Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WQ3UwxY-pMha-odyLjSXLidNdTI.roa
File: WQ3UwxY-pMha-odyLjSXLidNdTI.roa (raw, json)
Hash identifier: zSrv9VmIOdxfjKOMjAS49aXU/QVK3s7Gpc7KZHlzTbU=
Subject key identifier: 59:0D:D4:C3:16:3E:A4:C8:5A:FA:87:72:2E:34:97:2E:27:4D:75:32
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BA9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WQ3UwxY-pMha-odyLjSXLidNdTI.roa
Signing time: Sun 07 Feb 2021 11:33:30 +0000
ROA not before: Sun 07 Feb 2021 11:33:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 203.79.128.0/17 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=590DD4C3163EA4C85AFA87722E34972E274D7532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9e:6f:33:aa:53:43:af:7b:85:cc:26:75:c1:
b4:22:41:6d:76:14:d7:94:ba:20:44:0a:28:8d:79:
0e:88:32:6b:62:45:8f:48:16:67:e1:03:18:5a:4c:
fb:9c:48:35:d3:74:38:1b:08:69:d6:d9:45:f1:86:
23:21:d8:04:e1:69:6e:49:0a:7f:15:38:55:32:b6:
13:92:9f:55:94:d0:f2:15:3c:22:6a:c1:83:46:a9:
11:62:ca:5a:ff:11:cc:94:54:5b:39:8a:1e:83:e8:
76:2d:24:c8:3b:f5:9e:a7:45:f2:1d:53:8f:e6:d0:
b6:52:76:03:7d:b4:0c:81:d7:c3:75:4f:b9:b9:de:
db:0e:cb:21:e9:da:ca:0c:d2:f3:aa:a9:40:ec:06:
17:98:cd:11:f6:6e:4e:36:2b:2a:a9:e5:1f:86:4d:
fa:49:ef:c2:bd:69:af:58:b6:3c:a3:97:02:1e:2e:
9e:6c:77:3b:cf:7b:1e:74:2f:77:da:1a:2f:90:c4:
33:00:9e:08:a5:28:cb:d6:d9:86:72:5a:5e:9f:c9:
63:62:2d:97:d2:cf:ad:d7:0c:e8:23:9c:25:bf:63:
cf:a8:38:59:f3:5b:2c:9e:83:ee:90:ef:f7:76:11:
38:ef:a4:df:b0:09:32:31:f9:bf:82:38:3c:7e:5e:
68:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0D:D4:C3:16:3E:A4:C8:5A:FA:87:72:2E:34:97:2E:27:4D:75:32
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WQ3UwxY-pMha-odyLjSXLidNdTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
61:87:b8:c2:a3:bd:68:e4:2c:cc:95:9e:78:ce:a2:04:f9:7b:
cc:b5:31:69:59:03:8b:aa:3e:a9:10:47:2b:9f:64:12:5a:26:
01:50:e6:97:de:e4:a8:e3:c9:e7:20:1f:c9:c4:6e:05:7f:9b:
3d:6a:31:64:a3:fc:47:fb:ec:da:31:23:70:ad:e9:91:e0:bb:
1a:d8:47:4f:3f:ea:3e:49:24:fc:8a:99:08:ae:a6:5d:42:d6:
24:5d:dc:14:93:b4:e5:c3:ce:47:c7:b2:d3:83:d7:27:76:a7:
e6:04:00:9f:35:00:88:9f:f7:1d:cc:d2:7d:46:d9:81:59:32:
68:5e:23:d4:7b:91:15:8f:00:67:4e:e5:03:59:9c:13:54:d0:
1b:26:df:39:cd:0a:00:ff:75:ce:61:50:5f:b0:72:3a:5e:29:
66:a6:b0:b7:05:c7:a8:29:dc:98:e3:96:d4:65:5d:16:82:45:
c2:e7:3d:b7:f5:56:9e:5e:42:de:17:81:35:9c:da:8c:1c:a4:
be:83:4b:2b:8c:16:8b:e3:74:f0:1c:a6:5d:53:3c:bb:3d:37:
ee:c2:be:af:6d:88:ba:e4:63:bc:39:b4:90:ea:69:0f:9b:e6:
00:87:d4:90:a1:c0:03:43:19:9d:92:0f:cf:d4:d7:ea:35:6c:
2e:fa:c4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org