Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jlHflQ28pJZRsWYrZQxKJzMqdEA.roa
File: jlHflQ28pJZRsWYrZQxKJzMqdEA.roa (raw, json)
Hash identifier: cUjbyZ9JI/cyokpg1K202qGzmZ91ayg0LBIZS+xmiPs=
Subject key identifier: 8E:51:DF:95:0D:BC:A4:96:51:B1:66:2B:65:0C:4A:27:33:2A:74:40
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1276
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jlHflQ28pJZRsWYrZQxKJzMqdEA.roa
Signing time: Fri 01 Sep 2023 08:04:30 +0000
ROA not before: Fri 01 Sep 2023 08:04:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 219.91.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4726 (0x1276)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8E51DF950DBCA49651B1662B650C4A27332A7440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:31:0d:14:10:65:f9:7d:14:73:3e:42:e2:f4:
73:50:79:cd:0e:f9:a2:eb:1c:83:18:83:6a:53:9d:
91:fd:2f:5e:6e:48:00:b9:fa:0e:2a:d0:e6:1f:89:
bc:24:82:a5:b6:6c:d1:aa:c5:d4:2f:e2:18:62:95:
02:46:88:aa:c0:65:50:e9:dc:40:53:cf:93:5b:f8:
eb:dc:10:07:0c:01:62:8f:d4:3f:cd:72:14:c8:fb:
35:f5:af:c5:39:d6:1d:b2:bb:ac:48:6e:e4:bd:63:
e2:ef:55:d9:e5:f1:ce:37:bc:e6:75:e1:67:ba:00:
a4:e0:12:e3:4a:b1:99:b3:fd:94:4e:23:95:46:b8:
40:75:7b:f6:47:d5:7f:e6:3f:58:35:6f:e2:b3:0e:
bb:e7:e6:f2:3b:0c:83:8c:c5:d6:33:76:f4:57:c9:
4a:19:8e:be:73:07:2b:74:d5:d0:24:ae:ca:7a:a6:
f9:53:58:bb:85:12:5c:e9:3a:d2:3c:d4:9d:61:7d:
33:53:6b:5a:6c:82:81:b9:cf:53:82:59:b6:46:c5:
68:5a:77:2c:7a:82:b2:ef:d8:78:2b:a1:d5:e5:97:
99:04:8a:fa:ea:76:b8:cb:63:8c:82:1a:48:45:80:
34:7c:02:18:a7:f6:e7:97:b0:a8:c2:f4:50:39:7e:
c3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:51:DF:95:0D:BC:A4:96:51:B1:66:2B:65:0C:4A:27:33:2A:74:40
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jlHflQ28pJZRsWYrZQxKJzMqdEA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/18
Signature Algorithm: sha256WithRSAEncryption
83:97:79:c8:7e:8b:ec:7d:78:ca:2a:3f:96:cb:41:f8:98:05:
95:2e:5e:67:df:f6:be:43:5d:6d:ab:59:8d:70:9b:27:cc:82:
7a:a7:68:54:33:7a:07:37:77:a6:e4:49:f0:6c:0d:53:55:92:
d7:ff:2e:12:69:01:60:d4:42:5f:da:59:98:f0:66:7d:00:7a:
81:b2:57:1b:94:69:3a:06:b8:94:6c:6e:9d:2d:a3:83:7d:34:
f1:31:d3:80:5e:cf:61:bf:16:69:8a:c0:7f:8c:24:d1:5e:21:
3f:61:bf:1f:c6:84:34:34:2b:f1:7d:e9:c0:a1:fd:4c:71:0b:
f4:10:7d:8e:43:6d:2a:b1:3e:96:91:99:d8:50:e6:de:8f:95:
e9:9f:96:d7:15:ae:dc:f1:01:7d:e5:29:28:8e:6d:6f:51:f5:
12:cf:a5:0a:c9:20:26:58:81:66:fb:ae:e6:86:36:5d:6a:fd:
70:7b:79:c9:89:e7:67:2c:0a:e1:3b:88:3b:cd:c5:05:27:29:
a9:60:c2:84:5b:6c:0d:39:80:0a:3b:03:6f:c6:ec:84:de:aa:
33:3b:ca:8e:74:15:5d:68:a0:84:d2:a0:95:19:b1:1f:42:86:
f1:e0:7a:1d:d1:44:a3:a3:22:73:c0:a2:97:c0:4a:af:9c:d1:
05:8e:42:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org