Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/bijTYB3G5jINOA9_VLUNGxGJKK4.roa
File: bijTYB3G5jINOA9_VLUNGxGJKK4.roa (raw, json)
Hash identifier: wY6lhsUO3qvPOEY84xJYzOZA78VtXU8EdhF/u/FHrSY=
Subject key identifier: 6E:28:D3:60:1D:C6:E6:32:0D:38:0F:7F:54:B5:0D:1B:11:89:28:AE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1072
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bijTYB3G5jINOA9_VLUNGxGJKK4.roa
Signing time: Tue 16 May 2023 08:36:13 +0000
ROA not before: Tue 16 May 2023 08:36:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 203.79.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4210 (0x1072)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6E28D3601DC6E6320D380F7F54B50D1B118928AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d6:27:7a:a5:72:32:25:b6:c4:de:e5:52:68:
41:34:b9:12:fd:90:f8:9e:8f:68:b3:85:49:82:67:
e8:81:bf:e1:18:7f:12:bd:9d:86:3c:31:9e:06:41:
94:04:35:17:4d:c2:d9:4d:36:df:37:55:3e:b6:35:
6f:a7:ff:e7:22:da:af:18:59:d6:c8:96:4c:f9:37:
32:71:fb:9c:8a:5c:13:d0:67:9f:e8:40:bd:d6:d4:
b2:4a:da:78:5d:dd:46:b0:92:89:fb:3d:4d:ac:1f:
9b:7e:50:d3:32:25:a8:36:ef:d1:14:a8:5b:b9:52:
ec:7e:09:52:21:1b:c4:27:53:52:53:2a:5a:47:ab:
43:7e:4a:11:c5:08:9e:13:5a:d9:87:14:43:cc:dc:
1e:96:e5:e5:2a:bd:78:37:9c:29:19:e4:77:f5:5b:
40:0a:2f:c3:e4:63:52:ca:7b:39:50:05:f0:63:85:
14:78:3a:81:69:fa:80:e5:d4:20:c5:4e:e0:97:09:
56:ea:c1:07:82:f3:fa:78:5c:82:9c:bc:c6:f1:81:
bb:ac:4d:dc:a4:b1:66:6f:dc:66:9b:9f:1e:bc:99:
0b:d7:f8:15:b7:e2:af:d8:90:92:60:ca:3d:85:dd:
b3:0b:8b:7a:ee:78:be:df:87:bc:45:cb:48:70:bd:
d6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:28:D3:60:1D:C6:E6:32:0D:38:0F:7F:54:B5:0D:1B:11:89:28:AE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bijTYB3G5jINOA9_VLUNGxGJKK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.240.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:05:60:83:ee:1a:17:04:41:09:99:de:a0:25:5e:1c:81:22:
1e:1c:c5:ba:81:21:e7:3b:8b:5c:c3:48:50:c8:fb:0b:80:d2:
f6:bc:48:81:f7:f7:bb:7e:fb:a6:66:23:01:2b:1e:79:ed:e6:
63:d0:59:6a:ab:9e:0d:1e:19:2f:97:cd:cc:bb:e2:42:81:c4:
8a:78:70:08:67:3c:84:6e:bc:f0:c1:f8:2f:42:7c:18:8b:5c:
53:0a:fe:1c:ff:8d:cf:84:e9:a7:c2:aa:75:74:f7:b7:49:31:
a4:a6:cd:f9:98:88:72:c4:25:d4:16:e6:d7:d6:98:96:7f:93:
60:b9:9c:2d:5f:0a:7a:e1:9d:59:c9:da:97:30:11:c3:b6:98:
66:b4:77:7a:40:d4:42:a3:38:b4:bf:d9:72:b9:80:7d:78:8a:
8b:43:73:65:a9:b9:af:4d:c9:57:e4:3b:df:4c:4c:ad:77:2c:
4d:48:bf:cd:0a:cf:e9:0a:14:3f:f7:8b:39:b5:98:f9:2e:82:
15:e8:5d:9d:bf:92:c9:65:9d:1f:ac:59:a3:9e:28:f1:48:23:
28:38:94:5b:16:21:e4:84:69:75:93:f9:4e:a3:8c:21:00:7f:
42:6d:95:5c:4e:62:62:0e:36:9a:ff:fc:e8:84:3b:90:b0:48:
b1:09:ea:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org