c:45:bc:db:10:6d:02:
8a:35:0d:04:2f:c9:9a:9c:2e:a3:ff:61:97:4b:1d:
13:4e:06:b0:d7:6b:a6:8a:76:16:42:d5:b4:da:cd:
56:9d:4f:c9:8c:88:a9:ec:34:36:0e:29:54:3c:21:
8e:99:1b:aa:95:ac:83:80:b4:7d:07:c8:f4:fa:e0:
da:90:a2:de:7a:35:e1:93:d0:05:ab:b0:a3:a5:b4:
56:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:29:D9:6F:99:78:6E:24:0D:AB:99:FD:77:60:5B:DF:F4:A6:2B:7D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RSnZb5l4biQNq5n9d2Bb3_SmK30.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.44.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:6b:9d:0b:5c:a6:c4:45:7a:77:4b:3a:17:fc:6f:37:20:c8:
12:72:c1:e4:ce:b9:ba:0a:f9:1d:9f:42:37:ba:a0:60:8a:bb:
3e:3e:50:13:93:90:40:95:36:dc:72:e9:f5:65:83:1f:5d:9d:
81:9a:47:b3:de:c8:72:47:28:fe:02:f3:0c:27:ca:db:02:05:
40:dd:af:14:d3:cc:9c:6e:cd:6a:12:65:60:9c:85:23:9d:e5:
65:14:80:7b:59:9c:4e:59:43:f3:69:70:7e:98:02:19:0c:66:
fd:3f:0d:fe:d0:f0:dd:7c:27:df:d0:e4:8f:24:18:d7:94:23:
a9:13:93:e4:5d:43:ab:41:c7:a5:76:ec:02:e9:4a:78:1c:cf:
49:fd:86:a5:6a:b8:de:bb:00:b3:07:ee:31:05:a3:af:4a:bd:
f4:0a:32:c8:8e:50:3b:1e:f9:67:8e:20:51:f8:52:2b:5c:f4:
62:c9:2d:96:ee:9b:c9:b6:8f:d3:0a:54:c0:dc:1f:7e:07:ee:
14:38:46:ee:bc:34:65:9a:d6:d9:5b:b6:2e:52:79:32:74:f5:
29:54:3a:5e:88:b5:d8:95:bc:9a:c1:ea:ec:71:6d:ba:5e:ed:
ce:89:da:5e:69:f0:54:e4:96:a3:6d:fc:76:2a:33:39:40:47:
e6:0e:42:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org