Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dfLwcvUg7jDBUuEYXfp60wKN9xo.roa
File: dfLwcvUg7jDBUuEYXfp60wKN9xo.roa (raw, json)
Hash identifier: aTDX8eOugJS6cVZ+3sDpgTVeZXBTG1k7BQd4DNE0trM=
Subject key identifier: 75:F2:F0:72:F5:20:EE:30:C1:52:E1:18:5D:FA:7A:D3:02:8D:F7:1A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dfLwcvUg7jDBUuEYXfp60wKN9xo.roa
Signing time: Thu 15 Sep 2022 02:40:31 +0000
ROA not before: Thu 15 Sep 2022 02:40:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 218.35.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=75F2F072F520EE30C152E1185DFA7AD3028DF71A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b8:73:19:fe:ab:fa:52:b3:cf:5f:41:92:0d:
91:24:9e:4a:a6:bd:53:70:59:ac:f3:15:ea:20:3b:
12:e4:79:7b:a9:c9:9a:b8:c5:f4:ab:98:3b:f7:3d:
be:20:ad:e3:ef:8d:38:81:f5:56:5e:25:c4:91:ba:
44:42:d3:3b:cd:e7:f6:5c:57:d0:91:bf:75:79:c5:
93:02:a2:d4:17:1c:32:53:de:20:17:6b:bb:00:e2:
59:ea:8c:ec:8a:53:7f:01:27:03:08:64:12:3c:c3:
41:91:4d:40:2b:73:81:6d:78:a7:21:c6:02:91:c4:
cb:82:4d:90:f3:2a:fa:8e:b7:6a:3c:9b:5d:d9:9b:
8e:f5:21:c8:92:29:68:d1:9d:c7:90:7a:9e:7c:dd:
43:64:04:67:29:2f:32:90:7a:bd:bf:d4:50:74:26:
95:e2:90:96:f3:63:e5:c4:2f:60:59:b7:52:63:50:
bd:4c:aa:da:73:70:92:12:53:a0:2d:26:8e:c9:3e:
43:99:3c:ea:cb:5e:2a:57:fb:55:36:42:1a:f4:2e:
93:86:dd:fc:1f:1c:fd:88:60:28:9c:af:ee:9f:02:
8b:6a:f1:5f:72:40:b5:e7:f3:54:68:b3:b8:08:6f:
84:ce:45:f4:b8:c3:21:51:97:d3:44:0a:38:2a:6a:
1f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F2:F0:72:F5:20:EE:30:C1:52:E1:18:5D:FA:7A:D3:02:8D:F7:1A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dfLwcvUg7jDBUuEYXfp60wKN9xo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
40:50:82:c8:f3:47:8b:f7:a6:5c:8c:6f:ad:a5:88:37:c6:06:
d1:5f:94:8b:dc:bb:96:1f:a6:9a:2c:b2:76:f9:01:4d:01:eb:
ab:fb:77:01:72:24:66:22:35:e2:7f:4f:dd:f1:5c:4f:8f:64:
0a:a9:8c:28:44:53:5a:ce:cf:ef:a4:43:6e:4c:a1:e3:54:93:
18:40:8d:7e:7a:ce:ba:6e:90:23:ea:54:74:fa:b5:53:17:7e:
d0:cd:43:29:ff:ab:a5:07:3d:51:08:47:5a:1f:e5:4c:86:01:
12:0c:37:2b:c0:68:af:ce:29:1a:7d:9f:32:4d:d8:a0:14:59:
59:35:bb:d1:95:15:ed:26:05:a1:2f:8a:ab:29:7c:7e:20:a0:
cb:7e:1c:6c:28:75:09:47:ee:44:8d:4f:3f:4c:83:7f:33:94:
1c:43:0d:ea:96:25:3b:e8:a1:e0:12:e7:f9:ae:27:0a:fd:8c:
77:2f:84:c6:b4:44:70:ae:a7:b8:55:bb:81:d7:ce:db:a1:9c:
11:d5:1e:45:fc:79:34:11:2b:d4:16:b6:22:7f:df:97:ca:f7:
67:16:6a:84:1e:ce:56:7d:a0:61:25:3f:f3:e9:22:28:c4:74:
20:99:53:c4:91:36:a0:ac:8b:e3:23:40:b7:06:ec:5a:7d:e4:
7e:b8:f7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org