Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/hoLeyCgxaqJXzu8DLkLU25JZfTA.roa
File: hoLeyCgxaqJXzu8DLkLU25JZfTA.roa (raw, json)
Hash identifier: jWYerMiVvz/yV5RazuoTnR6Ehva7u0IrYo/witcuvQI=
Subject key identifier: 86:82:DE:C8:28:31:6A:A2:57:CE:EF:03:2E:42:D4:DB:92:59:7D:30
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BA5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hoLeyCgxaqJXzu8DLkLU25JZfTA.roa
Signing time: Sun 07 Feb 2021 11:33:27 +0000
ROA not before: Sun 07 Feb 2021 11:33:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24155
IP address blocks: 203.207.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2981 (0xba5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8682DEC828316AA257CEEF032E42D4DB92597D30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ef:18:bc:2b:c6:94:a9:e2:f1:39:ff:89:39:
b1:c2:0b:fd:ec:2e:ee:ef:92:96:97:30:2c:4f:56:
f6:df:f5:f8:d6:83:33:9f:97:ea:18:99:24:80:0a:
6e:51:a0:fb:5d:cf:ef:01:a4:f2:ad:5a:e6:82:15:
bc:6b:52:3e:d4:fd:cb:aa:e4:0d:4c:8a:7b:9a:8b:
71:67:82:87:b9:cf:cf:9e:86:c5:d7:de:06:4c:63:
a8:61:3b:cb:48:18:3e:37:9b:c1:ea:ad:ec:ae:7e:
3a:33:94:31:86:80:64:b0:89:f9:30:90:d7:af:7f:
83:de:c5:67:7e:e9:b4:e2:6c:9f:b2:4d:bd:95:a6:
0c:d4:88:bf:59:2a:f5:14:35:f5:6d:04:01:b7:39:
af:0b:5f:2d:80:fe:a5:c2:82:1e:ab:c6:4f:68:d9:
36:bb:ca:b1:9e:91:c2:b8:a5:62:00:8c:f7:13:cc:
ad:56:a9:a1:21:54:73:bc:60:5e:66:3d:bb:b5:bb:
d2:6d:c9:81:e3:d7:f6:4a:a5:eb:93:bd:58:a6:d1:
62:72:ff:78:e2:1d:aa:9d:99:18:d9:08:6f:76:d3:
69:58:19:db:ad:a2:56:2e:ca:18:ae:6c:3c:79:d3:
20:4d:76:04:6c:d4:4b:be:36:7f:7d:1f:c8:f4:ef:
1d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:82:DE:C8:28:31:6A:A2:57:CE:EF:03:2E:42:D4:DB:92:59:7D:30
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/hoLeyCgxaqJXzu8DLkLU25JZfTA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.32.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:9a:9f:07:95:b5:1e:26:f9:65:53:38:63:4f:34:24:4e:0b:
63:eb:5a:60:46:2d:42:ae:70:e5:6c:f0:19:48:6a:21:dc:e6:
b3:f1:d5:d4:0b:f3:ff:09:0c:c0:1f:2d:ee:43:92:1d:80:c8:
15:cf:aa:0e:ae:61:22:d5:a2:05:60:35:80:7b:be:9e:1b:35:
5d:01:38:85:98:7e:5f:9e:25:b8:06:6c:21:bf:ac:c7:3b:51:
de:3b:07:73:91:fd:18:cf:37:f4:4c:05:8a:70:5a:90:4d:76:
5c:24:d9:65:c6:1f:1a:16:be:08:03:8c:3a:96:12:1a:20:5f:
a0:07:f8:58:e7:05:65:e2:50:c5:e1:81:fe:21:a1:a3:d7:a6:
42:6f:e0:5a:35:98:b8:f1:c7:27:c4:81:d3:f8:a9:7a:49:a8:
8b:8c:ec:fc:8a:0a:0c:1a:bb:96:34:99:74:bd:4b:55:f9:da:
8b:ec:6d:14:d5:f7:f0:9a:3b:c8:b7:77:14:14:f9:b7:28:3b:
06:31:c9:bd:94:63:4c:fe:21:7c:03:fe:ab:41:16:ef:33:bb:
7c:04:75:5b:d4:28:14:23:02:de:3f:c3:f5:41:dd:01:56:1b:
9a:3b:cd:fd:0f:e9:85:41:65:89:e3:4f:b4:98:2f:30:37:a2:
5e:6c:3a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org