Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/i8hnT3zfK1KJXcLqH3NPRupTIGw.roa
File: i8hnT3zfK1KJXcLqH3NPRupTIGw.roa (raw, json)
Hash identifier: D++Ckoc3vLbH1DV9FYEOMK0V2rNEcbfi+7XcBYtU+LM=
Subject key identifier: 8B:C8:67:4F:7C:DF:2B:52:89:5D:C2:EA:1F:73:4F:46:EA:53:20:6C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10EA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/i8hnT3zfK1KJXcLqH3NPRupTIGw.roa
Signing time: Tue 16 May 2023 08:36:49 +0000
ROA not before: Tue 16 May 2023 08:36:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 14
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4330 (0x10ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:49 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8BC8674F7CDF2B52895DC2EA1F734F46EA53206C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:bd:65:3c:9f:50:7f:c5:96:ae:7a:92:ff:
6a:a4:be:14:06:c0:e4:0c:77:a3:3b:09:32:ff:d2:
9b:a0:bb:4e:69:ce:50:80:ac:3b:1e:cc:9a:9f:bf:
84:7d:fe:a5:90:77:8f:2d:4f:eb:2a:d8:4f:0c:0b:
f2:63:dc:42:fc:90:01:7d:ca:aa:1b:ac:8f:82:db:
f6:fc:aa:f3:79:43:7e:16:1e:a9:8d:5d:a2:2e:db:
b6:ac:0c:65:c5:fb:2d:5e:23:aa:ad:88:fb:7f:51:
48:39:69:25:98:09:9a:c6:4a:19:ee:9c:8f:a9:0b:
01:ab:c1:3f:97:9b:dd:e7:fd:a7:8d:3d:ea:a2:2b:
45:14:21:d5:aa:8d:1c:20:ce:6f:e8:a3:9c:3e:51:
31:23:cd:66:5d:4c:5d:01:1f:04:2f:0b:90:77:e4:
86:57:e9:2d:13:1e:eb:b5:fa:8c:d6:4a:db:0b:ea:
e9:dd:dc:c1:17:ba:72:61:19:fa:74:a4:9a:f7:43:
4c:88:07:c0:be:72:86:46:62:10:de:56:77:29:00:
89:d8:c6:e8:9c:bb:bc:d0:40:58:fc:8b:bd:b4:86:
ad:4d:f5:49:d1:73:84:5e:dd:ce:f2:95:b1:73:a9:
27:b8:2d:ff:c0:4e:2a:79:f2:e3:06:64:99:45:4a:
71:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C8:67:4F:7C:DF:2B:52:89:5D:C2:EA:1F:73:4F:46:EA:53:20:6C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/i8hnT3zfK1KJXcLqH3NPRupTIGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
75:77:9d:70:85:8f:8c:ff:68:bb:76:51:45:66:e2:90:e2:c9:
27:f9:c4:5d:98:30:62:67:e3:40:9b:ba:56:b7:e8:bb:58:95:
04:c0:9d:f8:f4:51:a1:aa:4d:06:29:85:a0:9c:4d:fb:83:63:
63:1e:3a:a9:22:fc:16:fe:3e:b1:f4:e3:e2:f5:3d:b8:4d:40:
c5:5b:97:cf:4b:a2:fc:58:e3:1f:88:03:7d:f7:f3:94:9f:32:
de:8c:d8:aa:7a:7f:f0:dd:ae:8f:22:7a:7d:a7:5f:d5:80:58:
85:db:d5:03:e7:98:31:b8:26:57:ea:25:15:a3:cd:7b:97:7d:
1a:b9:72:57:7b:ae:93:98:32:b7:80:26:d5:27:98:52:cf:db:
7d:8b:3f:43:27:cc:b3:9b:bb:3b:2a:0d:ed:70:2a:b5:1e:bd:
a1:4a:98:bb:07:b9:31:51:fe:1a:b8:15:8b:87:16:db:c0:22:
dd:51:75:29:ad:0f:77:05:f1:a0:94:9d:7b:19:8a:f0:82:09:
d7:39:f1:ce:ba:4c:b0:f5:5e:57:2d:88:56:53:10:22:30:01:
9c:83:b6:46:e7:7c:40:dc:37:4b:ea:75:d9:44:f9:1b:54:26:
13:be:b7:bd:cb:d6:a2:de:c9:9b:52:97:fd:17:aa:82:8b:f4:
48:cc:47:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org