Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WeM5597G6-Pfb94-GBWWQy8gpnk.roa
File: WeM5597G6-Pfb94-GBWWQy8gpnk.roa (raw, json)
Hash identifier: U8pieEBTHJKJtwwHpvxqqAMAzZq7EISFXQM2vrvDoWQ=
Subject key identifier: 59:E3:39:E7:DE:C6:EB:E3:DF:6F:DE:3E:18:15:96:43:2F:20:A6:79
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1326
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WeM5597G6-Pfb94-GBWWQy8gpnk.roa
Signing time: Fri 01 Sep 2023 08:05:26 +0000
ROA not before: Fri 01 Sep 2023 08:05:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 222.157.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4902 (0x1326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=59E339E7DEC6EBE3DF6FDE3E181596432F20A679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:83:7e:8c:52:23:7f:e5:7c:e6:c1:65:17:5d:
d3:79:85:d3:80:cf:6b:32:fd:8a:31:0e:0c:d2:b2:
71:8f:d2:13:d7:72:4f:0e:16:26:95:87:fd:d7:da:
2e:dd:72:7d:dc:7d:87:7b:2a:23:6c:49:36:e4:cd:
e8:fc:8b:69:94:57:17:ce:2a:85:6e:66:ed:6e:24:
e9:f1:a2:55:72:2e:dc:8c:bc:4f:22:fa:3c:40:11:
97:52:fe:ac:b0:3a:30:9d:a9:78:5f:c7:dd:6c:7f:
d3:0f:5e:49:43:3d:e8:48:bd:5f:fb:40:9f:0b:f8:
da:de:18:46:d5:22:e9:ac:aa:f4:1d:51:68:ca:09:
5e:37:4a:e5:4f:4c:d3:d2:87:6c:04:45:3c:cf:e3:
27:4b:75:95:d6:1d:dc:21:3f:f0:38:07:8d:90:a7:
75:fd:cf:17:69:71:91:25:2a:6a:7a:85:7d:be:a3:
72:81:76:d4:7a:63:c5:5f:e2:5d:a9:11:cf:ab:3e:
e7:9e:74:a5:99:05:01:0c:da:b2:51:17:5b:98:27:
0d:e3:9d:ba:22:d0:f1:2f:7f:32:bd:27:94:86:57:
af:34:9d:8c:0c:aa:8c:11:4c:b5:31:37:4c:93:1c:
dc:c5:43:ce:87:e2:86:e1:dd:de:3a:bd:99:2f:c6:
51:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E3:39:E7:DE:C6:EB:E3:DF:6F:DE:3E:18:15:96:43:2F:20:A6:79
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WeM5597G6-Pfb94-GBWWQy8gpnk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b5:27:1c:62:f8:7f:bc:ee:f1:07:6a:1e:d1:a8:54:30:58:7a:
8c:cf:85:2a:57:31:a4:fc:a7:59:2b:99:c0:af:31:5c:8f:b5:
15:a9:60:45:99:77:1b:dd:59:94:54:90:59:c6:80:80:12:08:
88:8c:71:8f:f3:f4:d4:70:4c:76:9c:72:1d:b4:cb:ff:de:3e:
ef:71:4c:1c:15:25:fa:6f:59:3e:9d:10:23:65:d0:6d:a0:2f:
02:3e:ab:35:73:33:1b:c0:b3:5d:cb:df:72:59:65:3c:fc:a0:
3e:1e:91:8c:b4:52:c4:49:d6:3d:53:ee:98:0e:11:99:82:5a:
f6:a7:2f:45:ce:d6:aa:30:99:e0:d5:b4:5d:91:ea:50:84:97:
0b:30:ba:d9:94:de:72:e9:33:98:ce:7c:c8:90:ed:81:36:56:
e7:a5:bb:2a:5b:cd:9a:6c:1f:1d:7d:9c:5d:3c:2d:8e:54:73:
39:46:ad:b5:d7:28:ee:ed:78:94:8c:b5:99:60:67:e7:2c:12:
c0:ec:15:a6:ea:8a:92:0c:39:d1:62:8d:61:ae:55:64:64:85:
c2:06:ba:04:84:eb:a2:0c:ad:29:e2:78:d0:1b:8e:26:bb:1d:
d7:9e:d4:76:c5:7e:0e:41:e6:d4:0e:0c:61:1b:c4:55:b4:c1:
27:1a:b1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org