Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/h8a7BdEKktezNniZwn10urcjgto.roa
File: h8a7BdEKktezNniZwn10urcjgto.roa (raw, json)
Hash identifier: 9u0iVdNWyQ+o5zlzMg08D/ZMvpoICNJ588hb+rghe2M=
Subject key identifier: 87:C6:BB:05:D1:0A:92:D7:B3:36:78:99:C2:7D:74:BA:B7:23:82:DA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E04
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/h8a7BdEKktezNniZwn10urcjgto.roa
Signing time: Wed 29 Sep 2021 02:39:52 +0000
ROA not before: Wed 29 Sep 2021 02:39:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 218.34.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3588 (0xe04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=87C6BB05D10A92D7B3367899C27D74BAB72382DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:72:47:8c:40:21:31:d5:ba:b7:c3:89:09:c8:
6d:d2:15:ab:03:78:7f:e3:04:13:e7:37:8a:85:47:
f1:24:94:54:ca:8e:12:cd:bb:ea:91:33:42:49:a8:
b3:c9:9d:3d:56:c9:bc:01:51:2c:59:3c:a5:0d:62:
f4:a9:10:a2:4f:3d:d6:2b:b6:20:97:b1:c0:56:b5:
33:fa:94:d5:3b:06:43:1f:30:cc:c5:82:f7:0e:26:
e5:45:38:24:37:29:b8:98:6a:49:bc:74:90:50:8d:
43:2d:45:ec:94:74:d4:4f:83:00:3c:35:85:1e:42:
62:23:75:77:a4:36:a1:59:9b:49:b6:3f:43:be:b6:
46:b8:46:92:89:83:ae:ea:f9:ba:5b:6e:c3:50:ce:
ab:28:25:85:20:67:c5:e5:45:ec:87:eb:88:e7:6b:
29:28:39:28:99:5d:b5:84:28:80:41:04:4a:53:ed:
5b:61:71:d6:44:34:d6:d6:19:00:0f:43:24:21:cb:
51:f3:d3:38:45:fa:b7:6b:f0:4a:15:32:13:d2:03:
d4:80:07:5c:c2:54:1c:66:96:fb:7c:48:6b:16:bd:
87:c3:bd:32:2e:bd:9e:93:ab:c5:fe:20:89:f5:80:
0e:0f:0a:8b:b5:77:8e:63:e6:39:58:40:02:22:c4:
5b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C6:BB:05:D1:0A:92:D7:B3:36:78:99:C2:7D:74:BA:B7:23:82:DA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/h8a7BdEKktezNniZwn10urcjgto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
26:11:a2:57:3d:09:5d:4b:c8:43:85:44:70:66:16:8d:c8:a5:
e0:d1:f1:8a:d6:0a:f6:ee:8a:79:7f:0f:58:f0:70:ce:93:b2:
fa:02:1d:2c:72:28:5a:34:44:28:4e:0c:cd:29:39:41:e1:eb:
a7:de:9b:a3:f5:ce:84:3f:f6:5a:8f:dd:ba:98:9d:66:3d:ea:
52:f0:8b:4d:b0:e4:40:a4:10:03:bc:fe:08:5f:e4:a1:0c:1b:
d6:e3:57:ef:6d:ba:7f:a2:b3:c6:8f:62:d5:08:29:e6:95:8d:
3b:56:c5:cd:c0:ef:d5:44:be:0e:94:c5:3f:b4:2e:4f:d2:e4:
77:60:32:92:ce:a0:75:8d:8b:dd:5c:2a:3e:a0:45:de:b6:a8:
9e:95:5d:d5:19:02:04:96:4a:04:b9:10:de:e5:1f:ec:fe:36:
81:b7:66:e6:30:06:9e:b9:83:a9:4a:6c:ed:01:9f:0c:94:74:
32:a5:69:79:4b:99:94:f1:11:64:a5:6b:4e:64:85:fc:2a:c9:
dc:85:0a:46:11:8f:82:39:3e:32:ce:35:10:b1:34:31:a8:aa:
b6:71:fa:7c:e4:e0:ca:ca:50:66:6c:79:e2:d4:ca:25:57:45:
c3:f9:66:fe:a8:ec:72:09:43:19:c8:a2:65:97:c8:01:17:bd:
10:7c:9a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org