Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/hXH5sKgSki8X2oHFR0xD-6-Ujuk.roa
File: hXH5sKgSki8X2oHFR0xD-6-Ujuk.roa (raw, json)
Hash identifier: S5h0MCgR7ZwC1NmZrtNp6BqaA3jOcfFBTCHKhrS+Kfk=
Subject key identifier: 85:71:F9:B0:A8:12:92:2F:17:DA:81:C5:47:4C:43:FB:AF:94:8E:E9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BD9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hXH5sKgSki8X2oHFR0xD-6-Ujuk.roa
Signing time: Sun 07 Feb 2021 11:34:05 +0000
ROA not before: Sun 07 Feb 2021 11:34:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 210.200.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3033 (0xbd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8571F9B0A812922F17DA81C5474C43FBAF948EE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c7:77:66:8a:1b:a2:21:55:f3:fa:9c:12:6c:
b0:c8:c5:b2:9f:2f:ec:be:64:57:3f:2f:6a:39:a4:
47:8f:30:fc:c6:a3:5c:64:1b:92:ed:be:a6:10:de:
24:e5:88:4e:07:a2:8d:66:36:0f:34:c5:21:73:2d:
6d:66:09:73:a1:19:b4:92:1e:b7:a1:91:7d:93:c3:
a6:ec:4d:4b:2c:28:08:57:7c:3f:8c:1d:4f:a7:a7:
05:7a:d5:42:4d:1d:2f:87:c6:43:09:ca:42:a2:99:
2b:53:44:2c:68:eb:86:05:8c:b1:82:7e:26:38:7c:
a7:f2:d4:a0:61:69:e3:4e:a1:43:b6:17:85:34:a2:
42:c2:73:f5:56:da:7e:ab:12:43:a0:b2:af:c5:52:
d0:e1:75:3d:1f:39:c4:08:bb:4e:20:e5:f4:36:b6:
dd:22:8b:0c:24:3e:44:ba:83:67:a4:ad:5b:60:a4:
a1:69:c5:56:7f:80:82:59:01:8c:3e:01:19:d1:be:
03:1e:8c:67:85:a4:37:7a:6c:2e:c4:db:c6:f2:2e:
d9:84:c3:4b:46:7b:38:3f:fe:08:53:d2:97:4c:f2:
2b:ac:9b:1b:a4:33:78:33:89:89:b1:7b:f2:97:e9:
a4:21:8e:7d:19:a8:a1:84:84:a7:8a:2c:71:bb:a4:
69:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:71:F9:B0:A8:12:92:2F:17:DA:81:C5:47:4C:43:FB:AF:94:8E:E9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hXH5sKgSki8X2oHFR0xD-6-Ujuk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/20
Signature Algorithm: sha256WithRSAEncryption
69:6b:d6:2a:fa:27:03:bb:18:7b:d2:bb:6b:9c:60:dc:36:62:
99:bc:6c:49:2d:9b:f5:c9:18:9e:89:d5:9a:c5:93:82:e3:93:
aa:92:0d:ac:4a:a9:90:d6:c0:c9:90:9d:d4:0e:a5:d1:f8:5b:
f2:0c:d9:67:97:69:27:4c:84:68:48:ae:0e:55:7f:b7:ed:ea:
b6:80:3c:34:d9:b1:be:11:d1:ad:36:de:52:bb:1f:e8:56:0a:
8d:c0:4f:44:28:47:e7:a4:28:52:6f:ac:93:5b:5f:26:6a:45:
a2:1b:66:9f:2e:37:65:a0:64:69:4e:24:76:39:f2:cf:e7:c8:
de:8f:5c:47:ca:8a:8c:39:f4:4c:99:7c:7a:e9:82:cf:84:c3:
8b:51:44:c0:99:5a:41:a9:03:af:71:8b:71:67:c1:91:8b:a4:
2a:8e:18:88:41:e2:6d:92:3e:30:83:3a:3a:8e:ca:66:c9:fc:
8c:e5:27:d7:d6:10:cb:bc:4f:ed:8d:32:9c:8f:24:04:ae:94:
62:4c:74:79:87:7d:96:65:a7:52:2d:00:7e:dc:4c:e1:b5:a9:
55:11:e4:4b:aa:dd:97:94:d8:a7:bd:e0:78:48:30:0e:cb:be:
3c:08:5e:38:54:cc:2b:e6:fb:eb:de:03:9c:31:3c:3a:13:56:
5b:46:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org