Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/YrfrWQRhssCqIxbW-7U1XEKRrUw.roa
File: YrfrWQRhssCqIxbW-7U1XEKRrUw.roa (raw, json)
Hash identifier: 1KuzyVyNum2ORZT8r6L3RKuW6VtNIK/OkKZbVyXZUcc=
Subject key identifier: 62:B7:EB:59:04:61:B2:C0:AA:23:16:D6:FB:B5:35:5C:42:91:AD:4C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1327
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YrfrWQRhssCqIxbW-7U1XEKRrUw.roa
Signing time: Fri 01 Sep 2023 08:05:26 +0000
ROA not before: Fri 01 Sep 2023 08:05:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 210.201.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4903 (0x1327)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=62B7EB590461B2C0AA2316D6FBB5355C4291AD4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:19:12:f7:b2:ce:cd:75:6b:ac:ff:47:25:97:
b5:34:2b:1d:5c:3f:2c:64:46:77:fa:2a:b9:c1:29:
6e:a3:24:01:bd:85:03:45:87:b9:fb:69:c5:2d:66:
01:9d:1f:8c:42:d6:61:0e:5f:a4:e1:dd:8e:cf:34:
bb:1c:eb:f9:d5:b4:34:15:ab:62:cb:c6:b0:41:d8:
89:87:62:5b:62:19:15:49:71:1a:25:b6:bb:5d:88:
66:54:f7:1c:b8:3d:e7:2e:10:78:ad:35:69:d7:d4:
68:9f:9a:a5:4f:11:12:50:84:3e:03:28:bd:86:77:
33:5b:c0:0e:a8:f4:77:ef:78:37:a1:aa:55:e6:f5:
8e:64:99:b0:50:8b:8d:4b:d3:53:39:4f:ba:ab:0d:
7c:fe:f4:9f:fa:11:d4:79:54:ab:84:bf:6e:ff:67:
09:e4:b1:c0:78:73:ed:c3:2c:20:3c:94:9c:c6:29:
79:21:d0:00:b8:e8:36:4a:e0:92:d1:6d:77:f8:bf:
09:f2:f5:86:be:7c:c3:74:ec:8f:86:b4:38:cd:af:
a5:83:c8:cc:90:7a:07:7a:b7:29:e8:1d:10:a7:ed:
be:a4:b1:d4:77:93:57:57:59:58:00:50:ea:f5:27:
9a:4f:aa:78:f8:f6:73:db:b0:6c:c4:eb:c0:f7:9a:
e4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B7:EB:59:04:61:B2:C0:AA:23:16:D6:FB:B5:35:5C:42:91:AD:4C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YrfrWQRhssCqIxbW-7U1XEKRrUw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.76.0/22
Signature Algorithm: sha256WithRSAEncryption
62:52:a4:51:02:7f:b9:6b:3f:16:13:0b:5d:20:3b:d4:9c:b2:
6b:08:9b:7b:e9:a5:7a:2f:1e:f2:cd:fc:71:d7:70:1a:b3:5e:
71:4a:c7:f3:68:3b:46:59:e5:fb:95:6a:a0:80:67:92:47:2a:
6c:ce:3c:2e:00:d6:8d:9e:b0:e3:af:0f:e3:6a:7c:27:b3:99:
42:90:91:c4:70:b5:4f:31:03:b6:0d:6a:e0:56:7f:30:5b:de:
df:02:6b:07:ca:96:51:11:e9:e2:94:ed:b4:cd:82:98:8e:9c:
b5:29:bb:4d:ef:a6:63:44:6e:40:4c:6a:0a:6c:0a:f4:5f:c4:
38:83:df:53:68:ad:99:22:6b:66:8c:f7:a6:66:c1:7f:43:07:
3f:31:0a:e1:20:67:af:b9:64:cc:4b:fd:66:0d:ef:dd:5c:45:
10:4f:85:b3:d5:3c:be:f9:91:08:fa:f8:86:83:2e:d6:76:4f:
35:95:ca:6a:3c:cf:53:68:7d:e7:10:5f:11:86:29:b8:f3:93:
89:d2:62:51:c5:2c:68:fb:c4:25:77:d6:7a:c5:a9:26:f4:b4:
ac:d4:0a:f2:da:73:b2:81:bb:da:30:77:04:0f:5c:2f:bd:9e:
99:91:a3:b6:84:82:03:e4:f4:dd:ba:5b:cc:ba:56:d6:c6:12:
51:87:c4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org