Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/lukhKKbeORTjq16yLJbiQNkWpjI.roa
File: lukhKKbeORTjq16yLJbiQNkWpjI.roa (raw, json)
Hash identifier: BSAQqTekOTZXSwl94G0ZUvMsHp9bGMU3w3VLkjuntmM=
Subject key identifier: 96:E9:21:28:A6:DE:39:14:E3:AB:5E:B2:2C:96:E2:40:D9:16:A6:32
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 130B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lukhKKbeORTjq16yLJbiQNkWpjI.roa
Signing time: Fri 01 Sep 2023 08:05:18 +0000
ROA not before: Fri 01 Sep 2023 08:05:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131584
IP address blocks: 210.203.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4875 (0x130b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=96E92128A6DE3914E3AB5EB22C96E240D916A632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a7:74:ad:b8:df:b5:75:56:1b:0b:93:8a:f9:
19:7a:42:01:1a:8e:48:fd:25:d8:82:d5:14:e4:61:
c5:e4:ad:86:84:19:7f:78:1c:78:dc:46:27:4e:4b:
98:02:67:9c:3e:d7:fa:85:d7:d8:bc:1b:0d:d1:1e:
f8:cf:ad:64:80:be:fa:3b:3a:b6:aa:c9:ba:8c:19:
8d:cd:6a:72:7b:c0:c5:15:c7:fe:e9:41:7b:9b:19:
d0:95:ae:e4:b8:2d:6d:51:a1:e0:be:9b:6b:1f:de:
26:9d:90:49:f8:81:28:1e:f6:7a:d8:dd:31:8f:bb:
57:38:52:05:c5:c0:74:05:70:45:a0:d7:e8:61:97:
24:11:8d:ed:9f:78:e0:04:50:c4:e5:8b:e9:87:a6:
8b:2c:3b:70:31:7c:62:a1:c0:84:33:16:39:bc:4c:
0c:4b:e0:25:f8:16:aa:18:f1:a8:45:61:bf:9f:c5:
67:24:f9:78:26:55:c2:0c:14:3d:6a:3e:35:d8:fc:
e1:df:ae:35:fb:97:0c:38:48:c0:d9:86:d1:32:22:
fc:ad:6e:b7:a8:22:2b:38:30:fc:5d:cd:8d:25:1e:
76:33:0c:77:e3:63:f7:0f:cf:1a:c6:ee:2e:24:82:
4c:ab:53:35:ff:05:ae:36:79:e6:e0:dd:e0:c8:ca:
42:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E9:21:28:A6:DE:39:14:E3:AB:5E:B2:2C:96:E2:40:D9:16:A6:32
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lukhKKbeORTjq16yLJbiQNkWpjI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.48.0/20
Signature Algorithm: sha256WithRSAEncryption
17:96:b9:03:4d:f8:06:4b:61:82:64:b4:64:6c:91:68:68:42:
19:e1:94:ff:9c:2b:c6:d3:c7:6a:1d:10:58:d2:81:2a:39:1a:
6f:dd:96:72:a0:ad:10:7b:fb:bf:21:77:f5:cb:7d:3d:a4:83:
fa:e3:93:01:e3:cf:93:8c:4b:4c:90:36:fb:cb:28:13:ea:36:
ff:59:ce:ff:2f:cf:a8:d7:e5:d6:17:53:16:c5:a0:cf:cf:93:
53:cc:d3:f4:79:ff:f5:f5:16:51:37:ce:1d:d1:ec:67:af:38:
fc:42:cf:72:2f:94:b9:a4:36:ff:f8:f1:b3:29:ad:34:39:74:
d6:68:ed:1f:cd:f8:df:1c:5d:10:3f:f3:cb:3d:5f:9c:21:22:
1a:8a:f8:d9:b1:84:b3:69:b8:41:a1:29:9d:dd:6a:fd:bd:33:
5e:d3:ea:d1:79:f3:1c:04:64:ab:e9:aa:3d:e2:72:3f:e1:86:
49:5e:d9:46:21:b7:76:f6:76:f0:55:a1:6e:32:97:83:29:ef:
e2:f4:3e:21:ec:d4:88:d2:f6:4f:55:d5:cd:fa:b9:8d:61:b7:
15:1f:5c:b7:e3:dc:c7:38:5a:67:5f:24:e5:ba:ff:2d:9e:70:
d1:f5:9b:ba:9f:3d:12:4c:d9:73:62:a8:98:d0:c3:72:48:d2:
4b:d0:b5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org