Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VhFIajlBwwP4jnzqj2XQGXIqAyA.roa
File: VhFIajlBwwP4jnzqj2XQGXIqAyA.roa (raw, json)
Hash identifier: nV2R+gRI5Vv4Eb2EaGN27nclBZt6p2J7MsixgkgW6ic=
Subject key identifier: 56:11:48:6A:39:41:C3:03:F8:8E:7C:EA:8F:65:D0:19:72:2A:03:20
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VhFIajlBwwP4jnzqj2XQGXIqAyA.roa
Signing time: Thu 15 Sep 2022 02:39:58 +0000
ROA not before: Thu 15 Sep 2022 02:39:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.200.16.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5611486A3941C303F88E7CEA8F65D019722A0320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:38:2b:37:ab:b3:dd:a8:02:2b:31:47:45:47:
56:9e:c2:c7:a1:2c:e0:ee:e3:82:9f:b2:8b:3a:d2:
b0:54:32:a0:fc:ab:42:a4:72:44:cb:60:6c:8c:d0:
37:a9:63:40:92:d7:73:7c:d9:20:52:53:b9:fb:90:
42:9d:cc:17:8e:a7:ff:ca:3c:30:e2:3a:2c:8e:8c:
cc:58:40:29:1e:40:ed:db:21:82:d3:84:b1:1a:6a:
74:a6:e1:d7:37:3b:86:99:0d:e1:a2:b6:90:ad:63:
cf:f9:0f:66:ef:60:e6:aa:e1:82:73:4a:11:87:96:
93:26:ba:17:8f:48:9f:13:c7:b5:96:c1:30:30:c1:
28:7f:9a:9e:62:77:b1:78:49:4f:f6:a5:84:d6:98:
1b:32:ba:c1:ad:85:90:8c:d2:38:5b:94:e5:01:a7:
54:9b:a8:91:5c:0a:b9:ee:a1:21:8f:e1:0c:fb:86:
ae:87:82:88:71:15:40:0e:b5:13:b3:f5:6c:38:14:
c8:10:27:04:6c:16:20:0a:c0:cd:e4:f7:01:f4:d1:
04:55:f7:10:fb:7a:1d:dd:93:de:f0:06:33:1d:37:
5d:d1:2f:1c:7c:06:36:f6:50:b5:b7:1c:7b:58:d5:
0f:e1:09:1e:f3:12:1e:0b:3b:2f:42:3e:4a:11:ce:
77:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:11:48:6A:39:41:C3:03:F8:8E:7C:EA:8F:65:D0:19:72:2A:03:20
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VhFIajlBwwP4jnzqj2XQGXIqAyA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.16.0/20
Signature Algorithm: sha256WithRSAEncryption
72:5b:67:01:9e:c5:ef:7a:eb:e1:e7:b7:04:53:3b:cf:1c:bf:
0b:95:1e:75:51:6e:7c:ed:60:9a:ef:db:7d:20:3c:af:f8:b3:
64:09:d4:79:4a:77:ac:58:05:d2:8d:3e:f4:15:e9:13:68:b4:
24:65:44:9a:89:3c:bb:33:ef:85:25:01:08:e6:cd:6d:f6:a9:
aa:af:24:3c:19:d1:7a:f4:ce:46:e4:11:3a:77:a8:a6:69:9d:
01:a4:7a:be:c3:32:f2:e3:ef:7a:9e:a6:5b:c8:ad:2f:ca:e2:
9a:f2:79:f7:2e:de:be:1c:b0:e2:9e:f2:5d:71:ac:db:ac:4d:
19:c8:33:d3:ff:43:1b:ac:ad:e5:a0:a4:7e:7d:eb:23:76:07:
9b:a8:54:39:08:83:a2:a5:42:43:6a:35:31:76:a7:ae:b2:88:
16:62:aa:b7:7f:80:c9:d9:88:d5:ff:94:9a:e1:51:07:78:ae:
bf:e2:bc:33:f8:84:a8:06:0f:bf:92:25:46:e9:6d:f8:9b:64:
58:c0:af:01:50:02:12:82:6b:3b:d1:16:99:b4:70:da:b1:2d:
b3:45:98:ba:d0:ed:6f:c9:96:a1:99:43:c4:37:0d:ba:cf:2b:
0a:6c:30:71:a8:9e:9e:c0:d3:c3:d2:d4:28:85:39:a6:08:89:
59:bb:50:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org