Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ccURs4hjosUXqrs5gGOe9lU4NFo.roa
File: ccURs4hjosUXqrs5gGOe9lU4NFo.roa (raw, json)
Hash identifier: Gi51K2+z6CbBA4XjBLUt4eaZvh1HnDIf30YguJW6bIE=
Subject key identifier: 71:C5:11:B3:88:63:A2:C5:17:AA:BB:39:80:63:9E:F6:55:38:34:5A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 13A5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ccURs4hjosUXqrs5gGOe9lU4NFo.roa
Signing time: Wed 13 Dec 2023 02:48:16 +0000
ROA not before: Wed 13 Dec 2023 02:48:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 222.250.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5029 (0x13a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Dec 13 02:48:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=71C511B38863A2C517AABB3980639EF65538345A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:76:54:f1:2e:6e:92:c1:4f:96:a1:a8:0b:70:
f2:df:49:9d:c3:fa:5f:ca:19:f5:24:38:6d:41:31:
c9:d1:75:fd:de:aa:0c:79:78:1c:97:53:d8:34:7c:
5c:76:02:e5:f8:7e:d4:4e:08:99:ea:80:d7:68:fd:
25:ca:df:1b:7f:49:38:2b:e0:8f:77:d7:15:a5:dd:
66:33:50:c7:bb:b6:c7:11:5d:69:03:b9:7a:db:ea:
69:fc:17:e2:5b:3f:95:3c:0a:61:23:02:b2:62:b7:
e3:b0:35:a3:58:34:e1:11:35:f5:2f:82:0e:0f:02:
5e:8b:ff:77:b1:0a:ec:cb:e4:cb:e1:78:ae:87:7f:
23:7f:22:88:5b:a8:8e:c1:14:c2:c6:b4:64:61:e5:
a6:e4:56:e5:30:fb:83:0f:bd:8e:46:35:39:f2:43:
b2:45:c5:98:5b:f5:51:3d:e4:22:2e:e8:99:7c:01:
8a:ae:8e:a3:45:ac:fb:07:6c:93:28:60:60:c9:b6:
84:11:40:ec:41:20:34:e2:07:84:02:63:22:f4:47:
0e:c4:fa:7d:54:b4:61:dd:1e:b1:9d:5f:c4:40:76:
c4:6f:ba:59:36:89:37:93:b0:ef:ca:9e:22:13:cb:
50:f4:c6:00:d3:ff:6d:ae:eb:1c:f1:a3:6c:7d:fb:
30:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C5:11:B3:88:63:A2:C5:17:AA:BB:39:80:63:9E:F6:55:38:34:5A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ccURs4hjosUXqrs5gGOe9lU4NFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.192.0/18
Signature Algorithm: sha256WithRSAEncryption
29:9a:84:59:d8:cb:ec:7f:bf:3a:9f:c3:5b:c8:ba:86:6b:89:
ee:b2:ea:6a:bb:91:04:17:2c:b5:79:37:e1:db:e1:89:15:20:
2d:91:f8:16:1e:7f:f5:25:fc:2e:0e:30:02:30:34:af:3b:53:
f0:5a:9d:2f:3b:1a:a5:30:df:a3:07:0a:c9:e1:89:c7:15:a9:
db:d6:82:8c:13:24:18:ec:9a:db:30:58:57:19:f7:ff:01:75:
dc:a2:83:40:33:24:47:08:21:ee:94:b6:68:a2:c9:79:ef:0d:
08:46:db:9f:9a:2c:aa:48:02:0e:ea:1a:b1:cc:00:2a:d7:71:
2d:77:91:e1:8f:6a:de:89:c7:30:53:2d:4f:27:91:c6:00:2a:
b0:cd:b0:f5:47:22:61:87:6e:5b:99:43:41:dd:d3:ce:e5:aa:
d3:19:54:e9:93:07:ca:70:b7:09:aa:54:62:fe:ec:d4:e8:ab:
a1:4f:12:3a:55:5c:d8:3f:2a:75:dd:aa:d2:a6:02:6e:f9:1e:
ad:93:e2:75:f3:2c:09:d8:02:a9:01:3a:d0:13:af:44:f6:61:
41:55:6b:1a:ab:c4:a0:71:18:25:a6:24:9d:c5:b0:ea:4a:25:
e2:b6:17:6d:93:91:0b:41:f6:ba:39:ff:27:45:61:6e:b4:c5:
48:22:ef:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org