Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jHpaeTOyCpl28tceEx5ACMxkI8k.roa
File: jHpaeTOyCpl28tceEx5ACMxkI8k.roa (raw, json)
Hash identifier: THjZhrALE8ECEqEUkT0o1z49j4A0Nyi5pvroqAvLl1c=
Subject key identifier: 8C:7A:5A:79:33:B2:0A:99:76:F2:D7:1E:13:1E:40:08:CC:64:23:C9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10CD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jHpaeTOyCpl28tceEx5ACMxkI8k.roa
Signing time: Tue 16 May 2023 08:36:39 +0000
ROA not before: Tue 16 May 2023 08:36:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.202.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4301 (0x10cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:39 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8C7A5A7933B20A9976F2D71E131E4008CC6423C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e6:8c:5f:8c:02:d7:78:71:8f:d3:81:70:4b:
3b:b1:ef:79:07:de:a5:aa:bc:ec:dc:ca:75:78:26:
87:e2:3d:77:27:16:ee:32:11:1e:00:8b:c0:99:61:
e2:f9:ad:5e:b1:91:97:50:af:ca:0f:13:b3:8e:09:
f2:83:85:9c:d6:06:31:22:97:b3:6e:59:f6:b3:f6:
da:de:4e:c2:2c:85:1a:1a:99:2f:43:a3:d4:35:e6:
76:3a:ad:a4:50:00:33:8b:ea:76:28:a6:a8:f3:d7:
07:b0:80:8c:3f:64:f7:b1:28:d0:5a:52:6c:6f:27:
97:6a:4b:ff:62:88:6e:8b:04:47:cb:1e:66:01:f1:
a1:17:a9:3f:3e:07:fb:89:28:12:9d:58:bd:c3:89:
38:a9:9d:b1:29:8c:1c:53:7f:47:d4:19:7a:ac:72:
7f:d2:5d:e5:1a:80:3e:89:35:5b:13:ae:bc:b5:72:
3f:98:77:d4:37:3e:b5:54:96:88:6e:24:68:f0:9e:
bd:f8:9f:dd:0d:3f:fe:c5:54:6b:5c:f8:01:19:c9:
ea:6d:e9:a4:c8:4e:9a:bc:36:14:7b:fd:1c:2b:12:
99:ad:6f:aa:60:52:4e:50:be:64:a6:d4:0b:be:ac:
5e:b3:3d:e2:5b:78:ac:b1:7f:d9:f7:dd:49:61:81:
0f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:7A:5A:79:33:B2:0A:99:76:F2:D7:1E:13:1E:40:08:CC:64:23:C9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jHpaeTOyCpl28tceEx5ACMxkI8k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.96.0/20
Signature Algorithm: sha256WithRSAEncryption
57:0e:1b:09:e5:04:5e:43:08:83:02:00:cc:d4:b1:76:08:62:
30:03:d8:bd:fb:56:32:35:cd:9a:21:62:9c:81:01:60:40:9e:
90:80:eb:78:67:e4:29:c6:93:27:bf:c9:ab:15:85:e7:f4:87:
c9:bf:16:f4:18:49:5c:64:6b:1e:d9:05:c9:34:9e:50:47:13:
1b:6f:30:c8:92:32:ec:27:61:95:d4:ed:4d:70:a4:cc:76:86:
62:19:06:57:a4:b6:c3:c2:03:01:39:eb:37:ee:f7:2d:9e:41:
00:6a:42:0b:21:f0:8c:ca:74:2f:87:dd:96:34:fd:f2:58:d5:
6b:52:33:52:ff:1d:13:12:e0:be:9f:8d:a2:ea:56:84:52:13:
1b:be:3f:47:81:e0:16:51:23:29:9f:26:a2:43:4b:70:2d:f4:
1f:2a:bd:15:29:78:5b:7b:24:54:81:e9:c1:78:71:b1:b1:3a:
4e:04:0b:0a:a7:11:63:57:f5:01:40:9e:0b:99:ad:97:44:5a:
24:1c:0f:0a:a0:ab:a9:15:06:09:48:76:44:52:bb:fb:f5:2c:
50:54:4f:b9:d4:40:1b:ba:a9:51:08:65:73:10:bd:85:20:06:
89:53:c2:61:b9:87:9f:b7:e4:26:80:d2:dd:c2:41:ff:93:cf:
48:b9:ad:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org