Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ldPYAjqtc2rhPJWFYpEPw0fgyg8.roa
File: ldPYAjqtc2rhPJWFYpEPw0fgyg8.roa (raw, json)
Hash identifier: nGiX0pV962yj9SOKe6F2/Hqbs1uT3ilqGdnhkKw7p/E=
Subject key identifier: 95:D3:D8:02:3A:AD:73:6A:E1:3C:95:85:62:91:0F:C3:47:E0:CA:0F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10B2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ldPYAjqtc2rhPJWFYpEPw0fgyg8.roa
Signing time: Tue 16 May 2023 08:36:31 +0000
ROA not before: Tue 16 May 2023 08:36:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 222.156.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4274 (0x10b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=95D3D8023AAD736AE13C958562910FC347E0CA0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7b:3b:9c:ed:d4:bc:cd:f2:69:d9:1a:34:af:
31:ce:c9:77:7d:90:de:84:36:9b:e3:48:8e:bb:4b:
c0:b6:a0:ca:0a:ab:b0:2f:fa:8d:d0:25:dc:96:b5:
87:9b:8f:50:db:41:00:38:67:61:13:5b:2b:c0:3d:
38:68:d8:8d:dc:0c:55:f3:71:3d:0c:ab:b3:10:de:
db:1e:c0:a6:80:74:10:9d:45:12:fb:72:e1:0d:c9:
89:f4:0b:bd:b1:64:ac:21:d1:02:c2:5b:99:9e:d5:
8c:96:9f:9b:62:3e:a7:1b:81:71:2a:94:8f:19:be:
70:09:6b:9d:97:f2:aa:35:aa:c9:5d:54:07:c8:ba:
b8:87:b2:5b:5f:b7:6c:63:49:49:41:3a:ca:9d:0b:
f0:1c:97:66:a0:26:78:6b:fa:cb:aa:27:3d:08:92:
90:d9:e0:1b:b2:8b:60:43:79:d3:33:f6:34:28:b9:
cf:8a:84:34:64:fe:1a:5a:15:35:1a:61:c4:ef:fd:
25:98:a8:74:b1:a8:50:21:42:76:d2:2e:1f:ca:73:
e6:b0:11:67:72:71:61:83:f6:12:18:df:d8:de:83:
d1:c4:84:d3:e2:4f:e3:8a:fe:fb:14:d7:f2:00:c0:
95:08:81:54:a6:33:34:07:aa:d1:e1:1d:53:46:aa:
7f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D3:D8:02:3A:AD:73:6A:E1:3C:95:85:62:91:0F:C3:47:E0:CA:0F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ldPYAjqtc2rhPJWFYpEPw0fgyg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.247.0/24
Signature Algorithm: sha256WithRSAEncryption
88:2e:98:c7:d1:cd:3a:1c:41:a4:d3:f9:ad:14:b3:28:f2:02:
65:56:9c:cf:52:91:28:d6:fc:38:0a:98:c9:50:86:73:ec:b0:
f5:cb:17:14:b3:63:ed:62:15:3c:f2:c9:f3:8e:81:a4:3e:62:
aa:9a:89:29:cd:96:d6:46:c8:76:af:75:fb:6a:19:cf:43:67:
79:0a:83:58:87:31:1d:ce:f9:a9:5d:e9:02:57:3a:72:50:ff:
6c:94:f4:ad:75:56:17:82:99:f8:1b:8e:a1:11:bc:18:75:71:
77:12:08:7b:37:e8:3e:dd:9f:74:ae:ca:3c:f0:ad:1c:6a:be:
1a:73:50:1b:d3:9b:d5:53:0a:15:86:c6:0f:68:e2:a5:b0:10:
1f:64:e5:01:07:7a:19:46:c8:66:42:b5:26:a0:91:51:c5:4e:
da:25:68:d2:80:90:ef:1a:b6:51:7d:4f:6e:16:92:f7:35:6c:
6b:21:5c:18:55:f5:40:38:20:d1:18:91:09:8f:39:4a:e8:91:
1a:ed:77:15:dd:24:9b:ee:d3:1a:21:19:95:b4:bf:36:e1:c3:
e3:94:e8:fd:08:b1:3e:fd:30:44:9e:19:a2:a1:28:44:c7:66:
d8:01:0b:0d:94:60:4a:73:da:db:e6:b3:4c:52:01:8d:dd:ae:
86:0d:81:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org