Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ex5WSmDnMk3-0Bz1A54svIBXtdA.roa
File: ex5WSmDnMk3-0Bz1A54svIBXtdA.roa (raw, json)
Hash identifier: TWnXVIVTA3gXUlwoo6gbvyYPVbZ1j/9pRajFQYQbOhE=
Subject key identifier: 7B:1E:56:4A:60:E7:32:4D:FE:D0:1C:F5:03:9E:2C:BC:80:57:B5:D0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12E4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ex5WSmDnMk3-0Bz1A54svIBXtdA.roa
Signing time: Fri 01 Sep 2023 08:05:07 +0000
ROA not before: Fri 01 Sep 2023 08:05:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 222.156.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4836 (0x12e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7B1E564A60E7324DFED01CF5039E2CBC8057B5D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e9:e4:79:6e:78:4a:db:27:8b:55:18:1a:68:
38:7b:b2:da:4d:73:b6:c1:85:dd:1e:31:87:2c:da:
1c:bf:11:1a:2d:8f:12:a2:e9:db:11:b9:54:1f:00:
ca:3a:df:76:14:f9:57:52:87:1c:72:6a:ee:a1:f9:
54:c6:52:d1:43:44:6a:d0:05:5c:76:26:4e:16:6a:
c6:21:02:78:25:b6:11:cd:bd:ab:a5:b5:e1:e5:7b:
c3:85:d6:12:7a:c2:0a:48:4f:43:5e:19:41:49:27:
89:5c:8c:e2:37:b2:16:a2:3d:43:78:65:03:1b:a4:
be:7f:f5:5c:56:eb:2f:a7:40:65:66:9f:88:0c:f8:
c3:a6:ac:2b:9b:4d:c3:a1:55:7f:2c:4e:7d:ae:2d:
fd:77:27:bf:ff:f7:65:f1:10:a2:94:34:0c:a0:fe:
11:d7:40:cf:4a:8d:79:dd:cb:39:9d:7f:54:61:ae:
69:37:a7:e7:a3:f0:68:01:66:23:b0:5e:b9:f2:78:
41:fc:4f:53:c8:0c:5e:ce:84:96:b4:fa:3c:23:9f:
18:e3:84:b2:e2:30:68:c6:0f:04:d1:8f:2a:b9:42:
22:87:a0:c4:a2:89:92:14:56:2c:43:8a:1c:9f:ae:
c7:e0:7e:e7:9d:c5:e7:0c:3e:6e:0a:6b:be:c9:30:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1E:56:4A:60:E7:32:4D:FE:D0:1C:F5:03:9E:2C:BC:80:57:B5:D0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ex5WSmDnMk3-0Bz1A54svIBXtdA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.247.0/24
Signature Algorithm: sha256WithRSAEncryption
34:37:e0:fa:40:12:84:85:bb:b4:41:3c:78:cc:ca:de:51:80:
5d:83:5f:3b:f2:c0:14:07:53:ee:85:62:bd:34:e8:6b:ef:28:
42:96:73:4e:63:6e:f3:03:cc:a1:64:bf:b9:71:a4:02:5b:61:
f1:51:c8:8d:66:75:13:da:75:ff:a8:f9:a9:28:8d:9b:f1:e6:
3c:a3:25:65:63:ee:88:50:d8:d8:99:1e:0b:71:81:e1:ca:5d:
2e:16:48:ba:98:c3:da:b6:c7:03:5c:6d:1b:5e:31:0e:53:93:
b9:33:87:d8:48:49:36:b6:c1:f5:20:59:ed:7b:15:ca:9c:9a:
ad:20:26:4d:29:8e:8b:23:9d:94:4c:52:13:8f:f4:16:02:16:
d2:84:b8:f5:43:63:4f:f8:5c:4e:f2:2a:b9:74:75:85:44:09:
34:49:f5:28:48:c3:ae:a5:d8:49:e1:f2:3f:9e:11:b7:72:3f:
68:ec:fe:ea:de:8b:af:83:42:67:a2:df:d0:c5:36:89:29:c0:
8e:38:26:f6:8c:55:72:52:40:fd:c9:e3:5a:a5:04:c9:24:57:
c6:6e:2c:e8:3c:9b:a1:b2:f8:de:d2:48:e4:27:fb:6f:9a:83:
69:4d:28:f8:db:f6:82:56:5f:17:85:35:91:05:a2:c3:50:57:
9c:f8:78:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org