Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/XfdsVPyPeyRcJcmnjpbN256GGf0.roa
File: XfdsVPyPeyRcJcmnjpbN256GGf0.roa (raw, json)
Hash identifier: VXItd7wqccBuYxtklYkMtrdwJif12ONlklBfE+7mdyg=
Subject key identifier: 5D:F7:6C:54:FC:8F:7B:24:5C:25:C9:A7:8E:96:CD:DB:9E:86:19:FD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C73
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/XfdsVPyPeyRcJcmnjpbN256GGf0.roa
Signing time: Sun 07 Feb 2021 11:39:38 +0000
ROA not before: Sun 07 Feb 2021 11:39:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3187 (0xc73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:39:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5DF76C54FC8F7B245C25C9A78E96CDDB9E8619FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7d:7f:6f:25:ae:d8:6e:8b:dd:1e:0a:26:72:
cf:26:bc:6d:30:10:c8:87:f9:fa:bb:e6:fd:9f:e6:
b7:06:cc:3b:71:89:b5:07:dd:b5:a9:08:28:23:33:
1b:a9:65:ae:49:d6:5a:f1:71:4d:17:39:ab:13:f9:
dd:85:b5:c4:6d:8d:12:5e:56:f8:37:34:e4:51:bf:
27:45:06:30:be:1e:a3:31:97:a6:c6:8f:19:56:fb:
e6:05:e8:94:72:3e:44:1c:74:e4:d5:70:c6:4c:0f:
bf:bf:19:38:ce:a9:b1:43:e7:fd:54:82:dc:ac:30:
a4:8b:14:8a:76:4d:29:bc:91:8d:05:6e:78:69:54:
bd:91:d8:1e:c7:b8:b1:1f:8f:a6:25:e8:17:94:72:
28:91:00:1f:bd:65:7d:cc:97:da:5f:8f:e5:c4:ae:
aa:e7:ec:37:ee:7e:be:c3:5c:bc:05:8f:5f:69:ae:
57:4b:b3:01:00:aa:d0:f2:da:9f:9b:55:d8:30:0d:
2a:56:14:21:19:cd:20:e3:3a:5f:5f:0c:e3:1f:53:
0d:36:c5:42:6b:01:80:c2:98:d5:57:28:b7:6d:48:
d9:ba:f0:d1:16:1f:21:f0:42:b6:00:de:f3:89:25:
7d:74:63:6d:9c:50:3e:00:4c:65:08:f7:e3:1c:18:
db:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F7:6C:54:FC:8F:7B:24:5C:25:C9:A7:8E:96:CD:DB:9E:86:19:FD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/XfdsVPyPeyRcJcmnjpbN256GGf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
62:c4:9f:65:81:be:11:a3:73:68:de:5c:fc:77:97:d9:21:e4:
b6:f8:a6:8d:8e:80:12:af:bd:66:38:de:16:1b:1c:35:a6:56:
72:be:93:72:a2:ae:77:1e:d9:0d:68:1d:bb:1e:34:85:18:64:
25:4f:f6:c4:87:b1:27:d5:00:f6:0c:e4:51:6b:42:54:d6:f4:
cf:12:10:68:67:21:8a:9f:d7:a0:f6:83:16:f9:ff:22:18:5e:
a8:1f:41:e0:90:fd:f3:80:e7:ec:af:74:5b:6d:35:2b:22:d7:
f8:5d:af:bc:f4:0d:05:cc:e1:1c:58:91:75:d0:23:43:f8:c6:
22:0f:44:4c:08:8f:c4:00:26:4a:2a:7a:1c:b3:f3:a3:0c:81:
1e:3f:29:82:d6:73:2a:1a:b2:16:32:7b:6c:46:2b:f1:cc:ab:
52:e9:cd:ad:e1:02:be:80:26:1d:8c:ec:c8:0e:ba:6f:46:56:
a2:dc:bf:50:12:87:8d:4b:ae:8b:6b:73:d4:19:9f:4c:98:cd:
bf:97:73:a7:05:8e:3e:6e:c1:13:ba:7d:a3:89:4a:c0:a7:b9:
82:88:ed:b0:d3:15:c7:8c:5c:53:8b:41:e4:4b:fb:d9:81:a3:
78:85:16:85:50:f1:93:f0:e6:c7:db:8b:fe:3c:7e:77:d6:c2:
0b:16:5a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org