Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ndgcySA_tuiroIBXqX33LNxHSZ0.roa
File: ndgcySA_tuiroIBXqX33LNxHSZ0.roa (raw, json)
Hash identifier: nVsq7u8zMkEwKIyO+xmRKxMYMuh/xx3bvplqKX1zpds=
Subject key identifier: 9D:D8:1C:C9:20:3F:B6:E8:AB:A0:80:57:A9:7D:F7:2C:DC:47:49:9D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CD9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ndgcySA_tuiroIBXqX33LNxHSZ0.roa
Signing time: Sun 07 Feb 2021 13:00:42 +0000
ROA not before: Sun 07 Feb 2021 13:00:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.203.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3289 (0xcd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 13:00:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9DD81CC9203FB6E8ABA08057A97DF72CDC47499D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b7:d2:bf:fb:b1:09:35:f8:5f:88:e5:f9:29:
e9:4e:1d:81:c5:2e:1d:63:54:40:0c:a3:f2:e7:c0:
71:f2:ca:56:bd:ea:ff:eb:4e:8f:41:3e:5e:08:40:
30:70:cc:5f:17:23:78:ea:d1:55:90:f9:34:12:a3:
f7:64:fb:3e:1a:25:db:9f:bd:7d:e5:cd:ae:f9:5c:
54:0c:34:e6:73:df:a9:47:a7:9d:53:be:ca:9b:60:
c6:f0:a0:81:3f:09:1c:db:34:bd:c6:c4:50:8f:aa:
40:3c:4a:24:ee:79:98:72:42:e8:5b:df:c9:62:79:
1c:5d:59:69:be:f8:3b:cc:7a:51:1d:dd:d0:5a:18:
2e:bc:62:14:83:c6:82:68:93:14:d5:1d:08:73:3b:
b7:c4:1d:ac:49:d2:e5:6a:0f:d7:4b:83:c2:97:f2:
93:37:5b:d3:67:6d:9a:b5:ba:ba:1d:c3:10:3c:ad:
f2:d9:4b:04:17:e0:fc:e0:9a:27:fe:34:ef:62:e5:
81:f5:d9:5b:1b:08:cb:b4:36:73:39:69:c7:a6:99:
11:64:65:dc:fb:2d:d4:10:37:ff:3d:9e:9d:9d:b7:
e2:2f:2d:2f:f2:f9:f1:24:02:da:c6:b7:5d:10:ac:
4f:05:bd:2f:ac:46:20:8c:88:16:47:78:c8:dc:30:
47:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D8:1C:C9:20:3F:B6:E8:AB:A0:80:57:A9:7D:F7:2C:DC:47:49:9D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ndgcySA_tuiroIBXqX33LNxHSZ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.20.0/22
Signature Algorithm: sha256WithRSAEncryption
58:61:d1:01:1f:7e:c2:5c:fb:79:5e:fc:31:37:68:eb:6d:12:
ee:e7:94:3f:42:40:aa:9a:9d:14:c9:ca:24:59:9c:44:26:b2:
b7:f4:22:60:63:c8:57:fd:b7:83:90:87:33:f1:f4:4a:9d:22:
0b:56:5a:02:1f:28:47:d7:59:74:09:e5:bc:ee:28:b7:0e:47:
4c:de:32:2f:ce:df:e4:a9:bf:92:d6:0d:cf:75:46:55:5d:81:
9d:55:51:87:c1:a0:8a:24:b1:76:f6:7b:db:f8:4b:46:ac:11:
9a:cc:16:ff:52:4e:69:5a:62:b8:ee:e3:98:56:0e:3d:f0:b2:
4c:00:58:b3:77:26:05:d7:33:59:e3:5f:60:2c:3b:39:93:6b:
ab:b7:56:dd:cd:ed:34:f2:e3:dc:1c:27:b1:4f:fd:6e:ff:f9:
5c:66:21:19:1b:c6:5d:e6:c7:9b:8c:77:69:42:34:f5:0c:9c:
76:29:49:bf:66:97:af:2a:ae:54:a8:47:7b:55:73:68:9a:ba:
75:d4:ca:96:45:4e:74:ff:99:85:a5:01:3c:01:39:f9:f2:d9:
89:4a:a9:16:6b:c8:fe:86:05:77:45:19:a5:f4:42:45:11:bb:
76:cd:63:2e:74:88:51:fe:3e:13:26:9c:27:fc:ce:ee:d9:eb:
cf:33:91:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org