Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Xurn0OzlZq0gLCxjUV6Ia_U2_kE.roa
File: Xurn0OzlZq0gLCxjUV6Ia_U2_kE.roa (raw, json)
Hash identifier: hKFiKiaY/wwRUErNQRn0kQNeXbvx3DHEltCoZPIC3Zk=
Subject key identifier: 5E:EA:E7:D0:EC:E5:66:AD:20:2C:2C:63:51:5E:88:6B:F5:36:FE:41
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10EC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Xurn0OzlZq0gLCxjUV6Ia_U2_kE.roa
Signing time: Tue 16 May 2023 08:36:49 +0000
ROA not before: Tue 16 May 2023 08:36:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.202.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4332 (0x10ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:49 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5EEAE7D0ECE566AD202C2C63515E886BF536FE41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1d:94:bb:8e:d2:0b:12:8b:25:69:d8:fd:be:
da:8e:91:e0:a2:ba:2f:db:87:a4:19:0f:cc:c2:d5:
d2:92:93:a4:c1:78:40:09:53:78:f0:64:50:99:eb:
3c:d3:cc:6a:a0:34:97:d6:68:05:39:c3:36:68:ee:
05:22:19:3f:5f:1f:f6:a8:0b:3f:12:e1:62:c2:db:
ef:ab:9b:a4:56:4f:5c:d0:54:ab:89:46:cc:c8:32:
03:32:c9:31:56:dd:d5:c7:66:5a:41:05:69:94:24:
61:c1:91:35:fb:1d:11:69:0a:41:fe:31:b2:78:64:
b8:c7:8d:07:00:e1:97:e8:6d:38:46:52:70:a4:b5:
e3:76:cf:8e:52:2e:30:06:7f:a0:8b:67:81:73:a9:
ff:91:94:6c:1f:1d:3a:3a:1b:d1:61:59:be:01:02:
05:37:39:8d:53:ac:c1:df:86:db:14:5d:b5:c4:d6:
91:ed:11:de:9d:c2:df:90:32:91:48:0b:9d:02:24:
86:2b:cc:23:86:9d:79:27:50:9d:1f:13:6a:7b:fe:
82:69:bb:ee:68:11:21:84:8c:63:1a:c7:22:92:10:
d3:a5:f8:7d:ad:21:4b:86:2a:27:fb:62:05:c1:9b:
d6:5b:71:b2:7d:b0:f2:cb:74:73:07:1b:e4:64:8c:
75:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EA:E7:D0:EC:E5:66:AD:20:2C:2C:63:51:5E:88:6B:F5:36:FE:41
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Xurn0OzlZq0gLCxjUV6Ia_U2_kE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.0.0/19
Signature Algorithm: sha256WithRSAEncryption
28:58:81:7b:ce:7f:38:6b:0f:cb:78:a1:7c:8c:f4:84:9f:26:
5a:bf:6a:c0:9c:0f:e6:07:14:3d:3d:1d:56:b0:bb:4d:66:3b:
a8:d5:be:b0:f5:ef:7a:b9:da:64:20:77:98:b4:b6:ce:72:34:
3b:be:41:c3:2d:23:ce:d2:f6:49:c8:b9:d5:97:c2:90:ac:15:
b6:b1:5e:53:9d:25:36:d1:0f:9d:05:12:c2:5f:43:7c:18:db:
a4:1a:92:90:98:f2:4e:36:82:1c:e0:0b:a8:71:07:ec:be:4b:
bd:f8:8a:11:ea:c6:d0:f7:de:15:07:24:b9:37:6e:ac:e2:29:
c2:0b:47:9a:f7:e8:87:eb:50:95:ae:47:15:f3:2a:d3:b1:57:
82:58:45:84:96:ad:4d:76:fc:cd:c0:de:d1:b0:96:f3:b0:9c:
9f:68:03:e1:43:68:23:af:f4:f5:8f:63:82:02:af:a6:27:e8:
58:08:0a:9e:f7:db:69:89:31:cd:50:0c:6d:d6:2f:03:71:4a:
11:88:47:0a:8c:ea:58:ce:5f:39:94:c6:ac:b7:b0:f1:d2:d2:
74:18:a9:1e:e9:47:6e:3f:8c:b2:1c:0c:ba:66:59:89:25:b3:
ad:da:32:7d:75:36:31:1d:16:74:70:db:4f:53:db:88:97:04:
3e:d6:25:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org