Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/cIAbNamOMMAqpTLcVn-Q_azflTg.roa
File: cIAbNamOMMAqpTLcVn-Q_azflTg.roa (raw, json)
Hash identifier: AqGcRlInDe4uw01lOe1mtzWWEmjrIydA8+gTs+EeFwg=
Subject key identifier: 70:80:1B:35:A9:8E:30:C0:2A:A5:32:DC:56:7F:90:FD:AC:DF:95:38
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BFF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cIAbNamOMMAqpTLcVn-Q_azflTg.roa
Signing time: Sun 07 Feb 2021 11:34:32 +0000
ROA not before: Sun 07 Feb 2021 11:34:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.201.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3071 (0xbff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=70801B35A98E30C02AA532DC567F90FDACDF9538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:39:38:ef:fb:7d:18:41:ce:ae:c4:68:ca:8f:
9b:1d:ee:40:73:bd:cd:38:d6:07:b2:6e:21:80:f2:
4f:b6:76:ad:69:6c:5a:db:06:89:c7:25:db:ae:77:
a8:f2:5c:12:12:44:b1:9f:6c:43:0e:85:4d:f7:f4:
3a:ad:47:7c:c0:7f:2b:00:1f:68:ee:4c:f9:52:40:
c8:0b:62:ca:11:8b:3a:7f:89:64:0b:e7:bd:71:06:
d2:04:e2:65:3b:68:f7:46:a3:ee:79:7e:56:0e:fd:
99:cb:b1:51:9c:1a:df:c5:ca:fd:82:89:5b:eb:0a:
90:ca:01:56:c3:d0:95:37:ad:6b:56:fa:07:9c:e4:
fe:96:86:23:86:7f:e9:42:dd:39:14:75:3f:a4:9c:
36:3d:6a:6b:0c:81:2f:1d:6b:d3:52:41:2a:10:ad:
24:66:5a:03:a9:87:fa:84:33:2a:ac:6d:0e:7e:c3:
7f:7a:9d:ff:fb:ad:8b:a9:bc:ee:9d:ed:60:aa:51:
a0:b8:a3:44:fd:36:6b:9b:c5:38:7e:a3:49:47:4a:
d4:92:35:c8:f8:d0:0b:de:fa:04:08:98:1c:2c:aa:
45:56:e8:ab:78:7b:03:59:e8:91:b5:02:c9:52:60:
06:5e:ac:45:f9:32:e0:dc:3e:6e:d2:a0:d5:19:c4:
bf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:80:1B:35:A9:8E:30:C0:2A:A5:32:DC:56:7F:90:FD:AC:DF:95:38
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cIAbNamOMMAqpTLcVn-Q_azflTg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.78.0/24
Signature Algorithm: sha256WithRSAEncryption
84:76:1b:9a:87:87:1f:4a:8d:fb:7b:07:e9:bf:ae:d5:a4:e9:
5b:e6:e5:eb:99:a8:23:30:4a:f1:8d:d9:0a:1a:bf:53:13:71:
08:74:41:f2:a7:a2:ea:dc:ff:88:13:18:be:19:c8:d7:5a:32:
db:1a:bb:36:3b:e3:08:ef:5c:77:29:6b:c1:62:d9:ca:a5:6f:
b1:8a:e9:23:03:83:c1:ed:26:63:2f:79:db:74:59:7a:65:86:
8b:5f:47:f9:93:31:b5:bb:87:e8:48:5e:23:92:d9:48:6a:29:
3e:3a:1e:04:eb:e5:04:91:5d:b8:da:83:4f:b2:75:f5:d3:77:
ab:e1:0e:a2:e3:93:c0:c1:00:88:35:ce:e0:87:13:e1:b7:6a:
6a:69:54:17:bf:52:fd:12:e1:ca:89:72:f7:bf:f2:36:7c:31:
7d:23:4d:bf:7e:ea:9c:a9:d0:97:f0:1d:6c:fe:11:d1:be:98:
f1:17:20:e6:03:d7:f6:42:e3:82:03:a6:92:3a:98:65:35:71:
71:1a:f7:79:99:d4:33:44:ef:a3:9d:41:f9:cc:6f:b5:59:a7:
19:ca:3c:66:b3:2d:82:03:3a:84:1d:74:bd:3d:31:61:0f:0b:
45:1c:9a:d5:84:d5:4f:d2:36:f6:dc:6c:63:70:9f:dd:6d:5f:
6e:39:07:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org