Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WM9OTvKMOwCTjweFEN79pXwAafY.roa
File: WM9OTvKMOwCTjweFEN79pXwAafY.roa (raw, json)
Hash identifier: 3RVWESilg0ZykJmtfE5IoohovcD2djbc8aCbSSec0QE=
Subject key identifier: 58:CF:4E:4E:F2:8C:3B:00:93:8F:07:85:10:DE:FD:A5:7C:00:69:F6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BA1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WM9OTvKMOwCTjweFEN79pXwAafY.roa
Signing time: Sun 07 Feb 2021 11:33:25 +0000
ROA not before: Sun 07 Feb 2021 11:33:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 202.178.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2977 (0xba1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=58CF4E4EF28C3B00938F078510DEFDA57C0069F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:55:64:fe:44:f3:fb:22:85:a3:d9:52:3f:bc:
dd:a8:a6:70:48:dd:7b:eb:d6:64:2a:1b:a2:02:1d:
c8:53:8b:cb:4d:7e:b4:29:df:86:e2:77:86:34:25:
ec:05:37:00:54:7f:a3:b9:ba:61:31:4a:92:60:49:
fc:d2:0b:69:1f:1b:73:b7:df:8c:d5:ca:bd:3f:cb:
be:dd:45:4b:e7:b3:c7:7d:e2:9c:1d:e7:6f:a4:d6:
fe:c9:c4:18:49:91:dc:ef:5e:73:22:d2:31:55:f6:
44:a8:aa:c9:6f:06:d1:c0:83:b8:ba:ab:02:93:bd:
03:e4:7e:11:2b:c4:a8:06:07:16:4f:fe:8e:bc:61:
05:19:44:51:c0:a9:93:56:ed:0b:2b:fe:a9:bb:cd:
ce:c1:9b:ae:43:a6:8b:fb:84:0f:1c:3d:93:94:04:
d2:b5:70:70:91:7d:3b:54:71:de:b4:fe:39:a3:4b:
1f:c1:13:fd:af:dd:f8:71:1b:92:70:8b:4e:d4:f8:
c7:70:fa:a4:1e:6b:6c:47:89:12:12:13:97:5c:d1:
b9:20:06:3a:90:69:cf:a9:09:7c:48:eb:a6:ca:7e:
3d:f2:3b:fc:ce:4e:02:24:1a:6c:3a:65:33:91:12:
c5:46:8c:46:5e:e8:2b:a8:9e:7c:81:c4:2d:e4:0b:
99:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CF:4E:4E:F2:8C:3B:00:93:8F:07:85:10:DE:FD:A5:7C:00:69:F6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WM9OTvKMOwCTjweFEN79pXwAafY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
7f:31:56:57:51:49:60:fd:4b:37:8a:d0:1b:07:34:8a:fa:4c:
16:ba:6f:a5:f1:f7:a6:87:ba:6d:ea:4f:0f:ab:18:cd:26:3a:
a4:77:cf:7e:59:5c:8d:60:b2:39:fd:fc:73:a0:07:6d:5a:a3:
f4:35:9e:3f:a4:63:96:ac:a2:9d:1a:97:67:b4:eb:dc:14:3a:
de:e2:42:b0:77:6b:ae:66:d8:93:90:c4:3a:b1:c3:1c:7b:18:
cb:f9:d5:8d:db:a0:68:91:9d:04:76:03:35:4b:d7:e8:95:44:
9b:15:23:bd:4f:f1:a8:e6:9e:d3:22:5a:86:a7:06:96:31:53:
9d:76:38:63:fa:fe:a7:0a:61:a6:cd:77:cf:e7:78:eb:05:58:
cd:9b:e6:57:ee:23:2d:d1:7b:9b:3f:ed:54:45:c7:53:8c:5b:
17:fc:d8:38:06:e3:eb:ec:6f:e4:fe:a4:09:de:d1:f1:c5:b7:
e9:72:13:9d:51:c3:34:f2:0a:d5:29:f5:13:5a:0c:3e:14:f7:
c6:34:cf:bd:02:a1:84:e1:42:12:33:1a:b1:f9:04:81:ca:5b:
45:f2:23:c9:d9:24:dc:45:16:79:79:57:72:67:b2:b5:a5:0f:
39:a3:fa:a4:fa:68:25:35:26:ff:1c:63:27:fe:df:e4:b7:f1:
e8:64:e1:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org