Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_iIXLuFyQ8jcmHFu-1F82dv4vsI.roa
File: _iIXLuFyQ8jcmHFu-1F82dv4vsI.roa (raw, json)
Hash identifier: dxHteTKufP5BqWV3mWusQkLCZAjG1/UtRUt7EGgD26o=
Subject key identifier: FE:22:17:2E:E1:72:43:C8:DC:98:71:6E:FB:51:7C:D9:DB:F8:BE:C2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10AC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_iIXLuFyQ8jcmHFu-1F82dv4vsI.roa
Signing time: Tue 16 May 2023 08:36:29 +0000
ROA not before: Tue 16 May 2023 08:36:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.202.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4268 (0x10ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FE22172EE17243C8DC98716EFB517CD9DBF8BEC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:81:cc:57:7c:a9:af:83:f3:ae:79:78:8c:5e:
d3:d1:e0:2e:64:7e:62:06:ba:31:ce:f8:ff:c7:dd:
80:cf:99:bc:84:85:4e:70:af:dc:4e:d3:21:01:5c:
4e:84:32:c5:94:77:fb:16:96:ef:2b:a7:81:9d:9e:
2b:68:66:5e:17:e4:36:34:f1:fb:14:9e:32:8f:70:
be:67:82:f5:39:19:7b:ab:e3:de:0d:58:a6:b1:45:
1f:2f:81:45:60:c9:bd:fd:a3:a1:dc:7b:5b:58:68:
a2:aa:5a:80:90:2d:3c:8b:66:f7:8c:90:3d:3e:ed:
bb:2d:8d:a9:ef:90:79:1a:e1:01:fa:35:2a:de:28:
6e:77:30:43:f3:ee:66:68:9d:f9:2f:52:9e:68:3c:
56:07:67:aa:76:3b:0d:28:48:c8:b8:15:85:ba:be:
ce:66:ea:61:87:80:19:83:c8:37:72:12:17:06:43:
7f:e7:f7:2d:b2:b0:c0:1d:32:e8:1c:49:1e:cc:0d:
1d:e8:58:b9:f3:a2:bc:cf:27:8f:17:20:8d:f5:0b:
73:f9:3e:88:90:12:12:a5:b8:45:fe:62:fc:c5:16:
be:45:37:75:d1:0a:b1:94:f0:3f:9e:ed:a5:7c:28:
8c:2e:4e:42:05:8d:55:51:95:54:ef:40:62:85:51:
1f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:22:17:2E:E1:72:43:C8:DC:98:71:6E:FB:51:7C:D9:DB:F8:BE:C2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_iIXLuFyQ8jcmHFu-1F82dv4vsI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b0:c8:51:f4:a1:0e:65:1f:24:ee:20:2d:6f:53:1b:e2:63:6e:
60:8a:1c:ec:cc:3d:e7:07:e6:3a:50:64:f9:c5:c5:7c:c2:87:
7d:c5:5b:1c:d2:31:57:ee:20:37:2d:cb:80:73:f3:03:23:51:
07:4e:7c:c0:df:1a:68:b3:78:a2:3d:80:09:8f:87:ac:ab:31:
f8:08:2d:5d:4a:af:51:dd:0b:bc:67:f0:3f:c0:6a:98:57:cb:
81:64:8d:a4:2b:71:46:67:d8:54:72:85:1b:ad:94:d9:bc:72:
e0:77:9e:c0:b2:1c:31:23:1a:a5:a0:bd:d0:57:d4:79:93:55:
35:8e:27:a2:33:6f:df:fe:44:c8:67:67:5b:96:2b:5a:36:73:
6c:9b:6b:24:72:91:5f:5f:61:40:20:1a:e6:84:a5:0c:a7:ff:
9c:33:74:2a:d7:9e:f6:1d:02:53:6c:88:f0:1a:f7:d1:ad:cb:
68:f0:5d:e4:5d:ee:2e:1a:74:89:4e:55:b1:0d:47:a7:aa:a6:
90:3c:f2:d9:0f:83:93:7b:f0:12:f6:c4:8a:70:1f:cc:cc:f9:
8d:70:66:cb:4b:ca:97:cc:32:9a:63:fc:09:77:22:b0:cc:e4:
bc:85:bc:d7:5b:09:62:a6:d8:62:5e:23:a8:6a:9e:29:0f:5e:
01:16:13:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org