Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_Tyk1ftQwlSbETvCUJWfNQE76z4.roa
File: _Tyk1ftQwlSbETvCUJWfNQE76z4.roa (raw, json)
Hash identifier: JFf9HA6m0sbBuLva+DqIq28IqB/W0fRmvJWOGo1WUBg=
Subject key identifier: FD:3C:A4:D5:FB:50:C2:54:9B:11:3B:C2:50:95:9F:35:01:3B:EB:3E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_Tyk1ftQwlSbETvCUJWfNQE76z4.roa
Signing time: Thu 15 Sep 2022 02:40:21 +0000
ROA not before: Thu 15 Sep 2022 02:40:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 222.156.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FD3CA4D5FB50C2549B113BC250959F35013BEB3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a6:09:e1:57:11:04:82:4a:27:18:15:1e:f7:
bc:e2:46:61:24:e3:80:c7:29:0c:3b:7a:4b:ee:74:
12:17:a3:fa:af:35:e6:b6:d2:6e:03:69:4e:49:49:
2f:f3:57:da:b3:84:b1:85:b3:9d:0b:d9:21:c7:f5:
f9:7d:fe:09:36:af:c0:66:49:12:04:9c:00:e5:a9:
c2:b4:e8:ca:8a:d7:3e:a0:ac:0e:4d:01:ae:bb:ec:
3b:64:d0:0b:fa:37:ab:6a:5a:42:33:fb:0f:76:72:
34:ba:89:e4:48:cc:85:01:9d:41:da:76:dc:50:f6:
dd:9f:8e:91:2a:a1:73:2d:85:5b:71:ef:89:7b:2f:
00:78:a4:9f:85:01:7a:e4:54:77:ab:ae:cd:dd:05:
4a:ff:a4:c6:19:9e:36:10:27:2b:3f:cc:16:44:f9:
b5:ff:6d:3d:50:65:da:95:2b:21:07:f2:c6:ef:71:
f7:f9:5a:b1:5d:64:5c:f2:8b:c4:3e:40:ec:d2:f9:
2f:84:12:b0:87:ad:7f:15:2c:31:26:ef:7a:89:81:
19:c6:19:f2:7f:8b:91:9a:c8:b1:a0:ff:19:73:df:
42:bd:19:64:4d:ea:9f:0f:81:e0:93:2b:57:39:77:
48:15:67:17:5f:df:ea:9e:30:3c:3e:f6:d3:bf:4e:
84:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:3C:A4:D5:FB:50:C2:54:9B:11:3B:C2:50:95:9F:35:01:3B:EB:3E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_Tyk1ftQwlSbETvCUJWfNQE76z4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.247.0/24
Signature Algorithm: sha256WithRSAEncryption
93:8a:b5:b7:15:42:8a:89:8a:a3:e3:6a:26:21:c6:19:63:14:
fa:0b:96:58:3c:5b:c5:ec:20:38:91:02:d2:77:75:1a:df:f1:
8b:ec:6f:ff:52:92:7a:46:08:fc:0b:c3:a7:36:4f:8d:1a:50:
16:e1:35:ee:8d:00:71:2b:9e:10:f3:05:11:38:c8:69:11:95:
53:fe:df:db:4a:43:3e:e3:36:41:f2:03:7f:7e:46:9b:67:67:
13:f5:b9:33:98:f4:0d:80:03:9b:5e:47:62:35:8a:d3:9d:c4:
d8:4d:9e:ea:6c:cc:73:a3:e1:c1:fd:06:1b:14:42:61:49:6c:
eb:9d:a5:b6:a8:3c:84:d4:0a:10:50:02:7d:8c:52:10:02:e4:
52:a9:9c:2c:ef:d7:d6:fa:1a:bf:a7:e4:21:54:82:a7:79:a8:
c7:32:6f:07:c0:56:db:58:37:ce:9f:a8:01:56:17:17:5a:1b:
12:73:c2:86:dc:36:e9:b9:b2:9f:52:a0:39:52:37:33:7f:20:
78:fa:c5:4c:57:fb:a7:c6:22:3b:01:28:d9:5e:e7:46:eb:c8:
60:aa:6f:9f:25:75:c8:5d:5e:6e:43:c0:eb:e1:45:c7:b3:52:
0e:94:e3:48:4d:87:92:15:c7:4f:92:0d:5a:9f:c2:3b:c2:ce:
2e:98:bd:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org