Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/SWtrzR9AppQwtsf36-71M6gxZX8.roa
File: SWtrzR9AppQwtsf36-71M6gxZX8.roa (raw, json)
Hash identifier: 2yYgBH5lak1y1S5cJLHb5LFJYSCnzg5gh4S1MJRkero=
Subject key identifier: 49:6B:6B:CD:1F:40:A6:94:30:B6:C7:F7:EB:EE:F5:33:A8:31:65:7F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1030
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SWtrzR9AppQwtsf36-71M6gxZX8.roa
Signing time: Tue 16 May 2023 08:35:52 +0000
ROA not before: Tue 16 May 2023 08:35:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 203.79.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4144 (0x1030)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:52 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=496B6BCD1F40A69430B6C7F7EBEEF533A831657F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f3:68:92:2a:7d:40:a9:40:c3:73:cc:37:13:
71:90:06:7b:35:c8:d8:77:5e:22:cb:08:66:61:57:
cc:31:4e:ef:f5:7d:15:a8:0d:f5:72:3c:09:2e:fe:
3d:9c:0c:a4:6d:cb:03:de:f9:66:d7:f6:6a:a8:09:
73:e6:13:8c:db:a1:2f:71:03:92:26:87:5c:20:d6:
b9:d4:a1:f9:f0:d1:74:0c:17:e6:10:9c:5f:4e:70:
62:e6:af:5d:3d:74:e7:3a:98:8b:e3:f7:12:5d:8b:
bd:05:5a:b4:c3:65:cf:06:5e:1d:54:4f:e7:42:f7:
3a:3a:01:94:69:09:2d:8b:6b:1d:8b:ec:21:ff:ba:
35:81:4e:b6:9d:9e:ef:68:bd:2f:b7:f2:a9:32:2a:
42:08:ae:ed:0e:45:6d:90:a7:0c:39:dc:7e:1a:ad:
8e:ff:cb:7c:fa:39:dd:40:18:36:3b:d4:62:55:fb:
e8:0c:b6:d6:9a:4e:3a:cd:8b:4c:32:14:4c:9e:af:
c2:0c:d4:2e:b4:11:3b:b2:f5:c5:71:47:07:e1:c4:
b2:80:9f:21:0f:66:25:da:a8:d6:ad:bd:22:9f:c1:
77:3b:4e:20:1d:46:a2:7d:ba:0c:82:e4:71:57:c4:
95:43:69:da:7d:1f:5f:4d:10:e9:8d:d2:00:12:4f:
7e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6B:6B:CD:1F:40:A6:94:30:B6:C7:F7:EB:EE:F5:33:A8:31:65:7F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SWtrzR9AppQwtsf36-71M6gxZX8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.208.0/21
Signature Algorithm: sha256WithRSAEncryption
67:ac:7b:b9:15:c4:2c:da:a5:4f:30:5d:a1:4b:fc:10:f1:89:
64:d7:39:dd:69:f6:7e:a8:8f:32:ec:54:0f:35:a7:01:e6:96:
46:67:76:5d:33:d0:73:0f:27:51:72:3a:49:ba:ee:f2:c2:c4:
6d:f7:21:b9:02:85:d4:11:8f:69:f4:89:b6:47:f1:39:1f:48:
b0:ee:51:b3:53:ae:81:4b:95:53:9b:c5:51:36:9e:61:b1:e0:
82:0c:67:34:8e:5a:72:e1:67:cb:89:64:72:7a:8d:34:89:87:
c7:3a:b4:78:ce:10:2b:a4:0c:9c:39:39:8a:6c:12:31:ed:dc:
2e:5a:6d:e4:49:e5:d6:6c:55:14:b1:92:20:e2:ba:9f:4f:8e:
de:95:26:7d:89:eb:83:ce:08:d5:21:9f:ed:e6:0f:9b:cf:fc:
8a:3d:b5:bf:8a:ec:75:57:97:ad:eb:f8:87:61:48:e3:b4:c3:
de:49:55:cf:7c:e4:92:a0:fa:87:ae:a9:26:96:9e:21:fe:4b:
69:74:f4:40:9f:bc:39:df:a8:9c:6a:c3:28:37:75:f6:8d:6e:
fd:a4:2e:e8:d5:8b:8c:17:97:f8:a4:4a:c9:2a:57:b0:fe:e2:
bd:e3:8d:51:04:e8:0f:7c:69:b0:be:19:7b:51:91:30:52:76:
92:08:80:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org