Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Z7VN7OOBNE8c5dqKdrjhPJdoHtQ.roa
File: Z7VN7OOBNE8c5dqKdrjhPJdoHtQ.roa (raw, json)
Hash identifier: yjm/X6oPju5or6cMXMVcmdAub/QEUTYVBS1oMgmgxzo=
Subject key identifier: 67:B5:4D:EC:E3:81:34:4F:1C:E5:DA:8A:76:B8:E1:3C:97:68:1E:D4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 126C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Z7VN7OOBNE8c5dqKdrjhPJdoHtQ.roa
Signing time: Fri 01 Sep 2023 08:04:26 +0000
ROA not before: Fri 01 Sep 2023 08:04:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4716 (0x126c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=67B54DECE381344F1CE5DA8A76B8E13C97681ED4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b5:04:9e:08:d7:62:4e:05:e1:20:ea:95:5d:
bf:a7:37:d0:40:b9:5b:50:a9:b3:aa:41:62:34:9d:
01:3d:f5:e2:7b:20:a1:19:5a:5b:f1:38:99:04:b0:
5d:54:00:c8:aa:7a:3b:d1:43:0c:d0:2b:1e:50:6a:
a4:01:71:04:e2:6d:ef:73:8e:5d:36:7e:98:06:41:
66:37:ac:f4:95:9d:4a:de:a2:ae:5a:3a:fb:bd:52:
39:91:27:6d:0f:41:28:44:a5:0c:b1:af:46:21:df:
55:19:09:1d:53:a1:dc:69:7c:3c:f8:99:1d:f7:2a:
59:95:ab:ae:71:9c:96:ac:7d:83:8b:35:2c:f5:08:
9e:95:75:c6:aa:76:e3:e2:f3:e4:b4:3c:7b:d1:01:
63:5e:55:e7:27:0c:61:65:02:62:d2:23:bb:4f:e9:
3c:ee:34:cb:be:03:cc:6d:f1:07:d8:5b:d4:f4:da:
c8:2d:ab:c6:64:1d:2e:b5:7f:b9:d0:3a:7e:b9:f5:
a4:96:65:c2:27:9f:9f:b7:97:8e:60:79:85:fe:cb:
91:4e:ac:e8:f0:b7:c9:ba:09:e2:77:a1:a0:bc:ee:
35:68:d2:37:95:26:95:b8:ed:21:cf:bf:aa:54:d4:
ef:ad:f0:f8:1e:0f:bf:cf:93:32:d9:af:4a:86:0e:
97:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B5:4D:EC:E3:81:34:4F:1C:E5:DA:8A:76:B8:E1:3C:97:68:1E:D4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Z7VN7OOBNE8c5dqKdrjhPJdoHtQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
16:fe:87:6a:0d:a8:38:a2:03:16:44:d5:96:c0:4e:c1:56:ce:
c9:c3:cf:79:d8:b1:73:6b:98:e3:38:3e:1d:03:d5:4c:47:1e:
cd:4a:d5:2a:3d:d9:ef:6e:fb:96:31:d9:e8:27:ee:1f:f0:d2:
4d:61:42:0b:ce:80:9c:30:cc:34:14:d5:31:9c:12:47:46:36:
99:7e:a7:5a:ed:7b:de:bb:46:b5:f2:d4:79:a0:78:cb:4a:f9:
92:95:b5:04:c7:cc:59:e8:3a:64:1e:60:de:d0:c2:32:37:35:
9a:65:af:90:54:d6:03:ef:8f:cf:93:ec:35:00:ef:74:60:2d:
e5:c2:5b:37:8a:e7:35:bf:99:34:6b:ed:0d:6b:e1:17:e2:8d:
c2:9f:3e:ad:9e:35:18:b4:d4:2d:1b:ce:a7:7d:58:f0:b9:30:
73:fe:90:5a:68:c7:a9:1e:9f:4d:d9:b9:f3:fa:a2:97:57:09:
f6:ce:67:e8:13:ef:8d:ae:26:e2:49:99:dc:89:59:f8:41:e0:
f7:1a:11:32:7d:1c:64:60:ae:11:3a:25:3d:98:83:df:21:c3:
7f:84:52:ba:ab:92:84:7c:35:62:2f:a4:7d:ab:4b:a8:77:50:
bd:91:e6:36:d8:a6:29:2f:31:82:b4:f7:7e:c9:e1:86:d7:29:
b2:41:dd:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org