Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/oC-HPx40giKbSopqrobFlmR_rrQ.roa
File: oC-HPx40giKbSopqrobFlmR_rrQ.roa (raw, json)
Hash identifier: 5t8aKHN8TYH7fPNyXMfj0KjV9PSJr5sStQyGcQOc9Gs=
Subject key identifier: A0:2F:87:3F:1E:34:82:22:9B:4A:8A:6A:AE:86:C5:96:64:7F:AE:B4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 128C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oC-HPx40giKbSopqrobFlmR_rrQ.roa
Signing time: Fri 01 Sep 2023 08:04:37 +0000
ROA not before: Fri 01 Sep 2023 08:04:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 210.63.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4748 (0x128c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A02F873F1E3482229B4A8A6AAE86C596647FAEB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:43:73:ee:cd:69:b6:b0:39:7c:85:5c:c7:50:
dd:54:6a:99:6d:03:c5:93:3a:14:88:c2:94:26:c9:
75:2a:6b:3c:d5:b0:cc:9b:07:43:f3:87:a2:78:85:
e4:6a:b4:b7:e8:0f:ab:aa:ca:77:5e:31:da:36:b6:
bb:23:28:ec:8f:04:2b:ae:cf:bd:dd:c0:80:e1:32:
4f:00:84:2a:87:23:68:b2:4c:3b:18:dd:11:9d:0d:
52:b6:36:ac:88:b2:af:20:a4:90:7a:86:ab:a2:24:
28:f4:00:42:6e:bf:bf:4b:e6:33:0c:51:a1:ce:69:
07:be:4a:95:64:7f:67:f9:f8:27:b1:74:78:87:b7:
6a:ea:72:30:42:8c:7a:44:39:77:83:b7:22:49:cb:
21:f6:2e:84:e8:4d:2d:d2:d4:02:51:68:67:d1:2b:
7f:b1:88:d1:d9:a0:78:12:d7:f1:2f:3a:e7:cb:31:
75:19:f7:00:10:6a:bb:fd:75:bf:dd:ac:97:64:fa:
ee:b3:ba:b3:ac:e6:c2:ed:3f:ea:d5:b4:26:04:cb:
5b:38:c7:31:79:d4:a8:06:35:5c:79:e7:8c:47:9c:
3b:cd:16:4c:1c:74:47:5c:c7:d8:00:ad:15:da:f8:
59:4d:5f:8a:6f:e9:04:49:d2:0d:02:4e:15:4f:ec:
fc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2F:87:3F:1E:34:82:22:9B:4A:8A:6A:AE:86:C5:96:64:7F:AE:B4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oC-HPx40giKbSopqrobFlmR_rrQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.239.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:d4:71:7f:66:2e:65:2b:27:d7:53:6a:57:7f:11:f1:d6:92:
e3:e6:d6:ed:83:81:e7:de:a7:45:6a:75:25:37:33:32:87:38:
e7:02:04:f4:0b:3a:57:2d:53:79:5f:ef:61:28:81:de:91:f0:
75:8c:86:da:49:65:c7:5d:b6:f2:1f:58:6e:dc:ae:e0:44:d1:
e4:de:b4:30:77:ca:63:d8:e8:9c:69:20:f4:8a:8a:bd:83:67:
0f:45:bf:3e:0f:e2:06:52:f8:30:b3:bb:fd:fd:b6:01:ed:f4:
4a:52:56:08:12:35:1e:05:89:43:da:be:d4:36:bf:8d:11:d1:
57:c2:f4:7b:bc:ce:8d:1e:a5:88:81:3d:83:ae:ff:4e:ef:80:
71:9c:ab:70:85:b8:a3:90:e9:cc:30:1d:38:2c:7a:26:70:54:
35:29:c5:ab:52:61:ee:f2:68:5e:ec:66:b3:55:13:db:c7:2d:
c9:8b:95:4f:49:7c:cc:53:6b:42:3a:13:4f:b6:50:1a:59:3e:
91:a9:1b:c3:aa:34:98:9b:46:9e:02:2d:a2:4a:f9:48:68:4d:
5b:c8:6a:0c:85:95:2e:7b:50:d9:fd:e0:04:95:90:12:40:64:
ab:fb:c6:19:95:6e:5e:26:d6:c1:91:c9:dc:08:b5:fc:be:63:
a8:d5:7c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org