Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/csTWbqkndYmIEcksGSC1sgmnWlg.roa
File: csTWbqkndYmIEcksGSC1sgmnWlg.roa (raw, json)
Hash identifier: JxjYdaJhPtPBtjGU/u+1Ef5KcVSGwRPH+OwcrvWJThg=
Subject key identifier: 72:C4:D6:6E:A9:27:75:89:88:11:C9:2C:19:20:B5:B2:09:A7:5A:58
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C17
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/csTWbqkndYmIEcksGSC1sgmnWlg.roa
Signing time: Sun 07 Feb 2021 11:34:51 +0000
ROA not before: Sun 07 Feb 2021 11:34:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.202.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3095 (0xc17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=72C4D66EA92775898811C92C1920B5B209A75A58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:16:10:6b:0b:49:56:59:c2:05:ea:45:9d:c5:
aa:3f:df:ff:5a:39:70:4d:ae:f2:3a:ff:58:fe:a1:
58:4e:80:68:c1:55:24:6e:47:1e:b4:c0:b6:72:e0:
21:f7:67:9d:b7:78:6a:7b:e9:9c:01:b6:da:7d:f1:
e5:dd:c4:7c:39:8d:e9:84:f8:4e:77:0a:26:a4:ab:
da:b4:ec:31:62:c4:50:6b:36:cc:9f:65:1c:d2:51:
30:fb:98:4d:8b:e4:cc:19:46:8c:cd:b1:02:23:53:
74:79:3d:cb:76:ce:7c:80:e5:a8:f7:bb:7f:12:53:
53:67:e6:5b:f8:8e:ac:25:c4:8f:f8:bb:35:e4:13:
c9:34:5d:5d:7a:6e:c5:ff:82:69:4c:29:f7:23:ff:
21:92:b7:8b:d7:43:32:d1:10:46:87:a6:4f:db:bb:
f7:c0:1c:78:d9:8b:08:b5:b0:a4:e3:d6:6a:e0:92:
45:23:68:9e:2e:97:fb:61:3c:6c:39:5a:48:4c:de:
41:a3:d5:5b:92:41:50:48:18:3f:b8:ef:0e:72:57:
dc:5e:dd:cd:f4:b9:1b:c4:b7:cd:00:43:e5:4e:e2:
dd:79:23:b0:11:87:21:c3:9c:b5:1c:0e:c9:d2:ef:
b8:87:07:5b:08:70:5e:b3:f5:46:ff:e4:29:51:17:
1d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C4:D6:6E:A9:27:75:89:88:11:C9:2C:19:20:B5:B2:09:A7:5A:58
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/csTWbqkndYmIEcksGSC1sgmnWlg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/18
Signature Algorithm: sha256WithRSAEncryption
60:aa:a6:7f:ac:a3:d0:78:f0:8c:3e:7a:93:d4:1c:3f:13:5a:
19:cd:b2:0c:2e:2d:8e:99:05:93:1b:17:30:d1:af:51:7c:d3:
11:57:d4:5f:cc:50:08:26:9c:7f:f0:be:a6:50:8d:7a:53:2f:
d9:34:ee:4e:4f:81:df:3a:0a:4b:30:66:cd:e8:db:25:b1:2b:
2e:1d:fe:6f:70:04:be:9b:85:da:65:a6:97:26:db:f2:90:e7:
64:e2:46:8f:06:d5:0a:70:85:2e:6c:f5:30:94:96:3b:50:41:
c5:39:de:2f:4b:b6:f5:ac:7f:04:20:e5:df:b3:88:eb:a7:1b:
90:95:64:c6:bc:0e:f6:4e:e4:78:e5:60:e1:8a:a7:1e:c6:4b:
c5:f5:9e:52:fd:03:41:30:9f:45:4d:89:6a:52:df:af:40:93:
11:a9:20:a7:5d:e1:c7:e6:86:21:85:e1:51:52:3d:6a:05:bd:
8a:82:f9:4a:e0:e5:0f:5b:94:e0:37:5a:4b:8e:f9:11:48:80:
10:53:04:2a:0c:bb:67:a6:55:ae:e7:b8:02:e3:2e:0c:28:04:
bd:a5:f6:44:45:d8:55:c8:6b:42:c7:22:58:a0:d9:ef:eb:bf:
5e:2e:08:43:f6:f5:32:d7:5f:e3:c6:88:41:52:63:5f:1c:4d:
6d:81:2c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org