Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Xo4dJc-mpO863NdkrQWAcQZiBWc.roa
File: Xo4dJc-mpO863NdkrQWAcQZiBWc.roa (raw, json)
Hash identifier: KdjaGKGmdSYimWc2/m6gLSw63V3/rGc+k6DdfcUrTJ4=
Subject key identifier: 5E:8E:1D:25:CF:A6:A4:EF:3A:DC:D7:64:AD:05:80:71:06:62:05:67
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1252
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Xo4dJc-mpO863NdkrQWAcQZiBWc.roa
Signing time: Fri 01 Sep 2023 08:04:19 +0000
ROA not before: Fri 01 Sep 2023 08:04:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 2404:0:2000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4690 (0x1252)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5E8E1D25CFA6A4EF3ADCD764AD05807106620567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:17:ae:68:86:b0:ff:da:26:03:97:af:dc:37:
62:a4:78:89:a6:2f:58:7d:74:f0:57:b9:db:ec:0f:
b8:fa:5c:88:c4:4c:b0:74:be:3a:56:3f:bb:16:e0:
1a:9b:f7:a2:8d:cc:70:92:67:3c:e1:b5:23:02:95:
0c:c1:32:a5:28:4b:b6:e4:95:d4:d5:28:32:2c:22:
9d:64:b5:8e:db:1c:dd:60:24:72:59:bd:7f:c3:02:
e5:ae:2a:f4:9e:3e:5b:df:06:15:d6:45:20:d2:10:
41:17:b4:7f:74:20:a4:76:1c:7c:01:fe:fc:c8:1b:
29:92:a6:9e:62:e2:bd:27:9b:b6:88:4e:ac:09:09:
18:d3:d6:ef:a2:91:c3:b8:1e:b3:58:2d:97:a6:00:
bb:42:0b:02:f1:ef:45:7d:03:14:d3:28:3e:88:8d:
d3:6a:62:82:9f:86:3e:bf:06:b6:7b:29:6b:c2:03:
10:53:9f:29:3f:8c:4c:20:2d:97:83:3d:19:01:b4:
e1:9b:da:b7:d1:5a:d5:31:82:c0:86:1f:f1:78:fd:
49:13:9f:5b:fd:f8:90:45:c6:16:ec:c0:9f:c1:0f:
7f:00:9b:ce:61:8e:ac:6b:b9:7f:7b:cf:60:1f:3a:
0b:7a:97:a1:c8:9c:be:4a:b5:05:99:ea:02:df:29:
53:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8E:1D:25:CF:A6:A4:EF:3A:DC:D7:64:AD:05:80:71:06:62:05:67
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Xo4dJc-mpO863NdkrQWAcQZiBWc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:2000::/36
Signature Algorithm: sha256WithRSAEncryption
3e:c7:30:5a:ef:cd:90:91:1f:6c:24:bb:48:d9:8f:7b:62:d6:
b1:93:3f:1c:40:5f:2c:73:f5:8c:5d:82:37:07:df:df:14:04:
8b:4a:b7:04:ee:43:35:d5:11:7d:db:03:d8:bd:c9:a9:3c:d6:
fc:a6:84:1c:7b:25:7f:79:d8:b9:dc:8f:d6:de:3e:13:51:36:
30:9a:59:5c:de:39:b4:ff:ac:08:67:3c:cf:2f:9a:1a:c4:1d:
c6:69:63:6b:b4:38:03:c7:e5:e8:f8:44:2e:98:1b:22:44:03:
64:29:ca:a6:44:42:4c:6a:11:8a:ef:e7:0b:ef:93:34:f8:23:
8c:79:48:5d:8d:da:5c:a3:d1:79:81:c5:ae:fc:8e:74:8c:88:
85:8e:51:7a:69:b8:13:36:ff:51:a4:88:97:fa:ad:3b:40:84:
ea:4d:f9:c7:41:ba:06:36:00:eb:ee:3d:da:5c:03:f5:df:92:
f2:ef:fb:66:aa:25:40:34:00:8b:73:ae:ad:65:55:ff:ae:3d:
9b:06:14:b3:f9:ce:b7:44:8b:19:66:30:d2:5a:23:0e:24:b2:
6a:ae:11:37:f0:e5:61:6c:66:23:53:26:53:61:18:ac:fc:a0:
b6:09:d7:dd:02:c7:02:36:d7:65:c4:4d:6f:fb:7c:82:85:b6:
8b:61:13:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org