Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/YID3ablznhhZAMjdgebEvcX62f4.roa
File: YID3ablznhhZAMjdgebEvcX62f4.roa (raw, json)
Hash identifier: j8gYTseZrsTZXYVdveZIRLyL+BQFvCm0GhV4NCx+xv8=
Subject key identifier: 60:80:F7:69:B9:73:9E:18:59:00:C8:DD:81:E6:C4:BD:C5:FA:D9:FE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 131C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YID3ablznhhZAMjdgebEvcX62f4.roa
Signing time: Fri 01 Sep 2023 08:05:23 +0000
ROA not before: Fri 01 Sep 2023 08:05:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 218.34.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4892 (0x131c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6080F769B9739E185900C8DD81E6C4BDC5FAD9FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:31:24:c7:25:0b:9d:8a:cc:73:79:84:a5:6c:
34:5f:e2:3a:8b:b3:08:ee:f2:66:42:28:56:03:62:
79:4d:ef:27:95:44:34:13:7f:6d:ed:e1:cb:46:3d:
a2:97:99:8c:1d:a3:4b:9e:e5:15:67:59:ea:33:44:
8b:10:bb:b4:f7:9e:31:51:c8:0b:ce:43:84:43:74:
31:41:3b:4c:7b:78:c2:89:e7:4c:f0:39:57:5f:6f:
a5:1d:18:ea:e7:69:01:68:4b:44:87:7f:81:e1:9d:
08:c3:3c:8b:6a:89:30:50:02:8c:f9:d4:5e:03:cd:
aa:6f:5f:39:b6:d5:06:77:44:64:61:ba:6f:a2:10:
5d:64:f5:72:9d:07:d0:42:d4:62:a9:c9:70:5e:75:
31:b7:2d:c1:33:78:6d:88:70:b9:9b:41:f6:9b:02:
0e:ca:5f:93:07:14:d7:0c:8e:e8:52:fb:60:c7:7b:
64:01:79:f2:74:90:49:b1:b7:9e:de:5e:7c:ff:60:
78:ff:d6:26:54:e4:99:9e:9c:36:79:92:af:f6:17:
52:ea:5b:04:c5:e8:44:08:1e:ac:8e:18:cd:ec:0a:
d1:b4:22:f0:94:79:b1:49:a8:ec:39:ce:da:00:3a:
48:07:05:2b:0e:8c:52:65:12:f0:6b:84:5e:13:b8:
9c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:80:F7:69:B9:73:9E:18:59:00:C8:DD:81:E6:C4:BD:C5:FA:D9:FE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YID3ablznhhZAMjdgebEvcX62f4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
63:87:d8:be:45:05:a4:bb:ae:2a:07:dc:b4:ad:f1:6d:e2:ab:
27:5c:41:1a:cf:61:48:50:8d:68:2f:c6:ab:7d:ec:a6:ef:2c:
b3:78:86:61:79:e8:85:be:a6:25:3b:46:91:2f:1a:3b:30:66:
47:ff:73:e6:e0:a8:24:ca:ff:26:c7:96:fd:38:42:cc:32:5b:
b5:1a:9e:8e:f0:fb:9d:ce:7d:a0:dd:e4:8b:76:c7:d4:b1:99:
72:cf:d1:a8:b5:86:53:0b:84:1a:e9:cb:55:f3:3f:de:d4:2b:
11:8b:37:6d:27:59:6f:30:10:1e:a2:d2:bb:0e:8c:05:e9:2c:
59:50:f1:09:a7:99:77:cc:5e:0c:c4:9c:86:86:4b:fe:dc:d3:
e1:d8:bb:e6:4a:d4:9e:7f:64:ee:89:3c:17:ef:3b:0e:31:6d:
33:41:fd:65:69:7a:30:e0:61:cf:f3:39:f9:2d:dc:a1:06:8f:
44:99:ad:00:08:e9:58:eb:fe:34:8a:26:b4:d0:d9:40:18:0b:
f8:4a:0e:f2:bf:de:22:09:55:9c:d1:9c:4b:d8:df:86:8f:41:
9d:c5:85:14:85:24:2d:c2:84:9b:4b:37:ec:4b:e8:b6:d7:88:
ac:77:d1:45:a3:63:c6:25:20:2e:9b:05:64:24:fa:b0:26:fe:
4d:14:73:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org