Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/awM0X_4OlGFLkfnIS2mxWR5c_pk.roa
File: awM0X_4OlGFLkfnIS2mxWR5c_pk.roa (raw, json)
Hash identifier: AT/FbmtFRXop4/PvIH9fwslEIuhKyKiVl2XRWkt9AoY=
Subject key identifier: 6B:03:34:5F:FE:0E:94:61:4B:91:F9:C8:4B:69:B1:59:1E:5C:FE:99
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10EE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/awM0X_4OlGFLkfnIS2mxWR5c_pk.roa
Signing time: Tue 16 May 2023 08:36:50 +0000
ROA not before: Tue 16 May 2023 08:36:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131142
IP address blocks: 223.22.0.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4334 (0x10ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:50 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6B03345FFE0E94614B91F9C84B69B1591E5CFE99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:76:64:f6:da:53:a7:f2:2b:8b:45:75:ac:d9:
6e:f8:8b:57:72:af:c9:ab:ae:5b:80:c4:c4:26:93:
1d:21:4e:3d:f7:dd:46:72:33:38:b9:e8:3a:77:e2:
9c:cd:35:67:7f:e7:c5:a0:c3:59:b8:8c:91:cc:50:
e3:c0:c4:6f:6e:74:57:e7:3c:d6:17:6e:46:e2:cf:
31:44:9e:f0:14:8f:18:c7:97:47:d9:70:82:61:51:
d4:0e:46:de:dd:52:fd:40:e2:fc:17:df:9f:28:6c:
71:b8:dd:30:0f:dc:cd:a2:79:6d:8d:29:58:a1:c8:
b4:bf:67:b3:6b:bc:fa:17:96:fe:3d:d9:5f:c6:6f:
bf:e0:13:a9:9d:2a:68:8f:c6:b7:2e:ff:c6:0d:e1:
b9:e7:28:3d:9f:e7:ac:93:b4:e3:8a:f9:51:9e:20:
68:0d:0d:d5:17:0e:5e:fe:6d:25:b3:77:7a:23:66:
7f:9c:ea:b9:06:ee:6a:60:d9:6d:50:c1:60:38:0c:
ff:a0:c6:2d:b7:05:59:3e:97:1b:fe:19:3e:50:a4:
85:48:02:24:b7:d5:6b:14:b8:00:76:05:97:be:54:
e2:01:32:bb:b2:f5:d6:da:79:dc:c6:bb:d1:0f:25:
ca:87:d9:89:1c:13:86:32:1e:41:25:83:76:62:bb:
62:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:03:34:5F:FE:0E:94:61:4B:91:F9:C8:4B:69:B1:59:1E:5C:FE:99
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/awM0X_4OlGFLkfnIS2mxWR5c_pk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/20
Signature Algorithm: sha256WithRSAEncryption
15:93:0d:21:06:bc:31:6d:c4:5f:6d:5b:37:1d:7c:2c:2c:4d:
ed:12:59:c0:b7:ad:7c:c4:5b:a6:a9:76:fe:a9:a3:79:35:b8:
d7:67:c2:36:31:d5:c8:0a:db:cf:72:cf:3d:f1:ce:f3:dc:4a:
f4:44:de:2d:7d:5f:41:9f:40:e8:85:f3:f6:55:8c:01:98:3f:
20:e9:74:37:33:22:31:e7:05:c9:3d:83:63:ae:07:00:1c:e8:
c3:0c:0d:df:49:9b:4a:e6:a4:0f:25:15:aa:ae:63:49:fe:1c:
84:80:9c:16:e2:6b:98:4c:ea:d8:e1:ce:c7:26:6f:73:83:37:
02:b3:6b:2c:d8:bf:15:81:b0:51:a1:f1:eb:ae:58:15:87:fd:
84:00:1b:3c:51:ef:09:88:46:c4:ea:4f:e5:22:2c:ae:a7:8e:
d7:15:f9:6a:4c:36:81:d1:85:62:4b:47:46:b7:51:8e:2b:05:
3f:b0:31:8f:04:d5:36:48:dd:4a:d9:d7:be:81:7e:8e:72:2d:
84:3b:60:8c:0e:00:68:05:b3:d7:06:ef:4d:b9:6e:7a:b8:99:
e0:c6:27:f7:fe:c7:21:29:a7:f8:b1:3c:d4:32:cb:f8:39:00:
8e:b0:b8:04:6f:e6:de:0b:39:e7:cb:00:42:18:e7:f8:0b:29:
f0:49:56:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org