Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Yiu2wefXCcSUbg8yTnZISbroitI.roa
File: Yiu2wefXCcSUbg8yTnZISbroitI.roa (raw, json)
Hash identifier: +elffdrTuGS6juLIn0QbYZ6HW+Ilooit+2k3ri/UXxc=
Subject key identifier: 62:2B:B6:C1:E7:D7:09:C4:94:6E:0F:32:4E:76:48:49:BA:E8:8A:D2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12C3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Yiu2wefXCcSUbg8yTnZISbroitI.roa
Signing time: Fri 01 Sep 2023 08:04:57 +0000
ROA not before: Fri 01 Sep 2023 08:04:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131591
IP address blocks: 203.79.206.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4803 (0x12c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=622BB6C1E7D709C4946E0F324E764849BAE88AD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:14:e2:89:de:de:c7:a7:9c:d8:a9:a8:69:8c:
1b:83:b8:ee:a0:d8:14:76:16:18:63:fe:ef:42:8b:
9b:83:f9:0b:75:2a:83:07:a4:0f:5f:57:e0:80:28:
c2:cf:34:48:f6:e4:9e:b5:16:72:51:27:d8:12:77:
91:50:ef:1e:98:43:f1:69:08:4f:53:d1:89:51:e7:
76:26:ef:8a:db:2f:8d:d5:16:19:ca:00:a5:0d:00:
eb:80:c7:08:82:43:95:c9:94:81:3b:7b:75:4f:8b:
2e:1e:2f:c6:9b:74:a8:c8:12:57:a1:ba:8e:78:9c:
6d:68:26:b0:4d:ec:30:da:9a:c1:b3:20:b9:1d:73:
2e:e9:a9:af:43:3b:05:30:f8:13:9f:d6:03:0b:44:
9b:81:5e:1c:20:12:94:13:15:7a:9e:eb:0c:94:d3:
ce:f9:b2:a8:d6:c0:2e:2b:0c:f5:6a:0e:bf:f9:49:
13:6e:d1:f5:92:bf:93:54:68:86:bb:3a:76:02:f9:
e5:d3:57:2d:16:21:96:1b:ef:85:c1:a5:d7:1a:8f:
6a:bd:2b:15:5c:08:1d:87:0a:63:0d:13:e4:91:73:
ac:94:02:e8:02:f2:d7:81:86:19:74:8e:37:32:ac:
1f:b6:6a:a3:54:72:14:b4:9d:8f:22:2b:42:be:bc:
85:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:2B:B6:C1:E7:D7:09:C4:94:6E:0F:32:4E:76:48:49:BA:E8:8A:D2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Yiu2wefXCcSUbg8yTnZISbroitI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.206.0/23
Signature Algorithm: sha256WithRSAEncryption
70:d7:f3:39:f1:f4:24:95:d4:6c:d9:ce:51:aa:a2:db:6d:23:
2c:de:cd:2b:05:87:76:32:e7:06:0e:e3:86:27:d2:0b:98:5d:
f4:6b:60:8b:f2:b0:c8:85:df:4c:7b:3b:79:79:89:d1:c5:67:
49:ec:cb:38:f6:97:b8:04:ed:b2:6b:db:f5:47:f3:5b:ba:c6:
c9:d2:05:4f:16:9a:a2:ba:03:7b:f2:b9:a4:5b:56:db:cd:57:
73:6e:dd:f7:dc:8f:9d:cf:6d:21:72:7a:c3:17:42:a1:12:67:
9a:13:07:e1:91:d1:a7:f0:db:df:cf:f6:6d:24:3a:12:e8:ed:
77:35:8d:2c:88:92:cd:de:a9:b4:1d:67:b9:ed:fd:a2:43:12:
2c:29:65:85:2b:93:d6:a5:0c:0d:4c:66:24:85:a7:f2:ee:63:
65:7b:2a:ee:06:54:98:29:d9:ad:88:a3:6a:67:6f:0a:2a:b3:
74:15:b3:93:ac:8b:37:53:03:98:b0:0d:3a:e5:a6:56:cc:15:
13:ff:b1:c3:2d:4a:20:b2:6d:ab:9b:25:a1:07:8c:79:b2:5c:
0c:0e:30:0d:33:03:98:c4:d5:f4:a7:ac:15:69:52:f6:d8:e0:
05:54:78:50:46:57:4a:87:8b:d7:d2:7c:bd:ca:5b:05:b4:a8:
68:36:15:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org