Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/kDOwDZirkY04hfudX6yjvJHewZM.roa
File: kDOwDZirkY04hfudX6yjvJHewZM.roa (raw, json)
Hash identifier: hA9DWNvJeIZKoxOlx4evuuRZyLRVZ3IDVBWEPV2aN/c=
Subject key identifier: 90:33:B0:0D:98:AB:91:8D:38:85:FB:9D:5F:AC:A3:BC:91:DE:C1:93
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kDOwDZirkY04hfudX6yjvJHewZM.roa
Signing time: Thu 15 Sep 2022 02:40:18 +0000
ROA not before: Thu 15 Sep 2022 02:40:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131142
IP address blocks: 210.200.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9033B00D98AB918D3885FB9D5FACA3BC91DEC193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:1b:01:9b:32:df:97:e9:e0:84:28:7f:3c:
63:9d:d8:95:bc:79:6e:63:0e:0f:f8:02:26:9c:82:
68:94:a9:f4:f1:f2:26:0e:2f:73:75:c1:98:ef:7a:
8d:62:e7:e3:e4:a6:7a:96:e2:b7:9c:2d:e0:75:76:
4c:1b:06:c5:5e:45:b2:9a:df:e4:88:cc:02:c3:f0:
68:bc:2c:75:ce:87:5d:ea:ca:31:92:a0:f8:6e:ae:
ff:d8:a8:c4:30:d9:ee:27:74:52:20:a2:5b:71:65:
a6:78:67:f3:90:3f:1b:20:0f:d3:f1:55:85:43:a7:
8f:1e:2c:2d:42:6c:8b:58:19:cf:40:f2:b1:52:5c:
86:63:2b:28:a8:16:cb:30:b0:72:8a:4e:b1:17:59:
a8:6a:34:53:b1:78:88:5f:bf:34:cc:f3:9e:2f:16:
ba:4b:c7:37:88:1a:6b:a9:0a:e4:d4:7a:ba:32:58:
a7:24:1a:ab:f0:54:58:0f:31:87:a3:ca:58:0e:80:
b4:8d:5f:6f:67:84:93:42:0c:a9:05:36:a2:69:c2:
32:8f:e5:a0:db:04:2a:6c:01:1a:be:aa:fe:cf:a1:
b4:9a:38:2c:89:3f:78:bb:91:42:27:b4:c2:fd:5c:
63:9d:bd:fe:1a:1d:f7:0b:11:5b:cd:68:ca:51:36:
f4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:33:B0:0D:98:AB:91:8D:38:85:FB:9D:5F:AC:A3:BC:91:DE:C1:93
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kDOwDZirkY04hfudX6yjvJHewZM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/20
Signature Algorithm: sha256WithRSAEncryption
65:8d:6b:18:83:b1:bc:38:70:05:ba:26:2b:df:c4:ff:93:76:
24:62:1f:ea:24:ad:5b:49:7e:22:b8:94:99:70:50:ef:fc:47:
df:a7:e7:ad:52:dd:2b:a5:57:47:c3:2e:11:00:9b:9e:55:0a:
fe:e3:65:db:59:a2:2b:e3:9e:eb:0c:c2:e1:98:9d:96:64:6e:
6e:cd:0e:0b:fe:40:c2:e3:7b:ae:27:d4:70:56:61:56:23:9b:
dc:d6:e5:3b:35:e3:4f:77:70:78:f0:77:55:64:d6:b1:59:53:
57:da:fb:f3:47:ef:b3:dd:17:18:0f:6e:58:a3:fc:8a:d8:5d:
e7:96:96:1b:d6:46:ed:c8:9a:4a:a2:e2:6c:70:96:b0:cf:06:
56:69:a1:aa:bb:36:3e:5d:e4:da:65:ce:e5:bd:17:d8:9a:66:
1e:95:1f:a6:f0:04:a2:93:55:7a:1f:de:7b:27:85:3f:34:55:
68:71:05:58:47:95:0c:bd:a2:c5:9f:af:af:e6:29:5d:01:c0:
32:41:41:8f:99:06:c7:f6:36:2e:49:aa:83:27:c5:98:10:74:
80:af:ca:ff:1b:7b:e7:6a:bb:7a:29:92:6e:b5:97:25:12:43:
18:22:9c:5f:96:2c:1c:46:c5:93:bb:bf:b4:a5:82:18:75:cb:
aa:6d:b6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org