Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/lldbX_bBjNSluTwQjO09ls2YcyY.roa
File: lldbX_bBjNSluTwQjO09ls2YcyY.roa (raw, json)
Hash identifier: QciRS/PS5QFFEI3drmpPXoaWQae+rpWdBzDpSH0122E=
Subject key identifier: 96:57:5B:5F:F6:C1:8C:D4:A5:B9:3C:10:8C:ED:3D:96:CD:98:73:26
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12D0
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lldbX_bBjNSluTwQjO09ls2YcyY.roa
Signing time: Fri 01 Sep 2023 08:05:01 +0000
ROA not before: Fri 01 Sep 2023 08:05:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131142
IP address blocks: 210.200.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4816 (0x12d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=96575B5FF6C18CD4A5B93C108CED3D96CD987326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:04:0d:bf:b6:92:c5:ca:42:8f:ee:3d:e0:97:
6e:7b:60:8a:1c:6e:a7:d6:58:96:9a:fb:52:d3:41:
3f:8a:c9:91:c0:cd:bf:04:c6:ef:cc:23:f4:cb:ca:
27:e0:e3:51:e2:bc:6c:ca:3c:c2:60:82:f9:17:eb:
e5:e5:06:7a:d5:37:12:31:17:b5:df:79:37:cc:99:
87:6b:4a:dd:1a:df:a6:91:75:e9:c8:41:ac:97:96:
30:93:d0:c0:41:e8:8a:87:f2:db:ba:5d:a8:0e:ec:
a4:c7:53:4e:bf:90:0e:3e:44:97:ee:3b:d3:45:6d:
6d:fc:fd:7d:42:dd:ed:69:a1:d2:48:e0:15:3e:fc:
9e:c6:d4:05:52:9e:51:58:e2:1a:da:76:6a:a2:cf:
5d:35:19:a3:0d:1a:f1:cb:c2:61:7f:10:3b:d6:94:
73:29:24:ac:e2:c0:eb:90:b1:58:cf:64:5f:ae:63:
73:29:96:ef:49:4c:7d:46:ef:a8:69:a3:f5:b6:92:
78:90:97:fa:39:91:51:91:7a:ce:6f:ad:49:a8:ac:
f3:7d:f9:a4:35:be:78:1c:49:97:88:b0:a3:f1:f1:
0c:f9:80:d0:1a:f2:d0:6a:d3:9d:8e:6b:f4:a7:f2:
9e:84:42:9a:be:30:9d:12:85:1d:a3:0b:3d:8d:f4:
83:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:57:5B:5F:F6:C1:8C:D4:A5:B9:3C:10:8C:ED:3D:96:CD:98:73:26
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lldbX_bBjNSluTwQjO09ls2YcyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.80.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:b2:a5:8e:a2:e9:38:a2:55:76:92:24:16:00:f5:f9:fa:56:
ba:18:27:6f:27:ed:bd:7d:39:2f:d5:55:81:a7:78:28:aa:92:
48:1b:d4:76:ce:12:a5:2b:54:33:41:53:38:db:cd:38:93:cd:
89:e9:92:60:10:75:d6:2b:07:1d:88:2e:7c:e8:8e:c1:da:b3:
92:32:31:c0:84:12:eb:1b:ee:a4:43:2e:31:f0:20:1d:e2:f7:
14:c8:a0:18:09:9a:48:80:23:00:cc:3a:e5:71:e6:ce:e8:2b:
6c:dc:69:8b:ae:7a:1f:70:e2:39:29:af:06:5e:69:cf:e9:c3:
72:7c:04:15:46:98:34:11:fa:25:77:57:c6:9d:f9:e4:81:b7:
65:c6:ba:b1:c9:7c:b0:b3:00:98:5d:03:4b:f7:f0:aa:ec:1a:
7f:81:66:9a:4e:b1:c8:7b:e1:db:e4:46:06:27:23:51:b4:b4:
7c:f3:55:d9:5f:6b:eb:bc:16:e5:67:45:6e:10:cc:08:7e:d5:
9b:ff:03:ab:0c:51:3d:da:62:85:61:95:5a:6e:31:2a:fe:cc:
3e:04:2f:11:72:ba:74:23:c1:89:d2:b3:5c:f5:51:c7:cd:0e:
ad:b5:eb:a6:5e:45:83:1a:62:b4:ff:51:dc:64:3a:94:17:28:
7b:be:62:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org