Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/hoKB8jxs58SmcGNlEoMt4XQFO1g.roa
File: hoKB8jxs58SmcGNlEoMt4XQFO1g.roa (raw, json)
Hash identifier: b3CBeUsL7ae11CF7Sx1HBzVSL3KVkIbvNNzuKfRKAbg=
Subject key identifier: 86:82:81:F2:3C:6C:E7:C4:A6:70:63:65:12:83:2D:E1:74:05:3B:58
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hoKB8jxs58SmcGNlEoMt4XQFO1g.roa
Signing time: Thu 15 Sep 2022 02:40:04 +0000
ROA not before: Thu 15 Sep 2022 02:40:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.201.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=868281F23C6CE7C4A670636512832DE174053B58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:19:a5:4b:52:bd:02:66:82:c7:84:3c:08:87:
cd:fd:4d:85:98:76:fb:c1:a3:ac:17:d2:ab:20:ba:
78:f3:f4:31:1c:4a:86:e4:0a:83:7c:e7:50:fc:51:
f6:de:6a:df:30:ae:37:41:c9:37:c2:b2:4c:12:73:
b6:cd:b6:7a:d8:44:dc:be:f9:e8:44:14:bb:94:70:
59:b3:c2:7a:8f:12:22:02:69:d6:cc:09:b8:ae:1e:
30:51:f4:20:b3:26:20:e2:74:83:53:8e:e5:90:84:
9b:7b:e5:99:23:ab:37:dc:e6:5a:8d:e8:13:4a:be:
2a:15:73:d4:03:24:1d:b2:9c:8b:d3:63:7f:49:68:
4d:9e:30:06:7c:05:75:1d:c4:06:69:ed:ee:fb:10:
29:c6:1a:dc:c7:d1:f8:69:89:ce:da:ee:8b:91:34:
cd:ad:8f:59:20:ab:ec:44:ec:f2:cc:0a:b4:8c:12:
d4:3d:a2:66:dc:15:0a:5c:7c:1d:2b:9d:48:8e:e0:
65:d4:ae:42:02:3a:7b:d3:0e:80:71:58:ec:cb:2d:
3b:fb:59:50:14:0d:ea:b7:9f:e2:11:80:57:cc:7b:
5d:3b:2f:ed:be:d9:98:39:0e:7e:e9:dc:51:f7:67:
5b:7d:93:2e:1d:10:a5:dc:b8:89:ea:7e:0a:44:d8:
16:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:82:81:F2:3C:6C:E7:C4:A6:70:63:65:12:83:2D:E1:74:05:3B:58
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hoKB8jxs58SmcGNlEoMt4XQFO1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.32.0/22
Signature Algorithm: sha256WithRSAEncryption
56:73:b8:0f:26:7c:53:23:82:ef:18:c0:ca:be:48:73:11:55:
15:15:c9:02:1c:13:9a:52:86:76:8d:79:b5:a4:6f:bb:3e:15:
6b:a6:b6:45:01:de:d2:44:9b:13:d1:1d:55:56:26:45:8b:92:
50:9d:e6:aa:49:5a:9a:e3:0e:e3:34:72:60:97:44:1f:14:d1:
89:b1:0f:e0:22:b2:66:94:da:4d:9f:f1:5f:f4:94:85:98:4a:
19:95:ce:26:97:80:e3:14:89:0e:76:83:25:18:b4:60:e9:70:
f9:d8:8c:51:1b:0e:a1:d2:f0:48:58:a2:69:ed:e8:84:89:c7:
16:fc:2f:71:3c:3c:1a:d9:06:d8:4d:8b:56:1e:e2:55:0d:10:
b4:80:74:1b:d9:c7:fc:b0:42:fa:c6:73:69:8b:b3:ac:bd:64:
fa:55:b9:f0:9f:56:16:e1:fc:06:58:44:b1:78:15:b1:1d:63:
c0:c4:89:4a:5a:52:2d:5b:d1:f8:6d:9f:b5:78:f3:74:02:5c:
d9:d4:77:fe:94:6e:b6:93:fc:87:b4:3a:d9:cd:13:9a:4a:48:
d3:09:fc:6a:17:6b:e8:f2:83:00:87:07:6e:e9:fe:6b:ee:50:
09:0c:ea:5c:e1:f1:91:1b:ac:33:cb:09:42:37:58:2b:42:f0:
1f:e1:fc:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org