Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/kJJT7xv3d4hi33L8I1eQmCOdwQk.roa
File: kJJT7xv3d4hi33L8I1eQmCOdwQk.roa (raw, json)
Hash identifier: Qh1CHMT3GijIQZilx1zrA+xPNKivmszvHZZagvImgms=
Subject key identifier: 90:92:53:EF:1B:F7:77:88:62:DF:72:FC:23:57:90:98:23:9D:C1:09
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kJJT7xv3d4hi33L8I1eQmCOdwQk.roa
Signing time: Thu 15 Sep 2022 02:39:53 +0000
ROA not before: Thu 15 Sep 2022 02:39:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.202.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=909253EF1BF7778862DF72FC23579098239DC109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2a:1e:75:93:09:d1:59:01:3c:b5:94:a3:5d:
f4:25:4f:48:03:25:bf:91:32:cf:f7:58:43:ce:60:
69:22:df:d3:3d:f2:95:05:28:45:f7:63:38:64:ac:
7f:52:42:d4:23:bd:5d:bf:86:49:c9:81:09:b0:e8:
a8:96:dc:b3:2f:7a:a6:1c:fe:94:a1:04:d1:32:00:
3f:72:51:7a:34:9d:11:52:c4:28:9a:a5:00:34:b3:
c1:ba:be:80:55:d3:32:46:76:fa:9e:50:80:b7:79:
0d:33:a2:7e:3f:e0:1a:46:85:10:e5:27:7f:ba:4f:
90:94:c0:f3:3d:67:57:1c:24:de:9c:f7:fd:0f:cb:
11:83:8d:d5:91:5f:53:b5:df:12:cd:0a:19:c1:73:
8d:c3:bc:fb:2e:a3:b4:10:92:46:38:e7:26:6c:28:
87:cc:64:30:9e:08:1d:4b:88:e9:0e:72:f9:81:74:
fd:b6:dc:f0:c7:b7:be:14:ee:1d:0f:28:45:7d:06:
35:94:80:0d:55:44:2b:a6:e7:33:34:87:47:fd:e6:
dc:e5:05:bc:dc:ea:1a:07:88:29:79:07:88:2f:04:
39:68:19:43:b1:b1:88:c0:b5:16:61:d0:57:25:91:
2e:01:4a:25:a0:23:ec:42:ed:ab:ba:19:8a:ff:88:
b4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:92:53:EF:1B:F7:77:88:62:DF:72:FC:23:57:90:98:23:9D:C1:09
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kJJT7xv3d4hi33L8I1eQmCOdwQk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b1:88:8e:6f:e7:7b:26:0c:7c:ff:01:98:9a:85:bd:46:dc:79:
68:21:ed:2e:dc:e4:c4:2f:57:be:af:ae:24:3e:04:51:f1:70:
51:e6:57:70:83:51:cb:72:1c:4e:70:91:e8:3a:5c:01:a5:02:
ff:ac:9e:a2:97:11:a0:37:22:ff:2e:51:09:46:2b:e1:2b:5e:
c1:2d:c7:62:64:07:f4:10:ea:76:fe:8f:23:e3:68:5d:00:65:
81:9a:3d:8c:cf:fc:80:eb:65:89:91:89:ae:f8:93:6a:51:40:
77:ba:41:63:79:a9:2e:43:b3:7c:98:a0:76:12:d4:c6:84:ef:
80:38:46:b0:bf:6f:98:55:0a:17:3b:be:e4:9f:7d:d4:65:e5:
28:7a:1d:7f:60:4d:44:fc:86:c7:fb:61:eb:98:9b:2f:f4:ba:
b4:9c:f4:3c:45:f4:7a:8b:76:69:fd:3d:7f:3a:e7:3a:3b:4f:
dd:5e:0f:cc:58:ed:ad:7c:d0:5b:c1:83:73:63:83:72:fb:de:
41:81:1c:84:68:65:57:c6:2f:da:7c:9e:c9:53:77:1b:9f:e8:
ec:c2:2d:7d:84:f4:53:28:f9:74:d5:15:d9:95:3b:6c:c3:8f:
a5:2b:f4:fa:44:75:d7:58:d2:98:b6:d5:bf:68:05:76:53:e8:
28:66:a8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org