Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/kxqXh6bBE4EULFeteySnWOsDJHY.roa
File: kxqXh6bBE4EULFeteySnWOsDJHY.roa (raw, json)
Hash identifier: SgitbJylUUiCCFzTuH9u7NWlL4/2dhC8GhA60I1Z43I=
Subject key identifier: 93:1A:97:87:A6:C1:13:81:14:2C:57:AD:7B:24:A7:58:EB:03:24:76
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kxqXh6bBE4EULFeteySnWOsDJHY.roa
Signing time: Thu 15 Sep 2022 02:40:12 +0000
ROA not before: Thu 15 Sep 2022 02:40:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=931A9787A6C11381142C57AD7B24A758EB032476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:42:1d:49:cc:b3:aa:36:76:df:f5:aa:b5:47:
90:f1:af:ff:09:35:25:64:cc:91:da:14:cc:0b:2f:
b3:b6:c0:26:4b:46:2b:13:90:92:4a:dc:28:cd:78:
45:8c:38:fd:fb:d5:83:41:f2:91:e5:e0:8b:2c:f6:
71:cd:5c:1a:82:85:27:c5:8e:0a:1b:67:7e:45:91:
08:eb:94:f6:77:28:82:8e:55:97:53:7f:02:71:6e:
ad:74:dd:99:45:54:54:dd:c7:bf:b9:cb:06:b8:99:
d2:b5:63:a9:22:8f:6e:cf:6c:a9:28:8b:d0:bb:f5:
94:53:54:ab:ec:39:48:eb:a2:5f:8a:30:94:68:f4:
cd:01:75:62:9d:76:d9:13:5a:af:bd:fc:ed:f2:2d:
eb:d1:51:ac:ab:98:52:9f:40:e5:76:0b:81:01:cd:
55:f6:91:c6:0b:17:60:51:a4:ba:04:3a:8a:57:9d:
c2:80:1b:c9:1e:e5:f1:32:90:d5:06:ed:92:e7:7d:
22:c1:3a:95:c2:81:7b:f4:fd:de:29:37:9f:44:8d:
27:22:8a:f9:12:38:25:96:13:cf:ee:4c:6b:9d:fe:
95:f3:33:29:1e:50:17:6f:ab:15:5f:39:c9:98:cd:
b8:45:4a:9a:b3:79:d0:67:9b:1b:4b:6f:25:63:a1:
3a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1A:97:87:A6:C1:13:81:14:2C:57:AD:7B:24:A7:58:EB:03:24:76
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kxqXh6bBE4EULFeteySnWOsDJHY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
55:99:aa:bc:9e:1a:d7:ac:90:8c:b9:d7:b0:2e:6a:36:57:bd:
7d:51:73:21:07:5a:af:84:90:14:20:af:d3:9a:7d:22:d5:1b:
fb:63:84:f2:41:6b:7d:6c:42:50:86:2e:4b:17:aa:91:ea:fe:
36:47:ba:cc:60:1e:25:e6:61:5e:c5:91:ac:91:88:70:9e:56:
21:b2:b9:c7:38:23:0b:8c:86:5d:a7:e8:06:ac:26:d3:79:ca:
d9:7d:4b:b6:a4:37:ea:68:77:5d:e2:0d:60:2b:04:d6:8a:7b:
22:22:c7:ea:6f:60:f9:f5:1c:12:ae:43:5e:b7:ee:c0:3b:66:
f0:c3:58:a8:4d:fe:81:f8:1b:b0:dd:8d:9c:e3:0d:d7:71:d9:
93:7d:bd:54:d5:08:3e:57:77:ad:8a:26:f8:1a:bd:fc:f7:47:
6e:8f:7a:df:62:cb:14:fe:66:3c:b6:f5:c2:15:50:19:36:ae:
12:9c:f1:86:9f:f7:fa:61:cb:dc:b6:d8:de:55:56:d2:54:34:
c5:af:78:51:d7:9b:4c:04:8f:90:ba:ef:24:40:b1:93:86:75:
9f:2a:03:0b:4a:88:c0:0d:0e:19:d5:07:bd:a3:a5:d4:3a:f3:
c1:bc:41:64:ea:fc:b1:11:8b:fc:c2:5d:1d:de:69:9f:a2:e7:
be:d8:35:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org