Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VZqHmy1fKrUdIwe-21sEntU7R6Y.roa
File: VZqHmy1fKrUdIwe-21sEntU7R6Y.roa (raw, json)
Hash identifier: o729RgIfqG9owgicooFcqzNuQvlgQgF6+8YTG3KqMjk=
Subject key identifier: 55:9A:87:9B:2D:5F:2A:B5:1D:23:07:BE:DB:5B:04:9E:D5:3B:47:A6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10B9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VZqHmy1fKrUdIwe-21sEntU7R6Y.roa
Signing time: Tue 16 May 2023 08:36:33 +0000
ROA not before: Tue 16 May 2023 08:36:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24155
IP address blocks: 203.201.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4281 (0x10b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=559A879B2D5F2AB51D2307BEDB5B049ED53B47A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8d:03:49:d4:67:94:f1:cd:52:a0:6c:3e:25:
2d:a5:f2:77:21:30:da:37:8d:9e:ac:22:63:01:7f:
02:01:3b:0c:b5:37:3c:ea:f6:90:87:1f:91:b2:db:
b4:19:79:7b:56:89:19:98:17:42:22:5a:9c:e0:8b:
17:05:db:87:60:7a:fa:3e:6b:8b:ee:4a:ef:c8:c2:
4a:25:d6:10:1e:11:ba:82:47:47:ef:16:69:2c:02:
13:ce:9e:90:69:15:a8:d8:db:d9:09:d1:ac:15:2c:
74:10:05:5d:52:1c:f8:57:73:f9:7c:3a:1e:07:52:
a9:ae:59:d2:11:89:d5:bc:79:e8:2e:14:83:fc:ea:
03:b6:f9:f7:cd:31:82:09:47:1b:17:92:0a:bd:2b:
ff:31:28:3f:db:65:d3:f1:ea:51:7d:60:c9:63:b9:
dd:a1:4f:05:d2:7d:f5:cc:64:99:4b:8c:fd:18:3c:
68:15:ea:19:05:48:6a:6f:d2:fd:7e:04:cc:7e:55:
d8:1c:a1:f1:ba:ed:b9:77:06:a1:02:a0:f5:b6:39:
0b:26:05:73:52:c8:53:0a:1e:0a:cc:75:d7:0c:00:
cc:6d:4b:fb:f1:24:b4:a3:bf:51:f6:d3:e4:67:f2:
9c:d8:98:07:b3:f2:56:7e:3f:a4:67:ba:11:67:53:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9A:87:9B:2D:5F:2A:B5:1D:23:07:BE:DB:5B:04:9E:D5:3B:47:A6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VZqHmy1fKrUdIwe-21sEntU7R6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.201.32.0/20
Signature Algorithm: sha256WithRSAEncryption
72:ab:42:17:94:0c:80:cb:f9:a4:09:42:c8:d6:66:0e:0d:bf:
ab:d2:79:3b:c6:8e:c1:7d:cd:f8:25:5e:73:d9:18:db:74:60:
bb:67:69:f3:67:15:21:8d:87:fe:63:2f:27:be:85:04:9b:af:
7d:b0:7f:8e:d4:94:71:7d:f0:8d:2d:59:b2:6d:bd:78:16:0a:
ca:98:3b:16:ab:af:24:d6:a0:dd:6b:6e:1d:1f:96:9e:88:85:
1a:33:5c:ef:56:92:d1:59:8b:75:69:72:9d:86:15:47:ac:c8:
72:d4:f5:a1:ea:3d:38:c4:a1:48:ed:c7:72:e9:ab:8a:f2:de:
57:fa:c6:65:94:de:26:c7:07:8f:53:f3:cb:05:15:13:51:0f:
2e:1f:26:76:69:c0:60:5a:e9:52:db:db:84:ec:e7:0f:14:64:
01:97:bd:01:22:65:97:d8:8a:ae:08:63:54:cc:95:ef:da:42:
10:ad:75:93:24:46:b0:5f:b0:3c:1c:53:99:0e:82:3d:3d:a5:
9b:db:aa:82:b3:c1:80:c2:16:b1:e9:57:54:82:ef:5f:5b:97:
55:aa:58:9f:5c:e8:2c:f8:97:84:8f:78:20:32:10:35:39:a3:
e1:4b:d4:ab:41:1c:89:5a:6b:1a:3b:e9:6d:0b:53:b0:b1:8e:
57:a8:41:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org