Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/msAh960RtVp_-EeiDT4-2jF72KA.roa
File: msAh960RtVp_-EeiDT4-2jF72KA.roa (raw, json)
Hash identifier: q7ZXSgnh/ey961pnUAccI3H/piwyme2S1orOWtaXxjM=
Subject key identifier: 9A:C0:21:F7:AD:11:B5:5A:7F:F8:47:A2:0D:3E:3E:DA:31:7B:D8:A0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1047
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/msAh960RtVp_-EeiDT4-2jF72KA.roa
Signing time: Tue 16 May 2023 08:35:59 +0000
ROA not before: Tue 16 May 2023 08:35:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131142
IP address blocks: 210.200.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4167 (0x1047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:59 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9AC021F7AD11B55A7FF847A20D3E3EDA317BD8A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dd:e6:b2:da:00:5b:50:23:1c:2d:5a:ca:a8:
f7:b5:13:47:ef:c7:49:e8:94:54:82:55:97:2b:08:
36:9c:d4:98:26:30:ea:1a:55:3d:49:ea:c7:b3:47:
f1:ff:9a:b6:f3:55:73:ce:94:0d:4b:b7:55:a5:ae:
bd:ce:d6:80:38:2b:bb:3a:42:e9:3f:67:32:e7:a5:
52:3b:9b:33:a7:78:74:65:bc:65:af:c3:00:d1:3b:
b6:f0:3a:e4:f0:c9:ba:a8:b1:b8:a6:b9:9d:c7:c5:
2d:1f:57:af:d9:fa:4c:a6:44:eb:fe:c0:de:a3:f2:
5a:4b:d5:b7:ef:8f:60:b1:b1:c3:c2:c4:53:da:7c:
b8:d4:0c:fb:7d:c2:54:41:b0:4b:33:08:c2:21:1c:
ce:81:d3:95:9e:8a:68:9c:f0:ca:b3:93:20:84:e6:
7e:a7:c4:3e:64:40:24:6c:48:d2:64:b6:91:cb:60:
fc:43:c8:44:49:21:d6:fd:80:7b:a8:71:10:af:8f:
a5:25:7c:c4:cd:1c:8b:41:0f:1d:5a:81:3f:35:56:
00:b0:f7:aa:2b:e8:8a:d1:7c:fc:e7:25:17:44:9e:
d1:6a:15:e9:e3:23:41:66:a0:21:ca:50:08:26:8d:
66:4b:29:86:cf:48:10:b6:5e:d2:ad:11:0e:66:b3:
ab:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C0:21:F7:AD:11:B5:5A:7F:F8:47:A2:0D:3E:3E:DA:31:7B:D8:A0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/msAh960RtVp_-EeiDT4-2jF72KA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:97:63:4e:4b:dc:fc:77:b5:b2:f8:1f:2e:ce:55:e7:4c:88:
37:97:73:5a:e3:93:bf:b7:24:e4:27:dc:71:53:2f:20:18:73:
f0:1a:74:82:fb:94:98:95:2f:67:a1:7f:d7:d3:c1:f5:96:02:
aa:06:5f:9b:ea:7b:5b:60:46:24:a2:71:51:20:bb:95:11:1a:
0f:79:96:ea:e7:08:12:86:cd:02:79:d8:48:ca:cc:53:04:33:
0b:c1:0c:2d:07:30:d4:fe:7f:99:db:8e:c8:f0:c9:36:4d:49:
ea:d4:27:6f:30:e6:9f:0e:3a:38:fd:31:fb:d1:67:a1:d3:d5:
42:83:8e:32:c7:0a:e3:b2:62:b4:d8:71:3e:8c:f4:94:d4:10:
ee:29:59:9b:e8:98:11:d8:f9:e4:a6:6e:dc:94:8d:4f:eb:7b:
98:fc:65:00:3d:14:b7:2e:ed:49:16:77:2e:ef:ed:88:f5:b2:
8c:5d:d5:25:d0:9a:2f:3c:e2:03:d3:6d:d6:47:a5:a1:ef:2f:
4b:6f:d0:fa:b7:4d:a3:f9:29:63:a6:2a:e6:66:49:fe:18:95:
fd:dd:51:84:e6:3a:63:72:91:78:57:98:56:06:1a:c3:ae:1f:
7c:d4:da:e7:1f:0d:ba:43:64:93:f4:c9:8e:d1:9e:e0:5c:5f:
5f:43:22:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org