Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/cSbsSRkcHaC--I8AMUVcCRhg2PY.roa
File: cSbsSRkcHaC--I8AMUVcCRhg2PY.roa (raw, json)
Hash identifier: rE5CyoSO2DotCjphPyITG35xjT4dJQVhILRseIvbbi0=
Subject key identifier: 71:26:EC:49:19:1C:1D:A0:BE:F8:8F:00:31:45:5C:09:18:60:D8:F6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 104C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cSbsSRkcHaC--I8AMUVcCRhg2PY.roa
Signing time: Tue 16 May 2023 08:36:01 +0000
ROA not before: Tue 16 May 2023 08:36:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 223.22.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4172 (0x104c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:01 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7126EC49191C1DA0BEF88F0031455C091860D8F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fc:c5:b6:29:66:fa:9a:d3:bd:cd:79:8a:0e:
52:a8:d9:f1:e6:bd:b9:f4:41:36:2b:c7:54:2e:6e:
17:ff:4d:19:54:8b:ca:11:08:56:a9:77:2f:c0:40:
ed:12:0a:29:bc:91:61:40:c9:c3:ed:75:57:49:15:
e1:f5:f0:c0:e0:1b:e2:67:8d:a9:f9:aa:26:fe:9b:
cc:9a:29:ee:e8:70:68:0d:94:73:94:07:2d:00:c0:
a0:48:7f:7c:55:4d:0a:e4:2d:96:0d:91:30:c0:7d:
71:a3:e2:b1:61:e8:cb:f0:ae:d6:82:67:b9:2c:be:
dd:39:71:61:ec:aa:2a:a8:4a:b0:63:80:67:42:f9:
df:d6:b7:4f:8a:d7:9b:75:72:ab:3a:37:8a:b0:38:
54:4b:58:b0:35:51:e0:f1:55:c6:ca:75:71:f9:ad:
06:db:04:21:bb:5f:cb:8e:65:4f:68:19:70:a4:ef:
d1:db:10:d3:24:f8:8f:d4:5b:ac:cf:b7:25:2d:bf:
e3:ad:ee:8a:35:02:a3:31:2b:9c:b7:03:64:59:07:
6c:15:7e:ba:53:e0:20:70:3b:c4:9a:cf:c1:cf:18:
c1:52:c4:e7:2f:a2:a8:df:2b:8e:5c:f6:90:81:b3:
25:67:99:02:f5:73:20:1e:75:ed:2c:2b:b6:0c:64:
06:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:26:EC:49:19:1C:1D:A0:BE:F8:8F:00:31:45:5C:09:18:60:D8:F6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cSbsSRkcHaC--I8AMUVcCRhg2PY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:92:26:a5:5d:09:d9:d0:84:35:89:78:09:1f:44:21:c1:01:
b6:7b:76:d7:65:a1:c0:ca:26:64:d2:89:8d:12:27:12:6d:34:
92:9e:d3:05:9c:28:f7:3b:d0:8b:64:a8:7f:f2:e7:f2:f9:0f:
de:36:74:90:6a:08:78:36:26:ae:74:fa:5d:0f:a5:81:60:6f:
b6:24:4f:e0:64:b8:4d:a2:e1:90:b8:a7:86:1f:17:21:14:98:
dc:b7:f8:66:e0:3d:84:c2:f9:84:40:f4:f6:bf:17:2d:6b:ef:
06:2b:9a:54:f9:c5:00:86:88:26:43:0c:17:c0:d3:cc:a0:75:
ae:25:7b:7b:9f:d4:46:bc:0c:64:7d:30:a3:22:1a:c4:d4:d4:
e2:94:bb:02:f3:d2:3f:31:83:6d:e7:59:53:5f:48:35:39:b5:
18:8a:be:63:8e:d7:a1:7a:23:48:87:ff:a4:d0:aa:21:ff:7e:
b9:5d:20:b2:db:56:6f:7a:2f:1d:cc:46:ac:eb:10:af:ab:c9:
c8:9a:6b:b3:3c:a8:c5:bd:4e:7c:23:ce:f8:91:69:e0:56:90:
0b:c6:2e:83:78:2f:ac:3f:87:3e:2f:64:a5:67:e4:9e:bc:84:
06:df:57:38:65:db:56:2b:77:ae:6a:01:53:d9:52:f3:ff:a5:
0c:1c:50:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org