Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/UCrj8cw9PBGMNGz1QVK3QEdK69M.roa
File: UCrj8cw9PBGMNGz1QVK3QEdK69M.roa (raw, json)
Hash identifier: q/A9p5qdQ3N5/P+oksh0dfqOu2YA5Js6b/ni60qirrs=
Subject key identifier: 50:2A:E3:F1:CC:3D:3C:11:8C:34:6C:F5:41:52:B7:40:47:4A:EB:D3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10BF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UCrj8cw9PBGMNGz1QVK3QEdK69M.roa
Signing time: Tue 16 May 2023 08:36:34 +0000
ROA not before: Tue 16 May 2023 08:36:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4287 (0x10bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=502AE3F1CC3D3C118C346CF54152B740474AEBD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:37:e1:1f:2e:a4:d3:a4:ed:ef:ba:dc:83:c3:
bf:c5:fa:ed:fb:46:7e:ad:17:79:43:de:74:3d:65:
75:45:94:94:af:69:6c:df:6e:b1:3b:35:3b:f2:bc:
00:b1:40:3a:83:cc:0c:cf:c2:fe:04:06:66:67:c4:
38:65:a8:98:c8:e5:e5:2d:b1:95:29:2e:c6:9a:2e:
51:cd:ab:b2:37:de:6e:11:8a:88:3a:01:cb:8e:8b:
31:f1:e2:12:b0:e2:ac:4f:92:10:f0:72:bc:1d:a5:
c9:18:31:f4:e3:a3:f7:44:df:1c:e4:16:73:8a:3d:
e3:f5:f0:1c:49:61:9a:8c:f0:40:7c:d4:0c:63:05:
d3:7c:87:1e:14:6c:29:f4:f8:53:90:67:6b:88:1d:
74:59:35:3a:55:ee:49:8c:60:8c:f9:e5:e4:4b:31:
c0:6a:dc:82:66:7d:14:14:57:14:06:51:81:80:4f:
4f:42:be:09:69:91:92:7a:ba:d0:a2:eb:4e:dd:15:
71:8b:53:e5:f3:ba:91:a7:f2:78:6d:1f:27:90:02:
8e:72:a5:9e:6b:d9:8f:b1:57:d2:5d:63:7f:a9:34:
75:cd:65:27:4f:da:50:02:a4:94:40:a5:18:d5:0f:
f0:c9:44:a2:d0:80:2f:92:94:92:ef:58:60:67:0e:
54:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2A:E3:F1:CC:3D:3C:11:8C:34:6C:F5:41:52:B7:40:47:4A:EB:D3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UCrj8cw9PBGMNGz1QVK3QEdK69M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
77:23:5e:b9:54:cb:20:52:f0:a1:a2:40:47:67:24:2b:e9:fe:
1f:90:ef:fa:a3:a4:7d:fe:ce:f3:ae:b8:da:df:b8:7d:dd:fc:
8a:eb:4f:12:55:ec:aa:e3:6f:d5:3a:38:d8:f7:f5:16:17:c1:
fd:9e:77:02:68:2e:bc:a0:95:4d:e6:b7:b4:a4:6d:68:e1:2d:
49:d1:a7:28:a3:e4:80:28:72:2e:52:f6:dc:76:50:8a:5e:ed:
ca:3f:45:b0:67:16:03:4a:e2:e4:aa:c8:0a:e1:d7:2b:ee:9b:
4e:ca:f6:b5:57:12:7b:15:5d:d5:fe:ce:4a:08:81:7a:8a:cc:
cb:19:e7:61:a1:3b:93:be:d1:4f:e6:c9:94:98:6c:51:f0:46:
72:cb:31:92:67:3b:2a:91:20:06:42:aa:0a:78:c0:fc:e6:23:
58:bc:f3:01:21:a6:ec:16:a5:92:9f:0c:25:42:0d:48:bc:34:
94:dc:0a:8c:1a:57:f1:10:46:20:5c:fe:c1:18:6d:b1:aa:ba:
a3:c7:25:03:2a:7a:cc:2e:4a:95:b7:b6:c9:b2:b7:ca:4c:63:
05:51:18:e5:81:a0:aa:a6:59:a5:91:05:fc:44:5c:0f:2b:e4:
6b:2e:31:4d:f5:ab:ee:1e:af:fd:7a:27:49:bb:8a:cb:bf:8d:
7e:63:0d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org