Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ZSJQo7nc70AH5uTtFMAk9fsYIqc.roa
File: ZSJQo7nc70AH5uTtFMAk9fsYIqc.roa (raw, json)
Hash identifier: QHVmrBnDCIcWrOJk04a9sfHP4LoQTCBlf8OyaQ2TDFE=
Subject key identifier: 65:22:50:A3:B9:DC:EF:40:07:E6:E4:ED:14:C0:24:F5:FB:18:22:A7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZSJQo7nc70AH5uTtFMAk9fsYIqc.roa
Signing time: Thu 15 Sep 2022 02:39:49 +0000
ROA not before: Thu 15 Sep 2022 02:39:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 210.200.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=652250A3B9DCEF4007E6E4ED14C024F5FB1822A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b2:2e:8f:71:e9:55:49:ba:4b:b3:2d:86:eb:
b4:0d:b2:a1:e1:96:60:d4:17:45:ea:a9:ce:ed:01:
d8:64:12:d0:ab:64:1b:28:a7:84:37:c8:cb:9f:4d:
86:bd:fa:13:84:25:bd:27:26:66:be:b7:f4:1f:0a:
bc:f4:c6:5e:ce:e5:a0:ed:17:fa:06:10:cc:e6:27:
1c:ff:ef:39:60:2d:bd:01:27:74:11:92:dd:3d:d0:
53:6d:37:d2:66:72:b7:20:10:49:9e:22:5d:e0:99:
5c:d8:49:ee:76:bf:d4:d0:92:e0:48:d5:f2:b8:4e:
8d:ae:06:71:09:88:1e:5c:e1:e2:b7:1c:8f:01:00:
a8:04:5d:13:d1:c1:cc:31:4b:84:4d:45:0c:a9:ca:
01:e7:09:d8:34:1f:12:e2:ba:38:11:e7:3b:c5:5a:
50:44:81:b3:d9:fe:d1:da:4b:db:e2:de:06:b7:d5:
16:43:ee:4b:5d:d9:70:2f:82:6c:51:56:1b:ca:cb:
20:d6:4a:a5:63:d7:c2:d4:9f:72:8f:77:d6:75:ec:
4f:55:a4:5e:4b:7c:ae:60:0f:79:8a:11:9a:15:a3:
c9:af:17:ef:24:be:27:ba:e5:aa:17:c5:5e:31:a5:
6f:8f:bd:c2:57:86:bb:75:81:07:92:79:d7:01:06:
d2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:22:50:A3:B9:DC:EF:40:07:E6:E4:ED:14:C0:24:F5:FB:18:22:A7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZSJQo7nc70AH5uTtFMAk9fsYIqc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:a5:d2:ee:19:6e:1f:70:b0:82:fb:98:9e:a0:e9:45:bf:52:
fe:6d:2f:a3:fe:0d:5f:6e:03:85:9f:5d:01:74:12:15:7f:0f:
89:1b:26:8a:16:fe:2d:0a:20:af:8e:84:77:4a:85:7d:07:b8:
a1:74:f0:e6:69:41:e1:9f:51:01:18:06:4a:19:4f:71:be:eb:
30:0e:20:7c:66:d0:04:67:57:bf:ab:42:8e:b2:8a:63:ef:b6:
57:33:ad:3d:db:e2:54:01:09:09:09:2b:c0:1a:44:83:22:a7:
41:d3:b6:03:a1:1b:a9:88:ee:c8:42:43:cf:6e:e6:ca:ea:48:
f1:4a:14:46:f8:2c:e0:30:ff:c7:07:d7:b1:89:94:c6:41:cc:
0d:4c:c3:0f:5a:85:21:e6:83:68:42:83:e9:84:d2:5c:60:7d:
30:88:12:52:5d:f4:06:e3:7c:94:86:8f:b1:9f:7e:ec:46:2a:
f7:2a:e8:25:c1:2f:30:4f:fc:fb:ca:80:0a:34:67:d9:c7:4f:
a9:54:4e:11:58:0c:73:6b:79:73:93:0b:00:5b:24:07:3c:2a:
a0:3f:2c:40:2e:09:d6:b5:26:58:b5:35:b1:e5:5c:3f:7e:40:
5b:d4:82:8e:37:f0:27:60:33:c8:ee:b9:a6:27:2a:51:e5:e2:
55:2a:37:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org