Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Z_e6hmf0H3ZfbaOWXV1rAVO2Ajs.roa
File: Z_e6hmf0H3ZfbaOWXV1rAVO2Ajs.roa (raw, json)
Hash identifier: Lr76mrIi2ySFv5OdcSW1lTln59Z3uMxCrHpAI9NYA3g=
Subject key identifier: 67:F7:BA:86:67:F4:1F:76:5F:6D:A3:96:5D:5D:6B:01:53:B6:02:3B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E64
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Z_e6hmf0H3ZfbaOWXV1rAVO2Ajs.roa
Signing time: Wed 29 Sep 2021 02:40:20 +0000
ROA not before: Wed 29 Sep 2021 02:40:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 22787
IP address blocks: 210.58.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3684 (0xe64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=67F7BA8667F41F765F6DA3965D5D6B0153B6023B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:00:a5:0d:9d:ee:00:b0:8a:8a:af:69:de:ee:
c3:e5:55:7f:c0:ea:b6:f3:9b:98:3a:bb:82:e9:b7:
9f:f9:19:1b:2d:a3:22:1d:7e:10:fd:31:b6:64:e5:
ba:1d:84:1f:db:77:4a:68:2b:60:61:fc:45:87:41:
64:fd:ee:6c:9a:fd:67:4f:fe:85:f1:37:8c:c6:96:
bf:49:fe:e7:ee:41:38:55:04:2f:9c:28:33:c2:8e:
ce:e9:92:7b:53:8b:8a:d5:d9:16:c3:18:68:1f:e1:
26:d7:de:1b:e0:25:de:ee:f7:a7:b4:f7:91:fc:68:
27:03:90:b6:6d:b6:db:be:32:76:de:f6:9d:d5:ed:
c2:64:ad:0b:71:4d:d4:20:35:ed:be:f7:02:9a:ae:
c7:7a:42:c6:83:ad:db:9c:68:1b:a2:8d:3f:0c:0e:
cb:28:7c:e6:d7:2d:c5:93:47:2e:89:c1:bd:42:c8:
49:bc:2b:cd:e3:d1:1f:17:86:1e:47:5c:15:6c:89:
db:f7:bf:65:28:46:bb:93:81:42:c6:c1:7a:fa:2a:
a3:43:0e:34:48:82:1c:f8:4f:06:23:03:af:34:a2:
99:ba:2b:12:92:54:83:c8:77:6e:19:ba:e2:d5:5a:
04:c6:4b:84:49:e0:db:4a:bd:94:b0:23:4f:45:b6:
b7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F7:BA:86:67:F4:1F:76:5F:6D:A3:96:5D:5D:6B:01:53:B6:02:3B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Z_e6hmf0H3ZfbaOWXV1rAVO2Ajs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.89.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:d9:3f:3c:d8:a6:3d:18:af:b1:e9:09:2a:c8:63:c7:7d:e2:
b6:88:f6:8f:62:ec:3f:45:ab:1b:04:fe:56:5e:25:d9:fc:ea:
f0:ca:b8:d2:8a:23:c7:2c:06:29:0f:fe:ae:b1:36:81:75:50:
e9:9d:c7:87:b2:29:e0:e1:77:6b:5a:a7:52:a7:5c:a3:29:d6:
1e:83:64:4a:c2:0d:5b:6a:9a:7e:2f:5c:90:74:72:68:7f:01:
47:07:cc:95:f3:6a:7d:6c:ff:94:13:f7:d8:06:c1:95:11:5b:
d3:bb:6d:29:7e:7b:11:2c:e7:ce:69:38:f2:3a:0c:f7:39:14:
21:0f:0a:13:62:b1:33:5f:dc:ff:85:16:c6:d6:d6:54:88:72:
d4:62:af:38:2b:30:60:66:1b:21:f6:9e:18:b8:6e:b0:be:d5:
77:bc:06:b9:79:71:24:5f:95:36:e0:04:97:78:25:27:69:e0:
9e:9c:ed:12:9f:34:f4:51:4d:b8:09:de:ac:f7:0b:aa:62:60:
d3:17:b6:0b:bc:bc:d3:f6:89:d9:29:85:8e:55:ca:a5:ac:6f:
b3:18:69:e9:2e:72:34:f9:b9:87:1a:19:f9:63:d3:db:ed:0f:
0e:36:e6:69:90:e5:1c:4d:bb:11:47:f8:7e:07:b5:dd:2a:a8:
e7:6c:d7:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org