Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/bD-qYIexY2f8xSPmUh6gDasTXp4.roa
File: bD-qYIexY2f8xSPmUh6gDasTXp4.roa (raw, json)
Hash identifier: c9yrtzdktohRXd0lJzACACLHEXzMi+G0is8M46DgWCk=
Subject key identifier: 6C:3F:AA:60:87:B1:63:67:FC:C5:23:E6:52:1E:A0:0D:AB:13:5E:9E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10F2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bD-qYIexY2f8xSPmUh6gDasTXp4.roa
Signing time: Tue 16 May 2023 08:36:51 +0000
ROA not before: Tue 16 May 2023 08:36:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 222.157.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4338 (0x10f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:51 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6C3FAA6087B16367FCC523E6521EA00DAB135E9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:56:af:12:c2:75:d8:a3:1c:7b:37:ba:a4:
39:73:ca:2c:23:50:79:4a:cb:52:5c:f2:ac:9e:68:
f6:a1:89:6d:ab:65:ef:1d:e9:7d:7d:b0:5c:36:6f:
2c:9d:29:c1:c7:af:3c:59:01:3c:e9:32:5b:dc:51:
b6:2c:7a:19:46:f9:18:73:a6:d4:eb:26:94:6f:c0:
2f:6e:9c:ae:57:38:d5:0d:c9:70:ba:c9:29:de:44:
a2:50:e6:58:12:89:b3:7c:58:de:2d:fe:2f:df:6a:
00:e4:2a:f6:84:d7:02:26:eb:d5:da:08:f4:4b:01:
2b:c6:32:b3:88:d3:3f:01:81:95:97:34:75:72:c9:
f8:7f:78:88:aa:51:a6:19:4e:3b:d5:77:ca:6a:b4:
7e:fd:fc:e2:44:3b:eb:ca:82:7d:65:7c:d0:fd:22:
07:05:47:b6:1b:ea:06:bc:94:06:78:7c:a3:c3:58:
6c:c6:d5:a8:2a:5e:ce:ab:77:c7:78:c3:fd:04:c5:
fd:b4:c2:c6:17:a9:b1:c5:93:4a:fe:96:15:16:81:
04:25:f9:74:71:8d:bf:bf:b5:d4:6f:45:48:28:a2:
d4:dc:ae:76:39:6b:69:ef:b4:4f:62:ce:08:cd:aa:
18:96:2b:9d:57:3c:54:ca:f8:a8:76:99:b9:cf:4a:
76:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3F:AA:60:87:B1:63:67:FC:C5:23:E6:52:1E:A0:0D:AB:13:5E:9E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bD-qYIexY2f8xSPmUh6gDasTXp4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:31:84:31:81:65:bc:4d:18:97:d8:fb:09:5c:76:7e:bc:36:
7b:03:31:5e:8c:11:a3:19:fd:d4:09:6b:c5:a1:a8:bc:23:c0:
89:19:3b:a7:b3:a0:bc:a0:9f:9e:a8:e8:15:61:8d:ad:fe:ac:
a9:8a:59:26:b9:18:f9:fe:a5:ee:a6:19:b8:71:cf:31:b0:1e:
79:7a:5a:1d:49:ac:bf:43:4a:de:2d:cb:21:a2:c5:e5:dc:83:
56:60:ff:13:1e:65:96:68:da:67:fa:53:3d:97:70:e9:86:8b:
9b:4a:0b:5d:1b:7f:25:2a:f3:fa:bb:74:4d:76:85:c4:a4:c8:
89:c8:64:a2:35:8c:0f:29:c5:50:f1:99:1e:bd:37:9e:85:cd:
21:9c:61:b9:6b:e4:6d:80:a9:3c:0e:1e:5f:4b:ff:7f:99:2f:
f8:cc:46:1e:6f:0b:84:0c:67:be:70:75:7f:4b:a3:4f:ae:c7:
5a:db:24:52:fb:3a:b6:98:42:95:cc:59:de:2f:ec:4b:73:9f:
4b:d6:f0:89:eb:6b:fe:a4:eb:7e:52:d6:db:ec:b6:a8:81:31:
17:40:13:45:71:b3:06:07:7c:ad:e9:b6:c0:bc:7b:b3:f9:59:
1c:d1:42:b5:aa:c9:9f:c5:e5:30:94:e1:6d:aa:5b:1c:53:b5:
e0:41:b2:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org