Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/nk9wA52G_1gThVfCMlYpQucILLA.roa
File: nk9wA52G_1gThVfCMlYpQucILLA.roa (raw, json)
Hash identifier: RH18QSep+9jVXIhpfrjWTjaxT9NsZf3mzVNuZuiy1Hw=
Subject key identifier: 9E:4F:70:03:9D:86:FF:58:13:85:57:C2:32:56:29:42:E7:08:2C:B0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0947
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nk9wA52G_1gThVfCMlYpQucILLA.roa
Signing time: Tue 29 Sep 2020 10:01:40 +0000
ROA not before: Tue 29 Sep 2020 10:01:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.201.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2375 (0x947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E4F70039D86FF58138557C232562942E7082CB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:10:eb:fd:d2:33:60:dd:44:7f:00:75:2b:40:
02:bd:94:19:fa:71:d5:65:21:65:55:c1:51:55:49:
50:84:f2:e8:a1:f1:b4:b4:91:5e:11:47:9d:80:66:
fd:d5:72:14:5d:fc:8f:83:e9:d1:1b:c8:c2:e8:de:
7a:9e:bb:47:e6:ed:3e:1f:88:11:9a:c7:d1:64:86:
4d:50:7c:16:9a:a8:80:91:d5:d7:52:35:6e:8f:48:
96:a0:e7:54:22:84:8c:50:39:0e:a9:3f:ad:1c:21:
44:1b:02:05:03:96:7b:90:60:fa:a8:0c:eb:82:96:
aa:f4:ff:fd:7d:49:3c:b3:d0:8c:53:e9:92:4e:c5:
9d:80:00:f3:8d:38:50:10:fd:31:05:5a:46:da:47:
80:60:0a:9d:0d:16:e3:07:23:f9:fc:11:fb:7b:d8:
5b:b3:59:2a:5a:41:8f:b8:89:f7:ac:d8:67:5a:c5:
ef:45:21:f4:ca:45:4b:50:28:05:98:ba:b0:e0:ad:
4a:8b:ca:81:59:3d:39:89:3b:f7:8d:85:70:b2:d1:
ab:a3:24:19:c1:f9:0e:29:8f:d2:d9:1b:5b:1a:ff:
65:11:2b:89:db:cb:10:f2:cd:f2:8c:2e:b2:0a:cc:
ad:0d:e8:2b:db:40:2c:e8:d9:92:60:87:de:62:f2:
10:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:4F:70:03:9D:86:FF:58:13:85:57:C2:32:56:29:42:E7:08:2C:B0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nk9wA52G_1gThVfCMlYpQucILLA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.128.0/18
Signature Algorithm: sha256WithRSAEncryption
35:56:a9:ca:94:ce:2e:6b:58:4d:71:84:c2:2f:37:1d:7f:2e:
ff:79:55:2f:ca:31:f5:79:b2:95:8b:ed:39:5b:2d:f1:cd:cf:
28:50:93:e6:4a:e9:7a:83:a0:76:58:65:ac:87:6b:95:15:8d:
dd:ee:32:4c:59:bd:85:94:29:b6:d9:51:70:1e:1b:5d:66:fe:
f4:be:33:85:b8:bc:9a:70:6a:b5:06:50:4f:c7:bf:ea:e5:af:
74:1b:31:e4:39:e9:d0:12:64:b1:ec:9e:a1:f9:81:6b:3f:df:
19:e7:d2:a4:2c:b8:a4:ee:c7:05:10:48:bf:03:c7:f0:60:ee:
8c:89:62:32:70:94:c7:9d:4c:47:f7:da:c1:a2:13:a6:71:77:
a4:b3:41:e2:46:50:9c:3d:9b:d7:b6:aa:01:f7:38:d9:9c:7b:
74:b5:f2:01:50:44:93:a9:3b:a9:d7:67:fe:62:2f:0d:e3:d3:
22:fd:f9:a2:5f:cd:d3:8c:69:4d:2e:b3:a7:f2:a0:36:a8:14:
d9:a6:4a:1d:83:bb:63:53:86:1e:d4:ac:99:61:ea:06:6b:1d:
c5:65:d4:37:6c:bd:89:ff:06:d2:84:22:68:9a:e4:1d:54:3d:
4c:59:5c:98:3a:a2:18:88:45:79:86:20:68:11:c8:88:bc:80:
40:0c:a1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org