Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/nKnn1s4p20-GnkkwocDopa5MELo.roa
File: nKnn1s4p20-GnkkwocDopa5MELo.roa (raw, json)
Hash identifier: aII5iMujypyUcRnG5UVyRhmPr2hXOxAVRaQc3BPQNCQ=
Subject key identifier: 9C:A9:E7:D6:CE:29:DB:4F:86:9E:49:30:A1:C0:E8:A5:AE:4C:10:BA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E11
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nKnn1s4p20-GnkkwocDopa5MELo.roa
Signing time: Wed 29 Sep 2021 02:39:55 +0000
ROA not before: Wed 29 Sep 2021 02:39:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131142
IP address blocks: 222.251.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3601 (0xe11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9CA9E7D6CE29DB4F869E4930A1C0E8A5AE4C10BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:6f:ea:cc:65:d8:3f:48:da:03:49:f7:0c:2d:
f3:97:fb:8e:93:35:2e:8f:e9:1e:77:02:a9:d8:df:
b4:68:17:46:4b:89:21:9f:22:99:87:ed:f9:fb:b8:
6c:9e:16:6f:ee:9c:49:eb:d3:b7:c2:b6:a6:79:1a:
21:f5:6c:b3:6e:af:ad:39:cb:7a:5a:3f:ce:99:e6:
36:f7:63:da:3b:73:85:2b:ab:ff:a6:02:25:53:aa:
df:1a:6b:af:3b:5c:3e:1a:df:00:1b:05:77:07:b6:
25:fd:10:25:f8:af:74:e5:14:96:51:fb:a3:55:5c:
40:b0:1c:ad:95:90:63:f0:1a:8c:84:69:5d:53:b9:
e6:b0:f2:c8:70:e0:c6:f7:a1:f8:5a:3f:92:79:9f:
2e:b2:39:64:1f:53:45:a3:9a:85:a8:fb:04:4a:df:
ff:5e:fd:a0:80:9f:29:98:3c:c2:c5:30:b2:90:7e:
32:5b:38:6d:db:89:60:01:4f:9d:1c:81:c7:2b:b1:
2b:ca:41:be:73:34:e9:2e:69:24:7c:81:28:50:94:
10:c4:3d:af:66:8e:9d:71:f9:92:a8:c0:53:b0:b8:
d4:36:3c:05:cc:34:39:84:27:ca:37:90:62:ec:7f:
58:01:5b:e2:43:74:6e:06:f7:53:d7:96:7a:70:d8:
b6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A9:E7:D6:CE:29:DB:4F:86:9E:49:30:A1:C0:E8:A5:AE:4C:10:BA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nKnn1s4p20-GnkkwocDopa5MELo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.251.0.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:83:d5:25:6d:12:17:5e:06:08:61:c1:b4:2b:d3:17:f1:6f:
b9:94:a1:9b:af:7e:b2:f2:ad:0f:b3:8d:f7:d4:c9:ad:06:68:
d9:17:6a:a6:55:99:21:78:1b:cd:6c:01:3d:88:5d:c3:3b:c0:
f6:65:97:d0:bf:90:ef:03:89:99:ec:79:9a:8a:f4:03:78:d6:
44:43:8e:d3:3d:e0:0b:7f:3b:d0:76:57:7d:f0:25:13:fd:00:
81:9c:20:13:f9:5d:a6:45:2c:b9:17:dc:9f:85:a2:7a:03:99:
cb:38:95:4a:a9:b1:0a:1b:f0:96:1e:24:b8:6c:b6:8d:ed:79:
5d:81:a2:ea:18:ce:b9:f1:19:66:6c:f7:18:c7:f0:b1:ee:54:
65:56:3f:2f:e7:1b:bd:09:e5:be:35:fd:b7:8d:7d:bc:70:c3:
48:70:2d:3b:af:aa:bc:4b:3d:0e:0e:03:e8:02:44:11:4e:cf:
c9:09:bf:2d:2c:a7:6f:49:ba:de:df:ca:cc:f4:d6:29:51:df:
2b:45:3c:a0:f3:53:cf:33:e9:21:a3:03:e7:a7:54:e6:3a:92:
94:1a:79:bd:5d:ec:a1:27:de:25:11:36:99:6f:e9:e9:cb:68:
0b:aa:9f:0d:9c:8f:4d:ac:dc:9b:f4:a4:51:61:fd:f3:a6:71:
25:a6:f9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org