Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Vks8WGUaJnS0vDkNnfWNMbKXO70.roa
File: Vks8WGUaJnS0vDkNnfWNMbKXO70.roa (raw, json)
Hash identifier: bxjHWJHs52BTHBC5QlLnw/euOEYjzDYW4Z8VTqIv0LY=
Subject key identifier: 56:4B:3C:58:65:1A:26:74:B4:BC:39:0D:9D:F5:8D:31:B2:97:3B:BD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E44
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Vks8WGUaJnS0vDkNnfWNMbKXO70.roa
Signing time: Wed 29 Sep 2021 02:40:09 +0000
ROA not before: Wed 29 Sep 2021 02:40:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 22787
IP address blocks: 210.58.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3652 (0xe44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=564B3C58651A2674B4BC390D9DF58D31B2973BBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e3:d8:10:ba:d3:f8:f3:bc:78:be:fb:d1:d1:
19:8f:20:66:17:0c:d0:c1:37:0a:cd:57:d4:eb:59:
26:ee:13:56:73:53:33:3b:97:e8:6e:8a:1e:c8:59:
c9:77:23:c7:95:a6:c7:3a:e5:c4:a5:61:90:72:46:
1b:08:12:9a:c5:2f:53:b5:5a:dd:39:42:d9:b6:fd:
92:b9:8f:d0:80:f8:52:6c:d3:fc:57:90:ec:03:b0:
08:2c:8c:b5:d6:bf:00:26:3a:c5:46:61:8d:ef:a5:
6d:36:d4:1d:96:d0:01:dc:10:85:40:05:04:0a:40:
1a:0f:6a:c0:21:59:53:95:22:e3:62:c8:14:ba:ea:
1f:b9:0f:82:93:39:92:d8:ea:b2:50:b2:e0:d6:17:
19:d3:d6:52:e7:a6:5d:30:be:2e:ba:75:c8:71:ae:
a6:b8:d0:9a:5b:b9:c9:aa:1c:01:6d:01:4e:49:d7:
29:5b:77:58:0d:e5:7e:cd:74:52:3c:01:2f:20:cb:
23:31:ec:ad:8b:fc:b0:53:8d:b7:70:59:3c:32:e3:
69:a8:45:a7:3f:c2:6b:cc:bd:ea:30:b1:fc:e7:9b:
91:3f:e2:e1:c9:d5:f7:32:7e:26:04:f1:ac:b3:1d:
a3:e0:ca:3d:83:af:6c:f9:9b:d7:56:af:d9:74:e6:
96:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4B:3C:58:65:1A:26:74:B4:BC:39:0D:9D:F5:8D:31:B2:97:3B:BD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Vks8WGUaJnS0vDkNnfWNMbKXO70.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.90.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:06:da:88:cb:e5:10:f0:1f:a9:15:d8:e7:2d:2f:4e:5e:b6:
6b:29:ab:a2:57:c6:db:55:a9:a7:d8:56:6e:8b:ce:76:2c:70:
81:e4:20:0a:df:ff:58:35:b1:6e:66:06:ca:80:58:98:af:59:
71:04:b9:3c:e7:48:27:12:ff:a0:d3:41:09:3a:2d:ed:c3:f9:
a3:7d:19:8d:9b:68:dc:3b:1e:3f:96:10:83:4c:9b:c5:61:27:
34:60:d7:b8:08:e5:c9:72:7f:7f:dc:21:22:ba:6b:b3:35:43:
1f:a0:10:69:c8:b7:5d:a7:11:e9:3b:98:ab:2d:f7:1d:8a:14:
9f:ef:c8:88:5b:d7:34:18:aa:d4:d6:94:78:0c:fd:f4:f1:f7:
9e:e0:18:44:ba:c5:17:20:aa:5f:1d:58:cc:fb:00:19:bb:7c:
3f:5e:20:fa:27:92:0a:66:c2:25:18:72:3f:d7:22:6e:d2:c3:
63:f2:59:bd:e0:04:8d:e4:71:6e:78:96:2c:df:86:a0:41:d8:
21:33:eb:36:fa:47:e1:e0:fd:f1:75:77:da:af:ff:86:c4:8a:
54:20:55:a8:95:ee:be:38:7b:02:37:31:24:72:24:26:25:d7:
07:97:f3:0b:e0:13:a6:a5:76:a5:a2:7c:0c:ae:e9:7c:25:3e:
0f:7e:c3:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org