Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/SZsc_9YTC_MRR5EjXk4l5ZTCm5U.roa
File: SZsc_9YTC_MRR5EjXk4l5ZTCm5U.roa (raw, json)
Hash identifier: HcvSLdMbqCxxwhJSBhHZk0M+lAaYpif0G2LKwM1y++g=
Subject key identifier: 49:9B:1C:FF:D6:13:0B:F3:11:47:91:23:5E:4E:25:E5:94:C2:9B:95
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SZsc_9YTC_MRR5EjXk4l5ZTCm5U.roa
Signing time: Thu 15 Sep 2022 02:40:26 +0000
ROA not before: Thu 15 Sep 2022 02:40:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.200.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=499B1CFFD6130BF3114791235E4E25E594C29B95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4a:7f:2c:84:a9:9c:e5:1f:97:8b:2d:b6:36:
15:9a:fe:a5:65:4f:fa:3b:71:b3:f8:42:99:1e:9b:
3e:73:b7:a8:a4:b8:9c:c5:cf:78:bb:59:9d:2d:3b:
59:cc:96:b5:7f:0d:fb:f5:51:59:46:f8:23:2f:78:
46:d6:49:5f:18:75:7b:77:ee:04:77:de:b4:13:3d:
01:6b:22:ca:cc:1f:9c:29:f4:3a:7e:d5:4b:1f:4e:
6d:87:c2:37:3e:18:ce:35:d0:da:75:0f:c9:e8:21:
3c:b7:da:c2:7d:c9:7b:1d:a6:29:8a:35:0b:94:9d:
78:fc:7e:44:fd:48:a2:1b:70:1a:1c:82:65:1d:46:
e2:99:fc:89:5b:51:e3:ed:4b:07:ef:71:db:43:3d:
67:ea:bc:d1:35:b8:4d:8f:f4:c6:10:e6:8d:f9:d0:
35:f5:70:67:87:83:b6:04:7a:c8:b0:e9:63:e8:f7:
29:3c:70:61:f5:ef:eb:fe:d4:bd:70:a2:b5:0a:fa:
38:d5:db:4d:3a:cd:49:c8:06:51:fe:fb:5f:e1:79:
43:bf:cd:d6:cb:d1:c7:a5:a1:fd:79:c8:e1:fe:0e:
7f:ff:f4:96:f1:5a:65:d7:a7:31:b9:df:4b:b9:c3:
d9:10:bb:c1:90:c9:0e:bb:cc:cc:c8:ba:bb:d7:75:
30:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9B:1C:FF:D6:13:0B:F3:11:47:91:23:5E:4E:25:E5:94:C2:9B:95
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SZsc_9YTC_MRR5EjXk4l5ZTCm5U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.200.0/21
Signature Algorithm: sha256WithRSAEncryption
39:ad:dd:2d:ec:6d:29:3b:61:ce:0a:a3:8e:67:37:70:12:7a:
45:74:f2:28:0f:51:de:2f:63:41:74:62:48:7c:fd:0b:21:85:
30:03:6d:4a:d0:f7:c4:55:43:dc:97:34:a2:ef:ca:8e:f1:c6:
b5:d5:05:82:1c:e5:8f:af:ee:90:30:27:86:2f:56:61:c1:c8:
5d:1c:76:76:dd:1a:bf:a7:9c:b8:ca:0d:99:71:02:54:59:c1:
92:08:e8:0e:4e:a0:9b:58:7f:bb:af:41:5b:3f:3b:de:e2:14:
d6:e4:7b:d2:2e:c9:e6:8f:ad:a6:26:6a:34:f9:f1:f6:36:ee:
d6:44:28:7e:c9:25:83:b1:c8:2b:2c:41:f4:0c:be:60:83:19:
9b:05:80:66:87:5f:b2:48:98:62:1c:a4:47:25:1a:09:2e:54:
3c:66:de:45:1a:e4:c3:6d:70:12:ec:c6:9f:94:95:96:37:1f:
b7:76:3a:5a:39:f8:15:83:4f:14:8b:a6:c1:3f:81:c0:2d:0d:
8b:b8:c1:00:c9:b1:07:38:61:8d:ea:dc:e5:08:c5:94:be:13:
3b:30:2c:36:6d:16:ee:f6:42:a1:6f:ce:1c:ed:68:00:2e:43:
c8:4b:86:d1:97:9f:09:5f:fd:be:ca:aa:3f:c5:9a:eb:9a:59:
66:e6:af:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org