Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/kdisYO9Wu28Ro3OL3Ns0HnIarks.roa
File: kdisYO9Wu28Ro3OL3Ns0HnIarks.roa (raw, json)
Hash identifier: f+OdXx+CJnS7w9RVkeoSpYPOlqX6RXf8uMQpxYpSdxg=
Subject key identifier: 91:D8:AC:60:EF:56:BB:6F:11:A3:73:8B:DC:DB:34:1E:72:1A:AE:4B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1310
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kdisYO9Wu28Ro3OL3Ns0HnIarks.roa
Signing time: Fri 01 Sep 2023 08:05:19 +0000
ROA not before: Fri 01 Sep 2023 08:05:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 60.244.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4880 (0x1310)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=91D8AC60EF56BB6F11A3738BDCDB341E721AAE4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:18:bd:99:0f:5d:db:2d:94:59:85:bf:7a:08:
7e:bf:c1:fe:2a:f6:75:95:e9:ec:d7:fd:74:1f:fe:
be:d3:2b:f0:c8:87:ca:51:6f:6d:81:51:34:d6:9f:
70:98:6a:30:41:89:08:4c:ce:27:16:c6:33:85:a7:
04:4a:ec:9d:ab:f1:d1:fc:d1:bc:42:3f:20:a1:a4:
2b:86:c7:ad:bb:9e:28:ac:34:9b:80:dc:7c:88:c6:
1b:35:f8:2e:92:0d:b4:40:eb:f5:5e:5c:5c:08:5d:
ec:9d:03:2e:21:cb:b9:52:07:1b:a7:ae:22:a9:50:
68:c1:28:17:36:6b:1a:9b:72:9d:3e:c5:67:b8:6a:
7e:48:51:c5:79:95:b0:f8:41:0e:56:46:c3:da:88:
dd:94:ed:2b:71:fb:62:bb:8d:5a:f4:4c:31:e4:56:
1b:0a:fa:dc:32:42:22:e2:3c:f7:cb:ed:83:61:50:
5e:15:b3:b7:49:47:9a:cb:bd:f7:65:f5:a0:51:d9:
de:0f:4b:7e:dc:da:34:8f:ce:83:21:2b:24:06:53:
cf:de:f7:39:02:ee:7f:2f:c4:28:83:b8:57:1b:7d:
91:e4:b2:6a:ff:ba:51:ee:3e:07:c4:6f:89:8b:56:
fd:11:8b:99:b6:11:2c:00:b2:00:94:c3:c3:93:3e:
00:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D8:AC:60:EF:56:BB:6F:11:A3:73:8B:DC:DB:34:1E:72:1A:AE:4B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kdisYO9Wu28Ro3OL3Ns0HnIarks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.64.0/18
Signature Algorithm: sha256WithRSAEncryption
6d:b4:5a:27:cf:aa:d2:8c:ba:a1:92:f3:ac:9e:9c:76:d3:8f:
1e:7c:84:83:d3:0c:d5:3a:ac:06:f8:25:44:6b:7d:ba:f3:a1:
ee:c1:fd:4a:26:3f:68:5b:6e:9d:ab:25:3b:a4:3a:51:9f:7e:
9d:b0:64:cb:a8:59:d8:82:bf:1c:15:da:70:bb:10:d0:8f:89:
a1:04:80:f6:23:a1:ee:c7:94:7f:9d:43:3f:44:8c:3b:00:8d:
f4:f7:cc:d0:de:0e:b4:d6:1e:6b:54:e4:c6:cf:41:9e:91:cb:
23:28:21:01:4d:f6:13:5d:64:66:e3:bb:c9:5d:89:d7:6a:7f:
c9:61:76:a8:c8:17:6e:62:83:ca:cf:02:3c:ba:c9:52:b9:f1:
ec:18:5e:30:32:1b:ca:a6:15:04:10:84:94:96:36:c1:1c:6d:
c9:d5:11:41:92:a1:ff:96:3d:2e:cd:4d:5b:0b:d3:c6:b7:21:
65:c6:19:a0:17:14:03:05:b8:3f:b1:db:40:00:13:14:01:80:
ca:b4:36:d5:d6:30:9a:64:05:d0:90:eb:4f:d2:16:7d:b3:c8:
07:41:26:81:55:ca:84:db:7f:d2:74:43:9c:05:3a:6a:fb:de:
04:95:5f:9e:1c:22:41:39:b3:cd:a8:1d:e9:9e:ec:ba:91:7c:
ec:27:f6:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org