Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VMgYlylxFCHCehs3ayhsEdErrZY.roa
File: VMgYlylxFCHCehs3ayhsEdErrZY.roa (raw, json)
Hash identifier: 1uFXBcNRQlxbM/FgWT3yTDe0z8lINUnkNzU+GvmwaaE=
Subject key identifier: 54:C8:18:97:29:71:14:21:C2:7A:1B:37:6B:28:6C:11:D1:2B:AD:96
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 139F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VMgYlylxFCHCehs3ayhsEdErrZY.roa
Signing time: Wed 13 Dec 2023 02:47:22 +0000
ROA not before: Wed 13 Dec 2023 02:47:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5023 (0x139f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Dec 13 02:47:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=54C8189729711421C27A1B376B286C11D12BAD96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:87:55:f5:69:f1:f6:2c:b9:56:ea:ba:20:a1:
73:50:5c:67:14:fc:a1:12:79:73:aa:b3:f0:90:a1:
a6:9c:e5:8b:b5:82:03:c6:b4:cb:4e:33:53:a3:67:
66:b4:41:1d:19:c2:0b:6c:7a:76:09:ba:3d:02:62:
17:01:c9:d5:38:1f:d2:ae:60:93:20:fb:19:d6:53:
18:9e:db:b8:33:21:24:0c:3a:20:aa:db:34:f8:90:
66:26:e7:75:84:9b:b7:e2:87:87:bf:e3:31:ea:d7:
52:74:05:4f:ad:c4:72:02:7c:0c:9c:59:c2:94:fc:
8c:d0:5c:c8:75:13:7f:18:67:e9:c4:25:db:a5:d0:
fe:60:8c:f8:ca:f3:03:c2:0a:2c:17:bd:d8:d6:5c:
fb:12:a9:e8:ca:44:06:e7:6c:a5:ee:e6:c7:c0:2e:
50:b7:5f:b5:bc:dc:fb:15:e6:a3:16:fb:51:c0:46:
46:1d:38:65:82:55:6c:c1:c6:72:07:77:2a:2f:dc:
d7:39:44:80:18:ca:f6:c1:e1:ed:4c:50:ac:29:c5:
68:88:af:ec:fe:1b:d7:63:5e:8f:b7:fd:bf:bc:89:
19:d3:47:c5:0c:21:b8:7c:fe:21:f9:d8:fd:33:f2:
72:43:c1:e4:9e:a4:8f:fa:4e:0f:00:59:c7:12:71:
38:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C8:18:97:29:71:14:21:C2:7A:1B:37:6B:28:6C:11:D1:2B:AD:96
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VMgYlylxFCHCehs3ayhsEdErrZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b7:b5:c6:11:8c:86:b6:47:07:c4:a5:a9:ee:6e:89:eb:50:a9:
e9:ea:8e:76:ee:52:c6:d1:50:80:ad:30:ef:30:16:bf:e4:fe:
11:61:3d:4f:57:38:b5:34:8c:a5:06:d1:b2:c9:d1:e2:c0:ae:
03:7b:95:79:5c:97:15:9a:a0:46:5f:22:29:48:31:42:8c:11:
4c:69:d2:8c:d5:a0:41:76:7c:ec:3f:1c:6a:6c:dd:77:ca:32:
fa:15:61:78:ea:53:f0:31:db:76:00:5b:6b:96:94:c8:1a:21:
8e:0c:c5:9f:c9:3a:07:7e:7a:7f:52:7d:ab:f9:ad:82:f3:e1:
f6:92:2e:26:a9:a9:1c:67:2d:d9:a9:25:48:50:b1:3a:8d:bf:
ab:ce:6e:fd:05:5d:82:e2:f0:f0:a2:43:5d:0a:0d:53:cb:af:
22:d4:27:b6:d3:7c:9e:e3:ef:e6:2f:d0:bc:70:98:b3:99:f1:
27:68:d1:14:41:40:3d:ed:34:2b:d0:eb:40:a5:4f:cc:3d:a6:
6c:98:bc:28:df:73:e1:03:24:4c:31:1b:b5:61:6a:fe:b1:c7:
89:de:37:25:70:78:84:0c:7e:7b:33:ea:d7:ca:92:e7:61:d7:
78:dc:22:ac:40:77:42:8d:98:13:ad:bd:d5:d9:fe:eb:a3:d2:
07:38:6f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org