Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_JoNb7TcQYumYUrF71noabI_VKU.roa
File: _JoNb7TcQYumYUrF71noabI_VKU.roa (raw, json)
Hash identifier: NqNXgQYPCRCkTJ0SFb/WBHWumvdWTuve68Q9SgK230U=
Subject key identifier: FC:9A:0D:6F:B4:DC:41:8B:A6:61:4A:C5:EF:59:E8:69:B2:3F:54:A5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1271
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_JoNb7TcQYumYUrF71noabI_VKU.roa
Signing time: Fri 01 Sep 2023 08:04:28 +0000
ROA not before: Fri 01 Sep 2023 08:04:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.58.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4721 (0x1271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FC9A0D6FB4DC418BA6614AC5EF59E869B23F54A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3f:ff:1a:b2:af:30:ce:ff:0e:7f:b9:ed:79:
41:f8:d1:91:6c:2a:65:8c:a6:ec:ca:81:48:6c:51:
65:ba:4b:33:5e:d2:ba:ec:70:3b:ba:1a:73:85:10:
28:35:0d:bb:d3:e1:f3:7d:b2:7c:61:f2:f4:ef:e0:
98:9c:9b:5e:49:de:d4:1f:ac:17:72:ba:a4:40:7d:
1b:17:72:e3:c4:0e:40:89:87:e2:19:be:00:b4:2b:
b3:b4:be:7a:de:b0:15:e6:a4:cb:c1:3f:f7:a6:a5:
d5:30:0b:81:47:30:d4:b9:f9:81:3a:90:5d:fc:b2:
c0:01:9c:81:f0:16:ae:7d:2c:79:13:a7:a4:81:44:
c8:c8:f2:de:d7:53:e5:a3:46:63:12:c2:e3:7e:f4:
e3:80:f5:80:16:ea:e5:08:06:7a:87:4c:9f:36:74:
94:60:90:b8:a2:4a:86:aa:a7:2b:ce:38:8b:e4:63:
9c:09:58:3b:de:a8:a3:f8:c8:60:a3:8a:9c:ab:fa:
3f:0c:60:8a:c5:ef:a4:52:bd:92:16:78:ec:fd:b3:
a4:e3:b6:3d:5b:4c:a6:12:a8:ed:5b:29:84:69:c6:
dd:bd:df:77:e6:50:7f:17:77:38:31:a7:91:e3:e1:
7e:0f:b8:b2:fe:7f:78:6a:4f:3f:c8:6a:e2:90:b6:
61:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:9A:0D:6F:B4:DC:41:8B:A6:61:4A:C5:EF:59:E8:69:B2:3F:54:A5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_JoNb7TcQYumYUrF71noabI_VKU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:ab:f6:16:09:cb:ad:b1:c1:b2:1e:f0:24:39:0a:1a:60:c5:
a8:1a:cd:c8:ac:a7:9a:04:27:d5:17:17:dd:15:57:b2:8f:f5:
86:4d:e9:9b:99:78:f1:1c:32:c5:b2:9b:fc:c3:fc:ee:02:54:
e2:60:c8:62:d7:d6:83:f3:07:78:88:a1:d8:ad:0f:c5:ba:24:
b7:49:30:3a:63:6e:2a:ad:2d:b5:3a:51:8d:5f:2e:26:ab:40:
6c:9a:5d:28:06:a8:37:20:df:17:49:27:b4:eb:11:27:a4:a6:
9e:40:ea:e8:7f:31:be:29:0f:12:49:9d:b4:4f:4b:8c:14:94:
85:fa:c4:ec:e6:d0:b3:2c:9f:58:aa:cb:04:2d:46:d5:70:4b:
2b:78:21:0c:d7:7e:01:cf:08:0e:d7:ea:ed:74:c3:b9:d2:29:
f6:c3:ac:32:d6:e9:f5:f0:dc:68:96:53:d8:28:c6:07:ee:23:
c6:04:7e:ad:b4:d0:19:60:13:6b:d7:0e:32:32:9e:ff:ab:75:
e1:d4:75:29:e1:28:90:c4:f9:3b:8d:f2:82:23:ca:49:ef:5d:
30:46:fd:1e:4e:20:c6:db:36:ef:2d:57:c9:2b:ff:6c:40:ba:
c4:2d:40:c6:c0:87:af:bf:27:11:ad:24:10:36:f5:05:3c:db:
d3:2a:2a:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org