Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/V_pMQCCgOfqoFndEOW9ne57PqY8.roa
File: V_pMQCCgOfqoFndEOW9ne57PqY8.roa (raw, json)
Hash identifier: vDm6HVOAFsJHh7HT6zsyXIau6z4LQrEXYXt+xNghggE=
Subject key identifier: 57:FA:4C:40:20:A0:39:FA:A8:16:77:44:39:6F:67:7B:9E:CF:A9:8F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12CE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/V_pMQCCgOfqoFndEOW9ne57PqY8.roa
Signing time: Fri 01 Sep 2023 08:05:00 +0000
ROA not before: Fri 01 Sep 2023 08:05:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 2404:0:1000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4814 (0x12ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=57FA4C4020A039FAA8167744396F677B9ECFA98F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:fe:f1:14:8a:f8:78:34:05:fb:4b:cb:15:
e5:01:fd:e1:ac:fa:5a:d5:10:ac:ea:ac:71:85:8b:
91:9c:22:b4:53:95:df:22:01:72:27:ae:2a:e5:a9:
79:5b:18:12:e9:b7:d4:ec:42:a7:cd:00:fe:4f:85:
6c:25:f6:ec:61:cb:14:be:44:23:7a:c1:11:e9:7a:
0d:3f:4a:f9:4d:e2:3d:c8:f3:42:ae:18:d8:cc:0e:
fa:22:53:aa:0f:5e:70:ac:24:77:3e:df:2f:c2:25:
4d:71:d6:c9:b7:d1:a7:f3:b6:63:6a:83:2b:dd:2d:
06:f0:0c:99:3f:3d:86:55:9d:dd:06:5c:00:c6:a0:
58:87:75:8f:23:8d:8d:61:0c:af:06:f6:6e:3e:f7:
cf:b7:88:3c:d3:81:94:2d:78:59:1b:6d:85:80:11:
49:b3:21:5d:aa:9a:48:07:80:b9:74:e1:43:97:f1:
07:c3:26:39:bb:fe:41:b8:66:38:ab:19:70:0a:85:
2a:ff:be:27:95:15:3b:d5:fc:59:49:6b:31:87:60:
76:f6:82:b0:aa:c2:61:c8:a9:46:06:5a:63:d7:e1:
e6:72:a2:54:f9:5b:4f:c5:a9:96:51:c9:0c:49:5b:
4f:fa:19:b8:ab:49:f8:95:b7:5b:e9:32:a2:19:01:
52:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:FA:4C:40:20:A0:39:FA:A8:16:77:44:39:6F:67:7B:9E:CF:A9:8F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/V_pMQCCgOfqoFndEOW9ne57PqY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
88:8c:35:e3:83:c2:fa:86:a8:95:6c:71:fe:c1:8b:5e:b9:78:
92:2a:86:d1:f4:30:d8:41:29:20:30:53:be:9c:3f:81:c3:ba:
15:25:07:19:0d:d7:53:be:16:c1:9b:f2:27:01:38:49:0a:8b:
35:40:b3:c5:e9:1e:bb:0b:3a:1e:33:96:ed:6e:f1:90:fd:07:
aa:6f:bd:5d:16:3b:3a:41:4f:69:6a:a9:e7:0c:c6:0a:a4:02:
cb:db:08:08:a9:86:d6:b5:9a:ec:ea:30:c7:01:7a:49:4e:40:
29:09:d1:53:0b:6d:e4:86:6a:a0:bb:80:b8:1e:9f:b5:62:da:
a6:91:ff:be:c1:be:50:42:f7:5e:a8:b4:96:d6:3e:43:1f:11:
70:9e:14:da:fb:ff:cb:e3:a6:d8:3a:df:cb:4a:08:79:d4:40:
1e:3a:ef:98:c6:3d:ad:6a:47:dc:a8:86:a8:1c:cc:df:56:2b:
d0:dd:b0:43:00:da:64:d4:18:30:e5:5d:f8:32:e6:f7:5e:d4:
0f:92:d4:95:e6:1c:21:2e:8c:91:73:47:dc:af:d5:73:35:c5:
98:3a:af:f3:35:93:61:9c:09:7d:81:ee:88:0e:b4:85:cf:52:
0b:3c:fa:d8:1e:4a:9f:c1:77:e5:a8:53:67:af:39:e4:bf:0a:
10:14:88:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org