Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Rs3GbO4fdNAskc_rrFi93_1pfos.roa
File: Rs3GbO4fdNAskc_rrFi93_1pfos.roa (raw, json)
Hash identifier: yD3lmeVNxHIvrzbb/Fge60O9QSSY8pUYyEaF02tty4g=
Subject key identifier: 46:CD:C6:6C:EE:1F:74:D0:2C:91:CF:EB:AC:58:BD:DF:FD:69:7E:8B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1323
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Rs3GbO4fdNAskc_rrFi93_1pfos.roa
Signing time: Fri 01 Sep 2023 08:05:25 +0000
ROA not before: Fri 01 Sep 2023 08:05:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.201.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4899 (0x1323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=46CDC66CEE1F74D02C91CFEBAC58BDDFFD697E8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:29:53:40:2c:40:b0:53:77:9c:63:99:e2:71:
d1:02:0b:43:9e:b7:df:d4:19:e1:4c:f2:cf:08:f8:
71:33:da:65:20:9b:36:f6:48:56:a7:bc:ce:de:31:
7c:0a:20:9f:da:2e:d1:46:ba:c6:8d:9b:b0:74:09:
73:74:0a:e8:d7:92:48:48:cd:e7:e1:25:9f:16:f2:
5f:ce:54:fb:25:84:19:e3:2b:72:64:ab:5c:e0:76:
42:9c:54:ba:67:af:f6:bf:6e:db:46:6d:39:29:1c:
37:95:fa:0b:45:b8:9d:bb:6e:2e:50:1d:09:2d:1f:
99:27:26:f3:08:33:39:78:c2:f5:07:2f:0d:23:c1:
b3:fb:02:f5:ef:38:a3:c7:bf:c5:29:18:9f:1f:ae:
fb:4b:27:a4:c8:2b:63:c3:cb:b7:27:35:c5:36:37:
c6:79:a9:51:6d:8a:29:da:d5:71:09:5d:6a:b9:70:
1c:84:31:f0:22:44:a4:fb:5e:dc:9b:15:27:78:db:
ef:ec:ef:33:7c:df:0c:3a:da:63:bf:f6:26:46:62:
79:e0:57:8b:9b:a6:46:c0:4b:f5:5c:26:0a:c2:6c:
70:75:c6:cd:07:e6:21:ac:40:c7:f8:ff:bc:d4:42:
2b:5d:9a:a8:0b:36:0f:60:16:c4:cf:b3:95:94:8b:
ee:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CD:C6:6C:EE:1F:74:D0:2C:91:CF:EB:AC:58:BD:DF:FD:69:7E:8B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Rs3GbO4fdNAskc_rrFi93_1pfos.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.72.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:4e:4b:ce:63:de:1b:9f:ff:68:51:cc:c5:4b:23:f3:3f:2c:
b4:3c:3f:b8:0c:b0:ab:1c:63:6d:02:ac:5a:8a:ce:30:e0:cf:
23:7e:31:c9:85:6c:e4:76:82:87:c5:aa:31:5e:db:6b:a2:46:
cd:b4:ab:a2:87:ee:a9:31:be:b5:4d:37:e5:cc:a7:58:92:dd:
b5:52:3d:c7:30:61:fb:f0:ee:4e:21:c7:81:10:96:ad:35:bb:
3c:76:4f:0d:08:20:10:0a:6b:bf:9c:58:06:af:01:95:f7:1f:
f9:6e:1b:a6:5b:b3:96:31:cb:8d:42:6d:46:20:fe:f1:73:49:
16:21:de:6a:69:09:ae:73:ae:40:3f:23:d5:31:6a:66:a7:17:
cd:55:72:df:a1:d1:15:2d:c4:6d:e5:5b:c1:64:e8:8f:09:2c:
ff:16:ff:40:47:9b:ce:2a:c9:03:e3:08:ef:ca:4d:d4:d6:ac:
77:c5:fd:ef:5c:cd:10:ec:5b:58:f1:8d:6f:bf:e1:e6:ab:f6:
9d:1b:94:68:7b:c6:be:38:25:49:22:50:b5:ef:0f:26:16:cb:
70:16:8c:8c:57:ea:fd:e1:ba:0b:e7:81:13:0f:b1:70:bf:38:
c0:c3:dd:18:9b:69:cf:25:3e:f7:f5:58:97:c5:2c:22:e5:3f:
c0:c2:96:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org