Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/nFXUt0jCvvS5swqTB-B5pE1Z5nU.roa
File: nFXUt0jCvvS5swqTB-B5pE1Z5nU.roa (raw, json)
Hash identifier: 6WsYBwsAhCnn5xgolTphQ2LG2IwDNu7WY+D78Rl9oDQ=
Subject key identifier: 9C:55:D4:B7:48:C2:BE:F4:B9:B3:0A:93:07:E0:79:A4:4D:59:E6:75
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nFXUt0jCvvS5swqTB-B5pE1Z5nU.roa
Signing time: Thu 15 Sep 2022 02:40:30 +0000
ROA not before: Thu 15 Sep 2022 02:40:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C55D4B748C2BEF4B9B30A9307E079A44D59E675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:70:63:35:7d:e3:c5:cf:d9:33:9b:77:35:e0:
c9:7a:46:f3:d4:cf:f8:0a:c6:db:9a:e8:0b:b3:66:
17:58:f6:58:7d:ed:1c:42:5f:9b:a4:69:07:ad:fe:
ae:cc:ab:e7:d4:fa:93:ee:20:94:1d:69:69:3f:32:
de:e1:50:d7:ea:48:54:c2:e6:11:bd:48:ea:fe:0e:
86:94:a2:3b:0c:02:47:38:0f:4e:25:bd:f3:77:91:
df:30:0a:53:75:5b:20:c7:c4:a5:5f:83:2b:37:10:
28:9f:92:ac:da:20:e2:39:b3:06:98:d5:3f:37:33:
ba:20:ed:96:0f:df:85:0b:ed:8c:af:94:11:91:37:
b7:17:b0:c9:60:29:8a:f6:01:66:36:ad:08:c2:48:
04:5e:0a:c0:c5:79:13:0b:c9:83:e1:68:77:a9:e2:
03:70:4d:54:2b:fb:5c:c2:98:f3:28:62:58:d8:3c:
05:c5:56:52:a2:9f:6d:43:f4:96:f9:d0:5c:a7:f0:
a2:3f:87:53:0b:68:39:c1:e7:7b:6d:e8:bb:59:f1:
54:98:5e:89:de:df:83:3f:e8:e2:65:76:56:ed:ec:
db:80:1b:32:17:e1:8f:b2:c0:92:e8:ac:39:82:a1:
16:56:b3:08:07:b2:0a:8b:ae:1c:36:1f:20:10:5d:
47:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:55:D4:B7:48:C2:BE:F4:B9:B3:0A:93:07:E0:79:A4:4D:59:E6:75
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nFXUt0jCvvS5swqTB-B5pE1Z5nU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.224.0/19
Signature Algorithm: sha256WithRSAEncryption
33:fa:6a:91:f2:20:a6:03:c3:87:b0:2e:e7:7e:cf:12:04:b2:
d3:74:45:a8:be:3b:09:ac:a9:30:a0:42:47:5a:54:64:14:2c:
88:5c:fa:f3:a3:a8:77:ea:ff:84:d4:e8:cf:f2:fd:f2:16:05:
b9:e5:e1:7a:db:c9:d9:42:0a:d8:ad:3b:33:ea:05:49:3e:a9:
c3:ac:72:1c:03:86:4c:7a:ae:3a:3b:f7:d2:ef:f1:a5:4d:9a:
6d:0e:dc:d4:b8:98:d6:0b:04:5f:76:ef:8f:3b:46:50:88:af:
2d:99:f5:a7:61:94:de:40:7d:67:f3:12:b4:fb:18:1c:0f:0f:
f8:bf:65:c0:e4:b5:b5:43:30:c1:b1:6f:70:3c:3a:ee:54:f0:
d4:ab:44:18:f3:d5:40:57:e1:ef:71:bd:63:b0:ef:7b:4e:a4:
7f:72:2f:4a:cb:61:fb:14:64:99:cf:91:15:e3:38:4f:ea:33:
de:70:85:34:e5:82:c7:1c:b9:7f:00:dd:1b:02:5d:65:d8:f7:
41:3f:c7:af:a8:9e:dd:4a:15:d0:47:70:f4:6b:46:aa:4e:d6:
a6:6f:14:a2:2a:3b:84:62:9d:55:59:54:07:e6:a1:31:7b:6e:
08:a7:cb:57:14:8f:79:67:12:0f:60:ed:6e:5e:c5:89:36:b9:
76:64:57:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org