Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/oABztpg1-RZyh6F2cgbbDWzT6gk.roa
File: oABztpg1-RZyh6F2cgbbDWzT6gk.roa (raw, json)
Hash identifier: mkc6N6msH96RkDpsbSakEnKs+64HOJT69WnQrk0NuL4=
Subject key identifier: A0:00:73:B6:98:35:F9:16:72:87:A1:76:72:06:DB:0D:6C:D3:EA:09
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oABztpg1-RZyh6F2cgbbDWzT6gk.roa
Signing time: Thu 15 Sep 2022 02:40:08 +0000
ROA not before: Thu 15 Sep 2022 02:40:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.202.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A00073B69835F9167287A1767206DB0D6CD3EA09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:8e:d7:3e:9d:8c:39:94:4f:39:dc:4c:9d:
f5:8e:95:92:4e:2c:be:f6:d1:65:78:62:61:e9:33:
a1:0b:8e:24:42:2b:de:8e:87:9b:3f:03:c0:1d:1c:
11:65:d8:53:0c:b7:7c:3a:86:4e:51:cc:c2:aa:11:
1c:f2:bc:52:31:82:f6:c1:15:2d:11:ab:f9:2c:c0:
df:46:35:63:88:a5:70:4d:a3:74:e2:56:12:87:89:
9f:a0:8c:e4:df:ed:12:09:82:5e:d4:a2:44:23:15:
25:cb:54:70:fa:9c:10:1d:7c:f7:45:26:95:82:52:
fa:32:d7:46:bb:07:81:97:0f:84:a9:75:87:51:19:
6d:dd:6f:18:5b:12:c7:fb:22:3a:4b:bd:17:7b:23:
7b:c5:ab:54:28:ce:5c:8f:d5:63:7e:79:15:06:d3:
7f:b0:04:76:9e:bb:8c:8f:18:79:03:33:99:f6:ca:
bb:d3:94:9f:50:c2:0c:37:cf:42:6c:ae:b7:67:d4:
ac:d1:24:fc:9c:b3:ab:2b:7d:75:c2:14:20:c9:d9:
3d:39:d3:5a:ca:9d:c7:86:51:e7:6a:d4:54:28:0d:
f7:31:a0:43:b3:4c:32:ff:8b:4b:7e:e2:24:25:61:
f2:ad:21:24:21:9b:6f:22:d2:13:2e:33:c6:fe:f5:
ad:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:00:73:B6:98:35:F9:16:72:87:A1:76:72:06:DB:0D:6C:D3:EA:09
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oABztpg1-RZyh6F2cgbbDWzT6gk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7e:b5:01:3b:f5:57:66:c4:4c:08:ad:2e:2a:a3:f3:13:0f:f8:
a6:73:e5:1d:28:81:db:82:73:39:7d:7b:52:43:2e:33:47:c8:
57:bc:48:4c:ee:59:41:d2:32:16:a8:dc:d5:81:ea:22:fc:ac:
df:57:32:2f:7d:88:68:3d:15:cd:d8:65:bc:51:73:37:1e:70:
a3:07:69:3b:6f:ca:b6:ca:05:45:80:37:fe:bf:76:06:6b:a3:
db:08:13:b8:e2:48:b4:59:9c:55:c8:58:7d:b3:cb:64:ba:71:
9d:86:21:f6:8f:99:f0:ca:fc:c8:44:d7:73:d5:1e:aa:1d:62:
ea:72:e0:2b:ae:1b:57:52:10:7c:17:eb:48:f5:88:c0:b4:57:
28:72:24:fe:11:30:f2:24:49:cb:90:4f:34:ef:ab:c0:10:b7:
59:f4:14:02:fd:fd:d6:cb:f1:bb:08:45:2f:c1:fa:d5:1e:b7:
b8:c9:67:7c:cb:7f:56:e1:16:c3:1b:42:48:fc:3b:64:07:ee:
8f:35:93:a5:0f:09:64:e7:6e:91:f5:90:5a:d9:a5:ae:85:d0:
df:49:b4:06:d1:35:01:41:59:93:9d:66:6a:19:f8:af:0b:58:
dd:1a:49:91:25:69:89:eb:25:bb:26:4d:d1:ba:6e:3e:95:17:
f8:5c:88:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org