Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dran6vtL0RSao9rLo_oYMvGu0I0.roa
File: dran6vtL0RSao9rLo_oYMvGu0I0.roa (raw, json)
Hash identifier: P6QED19l5LkLIZiq1Tm7Nx7gO0EzjkTp7bLINh7wpls=
Subject key identifier: 76:B6:A7:EA:FB:4B:D1:14:9A:A3:DA:CB:A3:FA:18:32:F1:AE:D0:8D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dran6vtL0RSao9rLo_oYMvGu0I0.roa
Signing time: Thu 15 Sep 2022 02:40:36 +0000
ROA not before: Thu 15 Sep 2022 02:40:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.201.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=76B6A7EAFB4BD1149AA3DACBA3FA1832F1AED08D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:33:15:ff:0e:b1:15:77:58:e9:77:0e:ab:0f:
33:c4:f4:f2:14:d7:e4:c7:1f:31:e3:d6:42:95:92:
40:f1:b0:4e:a7:4a:5e:27:05:b7:e8:4e:24:f8:37:
32:0f:1c:7b:0f:c1:ef:e7:8a:d7:0a:99:62:40:d6:
1e:cb:b4:74:5c:e2:54:b1:fa:41:c4:de:ee:d8:52:
c6:d6:ff:b1:44:85:dc:8b:b5:d4:8f:71:1c:59:f9:
b8:45:64:f6:ed:c3:c9:01:6a:d9:e9:22:f7:ce:48:
3c:8e:44:49:a8:fc:6c:c8:50:f5:5e:a9:39:8b:32:
6e:b5:6b:88:ae:7d:3d:65:3f:37:4b:0c:c5:e8:f4:
bd:ba:77:ca:1f:6b:1a:18:49:8e:bd:32:ce:bc:73:
90:33:1f:e0:da:42:95:3f:51:ed:13:5b:1b:3c:c2:
8c:b4:eb:c6:29:22:65:b1:ff:97:29:c8:38:57:dd:
4f:12:9e:f7:4e:53:01:9b:2b:8c:8d:bb:fe:99:bd:
28:86:6a:9b:6b:7e:3a:bf:5a:21:a5:79:50:02:4a:
8c:3c:49:37:5c:91:ff:05:ac:2f:4c:20:d2:e9:8b:
43:ef:8a:ff:ca:c1:8a:7e:7d:2b:8d:3e:a7:f7:db:
43:82:be:26:13:17:3c:0c:15:14:6b:e5:20:8b:ec:
60:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B6:A7:EA:FB:4B:D1:14:9A:A3:DA:CB:A3:FA:18:32:F1:AE:D0:8D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dran6vtL0RSao9rLo_oYMvGu0I0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.72.0/24
Signature Algorithm: sha256WithRSAEncryption
be:95:42:e6:f7:7c:ee:76:20:07:70:c7:20:26:b9:4e:ed:c0:
9d:40:ab:3a:3c:45:67:b9:1d:5a:c5:b9:dc:6c:b7:ea:1e:f7:
d9:e6:d5:ec:1f:d6:68:55:f6:ee:f2:83:df:d8:89:27:a4:04:
9c:96:d2:4a:7b:45:6e:2e:b4:c5:89:7f:c4:bd:7b:af:fe:46:
d1:e9:69:35:ec:46:90:10:0b:57:a9:a6:a5:ef:18:d5:a1:fe:
80:11:88:81:bf:8b:cf:07:3a:fe:8c:bb:81:ca:74:72:9d:43:
1a:7d:a0:8f:92:7c:f4:ba:5d:60:e4:a7:5f:70:1c:a3:1b:99:
0b:5f:df:66:7c:8f:a0:a5:6c:56:b6:1b:f9:8c:7c:c0:b0:0b:
2e:1a:48:8b:9b:a2:68:fe:16:6e:9c:ee:3e:db:36:01:ea:9f:
a7:0a:aa:6d:99:e4:a5:f4:0d:db:e5:ad:d7:2a:1e:ad:88:58:
5a:32:83:6d:15:c2:3f:fc:08:38:4c:92:f7:e4:48:b7:86:32:
c7:bf:16:b5:de:c4:b6:9f:ac:a0:5d:4d:90:75:ca:8d:68:79:
2c:da:f3:e3:c1:4b:d5:62:82:46:b6:fe:ed:b7:cc:83:97:1a:
b9:22:06:41:26:50:e8:9e:b1:67:df:7f:74:04:75:61:35:d1:
29:f5:60:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org