Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/YHq7VuCW4ubor0YYCyU72JvUAZc.roa
File: YHq7VuCW4ubor0YYCyU72JvUAZc.roa (raw, json)
Hash identifier: iTI3R3BIzPFU9CMK6swx9H29l4Y1P1XX85g72ScWiEI=
Subject key identifier: 60:7A:BB:56:E0:96:E2:E6:E8:AF:46:18:0B:25:3B:D8:9B:D4:01:97
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C35
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YHq7VuCW4ubor0YYCyU72JvUAZc.roa
Signing time: Sun 07 Feb 2021 11:35:16 +0000
ROA not before: Sun 07 Feb 2021 11:35:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24155
IP address blocks: 210.63.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3125 (0xc35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=607ABB56E096E2E6E8AF46180B253BD89BD40197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a8:82:45:35:f6:67:8f:a4:cd:2a:03:50:55:
96:f3:3f:f6:66:d9:f5:4c:50:f0:21:f0:92:b0:e4:
b6:d3:55:69:f5:5b:c0:94:bd:03:cc:d1:9d:cd:aa:
d5:a9:06:3c:37:33:d5:c8:46:92:60:c1:00:c6:97:
90:af:4c:8c:a4:11:f3:b7:54:0d:ab:45:4d:83:36:
7a:45:2f:54:ec:42:dd:82:af:67:1e:d6:0c:db:9e:
16:fe:f4:28:0c:c2:44:30:6c:c3:95:db:9f:be:53:
5f:6e:90:7f:59:a3:3f:1f:2b:cf:82:f5:45:7b:ac:
c0:d7:c2:23:1e:81:f4:e0:81:0b:b5:06:a1:dd:13:
02:4d:8d:14:21:81:7f:f1:98:9c:37:92:5a:10:7f:
55:57:58:5e:dd:77:a7:67:d5:62:7d:61:a5:0e:78:
2c:50:d7:0b:bb:c5:af:11:57:18:de:b9:26:74:08:
27:af:ee:f3:bf:49:a5:c2:c5:d1:ac:7a:c9:f9:3b:
09:89:5e:2b:af:15:e6:af:0a:e3:aa:99:a6:7c:3a:
3b:d1:ce:bc:79:64:ee:ca:45:ca:54:dc:6c:c5:ab:
58:ed:d5:bf:6c:05:37:4b:85:89:69:65:84:f8:d6:
af:c7:d5:2d:71:05:db:95:96:63:e1:b6:7a:b4:c9:
93:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7A:BB:56:E0:96:E2:E6:E8:AF:46:18:0B:25:3B:D8:9B:D4:01:97
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YHq7VuCW4ubor0YYCyU72JvUAZc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.224.0/21
Signature Algorithm: sha256WithRSAEncryption
86:e7:24:71:eb:a0:06:ec:55:ad:58:28:db:c2:8c:05:7b:e7:
40:83:a9:d6:f5:a8:89:de:14:bc:2b:48:2d:3b:73:c6:b4:0b:
66:2a:f7:4a:20:a9:77:ff:3d:14:04:ac:0e:b5:c3:ed:1d:94:
31:a7:c2:e7:70:ea:95:29:05:e1:90:a8:59:08:03:2a:bd:98:
ba:98:cc:fc:8e:d2:5c:28:ee:1c:9e:f8:f3:0f:0f:ba:77:8c:
be:86:0b:47:ff:4d:88:48:fb:d5:91:a6:73:b0:7d:f8:21:49:
f2:a9:36:b3:c3:84:7a:b5:6c:cf:44:05:f6:dd:52:aa:f1:01:
73:8a:ce:00:b1:7d:d9:0f:f0:42:4e:41:0b:d3:64:0a:45:1a:
2e:a8:47:44:49:00:5c:d8:2f:02:95:60:ea:60:dd:67:a4:13:
fb:f6:34:29:7a:b4:ad:10:a7:16:58:b1:a3:29:57:52:25:99:
eb:cd:b6:7d:44:d8:c8:09:de:0d:f4:e9:1d:da:2e:9b:a3:7f:
55:26:26:cb:18:f8:98:b5:94:c1:a2:f4:9b:0f:28:4c:59:d8:
b2:2c:8f:56:c8:00:48:0c:6a:56:14:71:d1:e5:fd:ff:a5:96:
66:59:a9:4e:ea:6d:3e:b5:1a:79:6b:c4:52:1e:f3:49:19:aa:
d3:4f:ef:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org