Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dVLuE2BaFFdRoPcYMcFssKTCB50.roa
File: dVLuE2BaFFdRoPcYMcFssKTCB50.roa (raw, json)
Hash identifier: MmiySxD+6Vv2IJMjfiddPU1mX4gbAtByRzfKfuP3IqU=
Subject key identifier: 75:52:EE:13:60:5A:14:57:51:A0:F7:18:31:C1:6C:B0:A4:C2:07:9D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 102F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dVLuE2BaFFdRoPcYMcFssKTCB50.roa
Signing time: Tue 16 May 2023 08:35:51 +0000
ROA not before: Tue 16 May 2023 08:35:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 202.178.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4143 (0x102f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:51 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7552EE13605A145751A0F71831C16CB0A4C2079D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:00:7d:ea:9b:46:47:0d:7d:a6:7b:6a:72:f6:
c1:d8:fb:9e:f9:a7:5c:91:1d:e3:a2:03:e7:b3:09:
dc:61:85:47:d0:4a:f1:a7:9e:4d:d4:09:b0:37:f3:
09:ff:65:63:5c:c1:d4:05:2a:da:45:dd:88:37:d8:
04:25:3d:25:92:5f:e6:c2:88:7c:48:5c:21:51:29:
76:35:dd:39:84:57:24:11:6b:65:8e:81:5b:e9:af:
15:2a:fc:2e:8b:e7:e7:db:7e:05:85:5c:c9:f7:1f:
7e:cb:a1:93:ee:49:d8:a1:ba:19:9b:2e:6f:c5:b1:
01:dd:24:e5:d2:08:34:41:3b:de:27:9d:25:2f:05:
47:c6:d4:8e:14:e5:14:65:ac:cc:19:e1:b9:c3:39:
cb:a2:ee:46:0e:c2:59:55:cf:db:3a:96:28:45:a4:
38:a3:c2:4b:f0:f2:38:86:ba:0f:3d:02:93:d2:d0:
93:2d:95:90:56:ad:62:82:e9:42:8f:12:1a:3d:ce:
cc:d0:41:89:2e:ea:ca:d0:78:6d:f8:c6:93:50:82:
ba:65:1d:14:9e:5c:29:73:45:02:c0:70:82:16:64:
86:c6:c7:97:c9:51:01:4a:5b:2e:33:09:b4:2a:6f:
ca:0f:6c:e4:63:f3:20:c8:ea:e0:25:0c:ae:2d:17:
be:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:52:EE:13:60:5A:14:57:51:A0:F7:18:31:C1:6C:B0:A4:C2:07:9D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dVLuE2BaFFdRoPcYMcFssKTCB50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
93:0e:53:19:b2:73:05:5f:8f:93:ca:5c:a0:5d:21:bb:ba:f2:
0e:59:f2:d3:d1:c2:2d:eb:c8:9f:17:3b:f6:b7:70:ff:97:f8:
11:5c:85:fd:6d:01:cc:e2:e5:98:1f:ac:05:a9:31:c3:cd:09:
f3:5c:19:0a:2d:6a:36:98:2a:5f:37:cb:27:20:19:aa:e7:b1:
fa:a1:c9:1c:2a:02:f5:9f:43:63:7b:48:df:17:ba:27:7c:5c:
d3:0e:a1:84:f0:ca:e5:15:63:85:b4:d1:4a:f7:1d:18:30:d6:
bd:e7:8e:d7:5f:65:9e:c7:ad:81:2a:07:c0:7e:98:74:b0:75:
e0:b5:f1:01:13:f1:5b:f1:ba:d2:d7:cb:b1:5c:e2:81:61:b3:
a8:f4:66:d1:33:00:02:51:d0:50:d8:1e:be:0d:c8:7a:c0:7d:
d2:cc:ee:b8:80:79:cd:88:cd:87:6b:13:3a:e5:db:36:2e:93:
88:af:4e:cb:56:ba:77:af:9e:7e:15:8f:1a:4e:2f:d6:ec:36:
96:b2:b9:e8:ee:43:8a:49:3d:2b:b6:1f:e3:4e:0d:b7:ea:84:
d0:ab:df:95:a7:d0:ec:62:8a:3d:dd:fd:c9:c0:3a:48:ec:f6:
f2:27:8f:28:54:67:fb:e9:a8:09:38:fc:f2:db:bf:cf:7c:58:
cd:f1:69:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org