Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/UkhJcg6jnWDsgHaHeRIZ7rhdFv0.roa
File: UkhJcg6jnWDsgHaHeRIZ7rhdFv0.roa (raw, json)
Hash identifier: bvdNvtJLsI95sVCm9SGfPidzWDVbuMZ5lk2aWjgRaEo=
Subject key identifier: 52:48:49:72:0E:A3:9D:60:EC:80:76:87:79:12:19:EE:B8:5D:16:FD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1138
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UkhJcg6jnWDsgHaHeRIZ7rhdFv0.roa
Signing time: Mon 07 Aug 2023 07:35:48 +0000
ROA not before: Mon 07 Aug 2023 07:35:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4408 (0x1138)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 7 07:35:48 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=524849720EA39D60EC807687791219EEB85D16FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2d:4b:31:58:49:1a:71:a7:06:07:8a:c3:4f:
4f:4a:5a:8f:fb:25:4d:64:26:94:97:b5:d1:03:57:
f0:a0:e3:8e:85:ea:b0:cb:53:93:aa:f3:e1:0e:9f:
c0:5f:0e:3a:69:e4:34:75:c5:35:4d:06:61:94:39:
a7:1b:fb:6f:57:5e:f7:13:e3:f6:ae:bb:b1:7c:89:
11:8f:03:80:e6:82:f8:a9:86:17:22:ee:b3:5f:ab:
59:ae:7c:da:f0:2b:dc:35:ad:fb:19:2a:e9:4e:15:
86:ef:b8:43:72:0d:15:b1:d1:8b:f0:c2:5e:96:ce:
33:8a:53:49:68:73:72:7d:bf:e8:2b:29:55:60:70:
df:72:5a:9b:72:3e:66:7d:e5:14:2b:cf:2b:a1:62:
8a:3c:b0:f9:8c:af:1c:79:7a:9a:46:c1:14:19:82:
2f:5c:a0:d2:a9:97:a5:bd:0a:ac:f0:98:ff:33:9b:
6d:0c:16:99:d6:e0:78:0e:73:f7:ec:55:2e:2e:05:
bd:7c:7a:62:8e:c2:c8:ce:2d:cc:92:0f:00:59:23:
1d:85:4c:69:2b:db:5c:b1:57:e9:90:7c:81:f0:6e:
65:c1:0a:f2:63:e4:af:7d:3a:bb:b4:3c:d7:7f:65:
a1:f0:b0:64:b1:56:4f:80:1b:b3:38:d0:e0:37:ac:
2a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:48:49:72:0E:A3:9D:60:EC:80:76:87:79:12:19:EE:B8:5D:16:FD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UkhJcg6jnWDsgHaHeRIZ7rhdFv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
12:bb:e3:b3:51:60:b4:08:35:e0:01:79:90:3f:c3:ca:c0:70:
42:b2:a0:a8:14:a9:0f:9a:85:38:e7:0d:1f:85:5f:4c:c5:d8:
30:76:a0:40:8d:f0:c9:06:3f:2a:47:43:4a:05:d3:d9:6c:ff:
ef:53:2a:03:10:0a:a1:00:6e:cc:3a:6b:a3:9e:10:74:1a:53:
ff:5c:e7:ab:4c:29:3e:20:1d:30:8b:53:6a:6b:e1:48:fc:b1:
13:da:65:29:d7:15:ea:e9:57:aa:aa:16:98:bc:50:f4:6f:57:
56:83:50:90:80:df:55:91:8c:cd:9b:c6:91:af:72:6e:42:a2:
f6:e7:d9:55:05:16:e2:07:6c:3c:34:42:31:25:6b:04:73:4b:
03:2b:a2:f3:37:0f:6d:0c:52:94:b5:b8:60:04:38:1a:f0:b2:
b5:eb:b3:ff:c4:b0:08:43:a4:c4:89:c2:50:9c:cf:d6:1e:b9:
31:11:ce:4e:84:1a:06:4e:af:9f:eb:70:56:a7:ec:1a:0c:9c:
b9:cd:15:7c:e7:7b:0c:86:40:b2:60:32:39:48:64:6e:81:ea:
07:1c:c6:af:e2:70:dc:3e:b2:7c:85:b8:65:98:6c:8b:44:b5:
62:a8:26:19:f9:2a:67:48:09:bb:48:76:99:85:b2:6c:90:09:
b7:bd:86:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org