Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/TvxQwkq8TD_mVZW0ilEyTQ8rc1U.roa
File: TvxQwkq8TD_mVZW0ilEyTQ8rc1U.roa (raw, json)
Hash identifier: DATAeGP3wtH6CashroBaY6kN0rcQjVEAmGvMkoApgNc=
Subject key identifier: 4E:FC:50:C2:4A:BC:4C:3F:E6:55:95:B4:8A:51:32:4D:0F:2B:73:55
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C4D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/TvxQwkq8TD_mVZW0ilEyTQ8rc1U.roa
Signing time: Sun 07 Feb 2021 11:35:37 +0000
ROA not before: Sun 07 Feb 2021 11:35:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 222.156.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3149 (0xc4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4EFC50C24ABC4C3FE65595B48A51324D0F2B7355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:16:fe:db:fc:7c:03:d9:7b:03:b1:01:e2:
c1:5e:6b:70:99:e7:75:68:f9:f2:fd:6a:f4:f4:2a:
d4:e7:ab:3b:55:4b:59:ef:34:5d:97:d8:23:bc:83:
c5:32:20:92:62:c6:a2:b6:4e:48:bb:4d:a5:b3:19:
21:86:ec:5f:e8:58:ed:80:5a:80:11:72:89:0d:f5:
dc:9e:cd:23:9a:6e:a4:ef:24:90:af:77:23:93:52:
76:5c:08:58:29:90:9b:80:06:50:fa:b7:56:ad:46:
e3:a4:a5:83:2a:07:f4:8e:b9:4b:14:36:d3:63:7a:
72:86:ca:f5:f3:f6:e8:57:3f:dd:b8:12:78:2e:8b:
9e:3e:76:66:5b:23:97:ab:ff:da:e1:fb:d1:31:99:
b4:5e:c6:e9:94:89:0c:9d:d0:77:5d:4e:13:ce:ed:
2b:d9:1c:46:3e:6b:1e:6c:94:85:d8:1a:a5:fa:cc:
d0:05:ee:e7:e4:e6:95:bf:2b:7f:7a:14:78:f1:78:
aa:3c:b1:c0:0d:cc:68:cb:c5:f1:23:e6:0c:30:19:
25:5b:29:3f:51:27:29:81:64:3e:1e:4d:49:b5:34:
ba:76:4e:c2:05:ac:b2:68:37:37:b9:ba:a1:89:b4:
aa:b4:af:24:0b:c6:6c:93:44:e2:14:ad:b5:e4:dc:
a4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FC:50:C2:4A:BC:4C:3F:E6:55:95:B4:8A:51:32:4D:0F:2B:73:55
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/TvxQwkq8TD_mVZW0ilEyTQ8rc1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2f:5c:19:5a:9f:9a:db:86:88:4f:d7:81:14:3d:11:58:e0:ed:
d1:0d:6c:24:26:37:f6:82:79:ea:69:6c:c6:20:dd:ca:54:f4:
f1:e0:ea:17:41:bc:d5:71:71:ae:f2:0c:b5:82:f6:43:a6:78:
4b:17:84:9a:27:d1:69:51:6f:da:2a:b6:1c:60:ff:b9:00:18:
8a:3f:1c:3c:f5:14:86:ea:98:4f:83:ea:d6:1d:9b:7c:df:28:
27:e8:21:c4:3e:6d:40:70:a3:50:fc:c7:7c:15:52:4c:ea:8d:
af:a9:da:e4:a2:17:48:87:20:c5:50:fe:eb:6a:7f:cd:ee:a6:
37:a0:d5:92:d9:97:e2:99:65:c6:65:e9:49:4c:4e:68:bd:ad:
56:64:26:96:d7:f8:f2:ba:a9:f8:96:fb:a2:c3:73:0c:2a:5c:
26:a6:a3:2f:01:ea:aa:5a:0f:2f:a3:69:5b:6c:45:89:b0:b4:
b5:b7:8b:87:58:db:c0:31:8e:d1:4e:80:7d:43:24:88:b9:fb:
f4:3c:df:af:0f:7e:c0:ae:93:3a:c5:33:55:f1:7c:53:1d:87:
53:eb:fd:af:4b:a1:db:49:73:82:66:15:4c:e3:66:3e:2b:6c:
78:b4:7c:d6:72:fd:e7:88:70:6a:60:69:68:4e:9b:5b:44:cf:
8b:81:43:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org