Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/XFXu2rT8MY-H21D6OLFMS7C1QRM.roa
File: XFXu2rT8MY-H21D6OLFMS7C1QRM.roa (raw, json)
Hash identifier: WtjFY3GPq+f/hmJLBTH+pblcZ89s9vKmdiZrNbk/EOE=
Subject key identifier: 5C:55:EE:DA:B4:FC:31:8F:87:DB:50:FA:38:B1:4C:4B:B0:B5:41:13
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0982
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/XFXu2rT8MY-H21D6OLFMS7C1QRM.roa
Signing time: Tue 29 Sep 2020 10:01:56 +0000
ROA not before: Tue 29 Sep 2020 10:01:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.202.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2434 (0x982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5C55EEDAB4FC318F87DB50FA38B14C4BB0B54113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0e:85:19:87:db:bc:70:46:cb:bd:c1:17:ee:
8b:9f:7e:d6:c9:5d:19:08:c5:42:ac:d9:0b:2a:25:
cf:ff:1f:6f:a0:9c:42:a8:4d:39:7d:1b:fc:69:e4:
b5:15:b8:a5:c4:ad:b7:11:0f:c5:35:a9:ae:22:27:
b5:39:37:36:04:c9:f8:c1:3a:b4:0d:d0:6d:33:71:
e5:12:50:92:a6:69:96:02:20:48:44:85:e6:72:72:
08:be:53:af:b5:87:51:63:f5:7f:7f:ea:64:8a:c1:
72:3a:55:6e:1e:b4:d6:2e:91:ea:4a:94:e7:ec:60:
5d:9a:42:35:83:78:a7:4f:62:df:32:5f:e7:e9:f3:
13:f1:48:2c:89:b1:61:9f:45:be:ab:ac:19:69:7e:
c0:bf:6c:f4:5a:97:89:8f:49:8f:03:fa:a6:08:de:
63:c6:94:44:a9:01:32:8a:54:dd:23:8f:f6:41:7e:
f9:02:91:58:87:23:d9:42:71:45:c1:78:59:00:a4:
9d:f0:97:e1:92:9c:8e:93:48:22:cf:d7:ab:4d:e9:
d4:61:a3:bb:ad:2f:b4:53:ea:bd:c1:f8:09:45:b7:
fb:b7:da:7f:2d:d0:17:b5:d0:ca:02:62:5d:81:f3:
fb:8d:23:5f:61:46:04:db:5a:ad:f2:80:7e:01:bd:
7f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:55:EE:DA:B4:FC:31:8F:87:DB:50:FA:38:B1:4C:4B:B0:B5:41:13
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/XFXu2rT8MY-H21D6OLFMS7C1QRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.32.0/20
Signature Algorithm: sha256WithRSAEncryption
a0:f0:f8:1b:43:b7:8e:97:bc:79:dc:a0:25:10:50:37:76:90:
bd:d3:f7:b9:66:d0:d6:2c:dc:80:35:87:52:12:92:f3:b8:b4:
b8:a6:94:e9:e9:54:0c:bf:4e:b7:55:fc:f9:2b:c2:e1:c7:97:
cf:1a:04:72:c4:4d:37:91:65:37:1a:de:09:69:77:41:7e:9c:
4c:eb:c5:f9:7b:bb:b9:ff:9e:9f:04:eb:20:4f:66:fd:67:80:
55:21:4b:d6:67:e8:b1:97:48:a6:aa:6b:b9:0b:13:29:44:34:
e7:a1:61:5d:06:db:c7:9a:88:7c:f4:ea:d9:13:76:31:f3:a8:
c3:46:45:0b:46:94:9c:dd:d0:cb:5d:1e:d8:38:6d:cd:59:07:
8b:16:3d:63:6d:12:cd:77:49:ff:6e:77:23:49:6f:db:01:5d:
f5:c4:60:c0:18:1b:1e:7e:b5:00:41:2c:e5:b8:c9:06:55:2d:
ce:ad:1d:44:63:59:6b:e6:e1:47:73:1d:1f:57:fa:0f:03:1d:
ac:bb:f2:e5:2e:83:03:ff:ae:a0:26:3d:90:4e:fe:21:6a:e7:
5f:9b:34:5f:ba:d5:de:48:7b:2a:d9:fa:71:e9:7a:f4:a4:84:
6d:24:7e:3e:5f:67:0f:b4:c9:3a:0b:54:54:ee:e6:65:ef:bb:
12:3f:9d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org