Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ca6lY02_N9IN2-cGdqhGtkT4bI8.roa
File: ca6lY02_N9IN2-cGdqhGtkT4bI8.roa (raw, json)
Hash identifier: pBJRj3L1fX+JGORB4wBqFZTVp4YdzkSI5DnWStIS5xg=
Subject key identifier: 71:AE:A5:63:4D:BF:37:D2:0D:DB:E7:06:76:A8:46:B6:44:F8:6C:8F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 096C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ca6lY02_N9IN2-cGdqhGtkT4bI8.roa
Signing time: Tue 29 Sep 2020 10:01:49 +0000
ROA not before: Tue 29 Sep 2020 10:01:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 16625
IP address blocks: 210.203.8.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2412 (0x96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71AEA5634DBF37D20DDBE70676A846B644F86C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:04:a7:07:7a:6b:fb:bd:3d:a6:61:56:3d:81:
eb:bd:25:b2:61:e7:cb:0d:70:f6:ed:50:73:2e:1f:
76:63:33:d4:57:0b:c4:97:5c:b8:d2:ff:7a:9a:eb:
5b:87:33:c3:e0:19:3a:f2:a7:39:e8:39:44:e5:19:
04:c3:d1:ba:f8:14:49:e3:7f:15:df:0d:b0:dd:c8:
09:6e:c0:a8:04:18:59:45:60:05:31:6c:5b:b6:45:
1d:cb:e6:21:95:27:18:52:ac:b4:6e:ca:98:3b:92:
75:bf:d8:17:53:df:90:21:69:de:02:84:8e:54:3d:
5e:02:75:2e:01:eb:ce:55:fd:a7:e5:a9:34:f6:21:
b5:c4:c7:4c:31:3b:fe:c2:4a:8e:74:65:95:a1:a6:
ae:1c:a2:29:c1:8f:eb:7d:e4:5c:c9:db:f7:2a:41:
85:25:13:05:2c:cf:26:df:34:64:83:e6:9b:40:7d:
7b:63:e0:c3:e0:26:fc:80:86:0a:ad:ae:17:62:44:
8a:38:c4:28:9f:62:92:13:0b:4f:4e:f1:f8:bd:c1:
60:42:ae:4f:dd:99:bd:1c:38:fd:09:35:f2:5b:3e:
02:ee:61:d1:ed:3f:11:5b:82:bf:d2:17:7f:2b:30:
b3:60:b9:19:e7:9b:f5:18:a0:12:75:93:3f:4d:fd:
38:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AE:A5:63:4D:BF:37:D2:0D:DB:E7:06:76:A8:46:B6:44:F8:6C:8F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ca6lY02_N9IN2-cGdqhGtkT4bI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.8.0/21
Signature Algorithm: sha256WithRSAEncryption
88:b4:f9:50:90:56:bd:df:52:8a:71:09:2f:40:ae:7e:76:ab:
fe:8e:14:c2:4b:83:a4:d6:c4:14:5d:79:aa:1d:b0:4d:75:df:
e9:68:fc:b1:f5:0a:eb:a3:84:70:cf:8c:3d:c3:36:d4:8e:2f:
f3:8e:eb:07:91:b1:16:89:af:73:0e:aa:cb:46:03:46:f2:6a:
f1:a9:fc:37:73:27:20:a3:fc:82:c2:07:65:40:18:a0:7c:28:
dd:d8:f7:c5:6b:6e:e3:87:4d:cf:cb:a3:90:ff:6a:8f:3d:9b:
02:4b:d7:57:87:69:c0:a7:61:f3:14:8c:be:4e:f9:56:26:b2:
86:d7:8e:63:75:4e:37:7c:d1:6c:90:ee:cf:62:30:3b:09:18:
3c:41:e3:03:af:b7:b2:ce:4f:f9:ea:31:63:7a:02:6d:10:d5:
c6:c4:7f:92:27:cf:c7:55:fa:5f:de:97:e3:a5:5c:8a:55:db:
d0:2d:aa:18:b4:d2:e9:60:f8:0d:e7:ce:f3:80:9a:6f:ef:0b:
3c:b3:39:aa:e0:ec:1c:b8:8d:1e:bd:4a:ae:d8:68:89:47:55:
6b:7e:8f:69:76:b3:5a:94:95:82:3b:3f:b0:3c:af:db:ee:23:
57:55:4d:17:9d:54:93:c9:90:71:43:18:8c:30:a6:20:ed:b9:
59:97:b7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org