Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/os_HIu6UvmrgRSSWCo7uR0Ka4Do.roa
File: os_HIu6UvmrgRSSWCo7uR0Ka4Do.roa (raw, json)
Hash identifier: cJ5zxVGhSXCfLZwYwlUB/wJy1ZrYai96gJmtApL6y88=
Subject key identifier: A2:CF:C7:22:EE:94:BE:6A:E0:45:24:96:0A:8E:EE:47:42:9A:E0:3A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 107F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/os_HIu6UvmrgRSSWCo7uR0Ka4Do.roa
Signing time: Tue 16 May 2023 08:36:17 +0000
ROA not before: Tue 16 May 2023 08:36:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.203.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4223 (0x107f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:17 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A2CFC722EE94BE6AE04524960A8EEE47429AE03A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b0:68:7e:7b:6b:9b:4d:f4:ab:b4:82:48:66:
cc:1f:77:85:45:7e:2b:16:78:08:70:dd:49:e9:73:
dc:78:c8:b0:dd:89:24:78:28:46:77:24:55:1c:ca:
13:52:5a:ef:cb:5a:cb:e0:fa:73:83:7a:e8:96:0f:
e9:2c:d8:8d:5d:2a:8f:ce:09:c2:61:c2:2d:b7:e6:
ae:5f:73:81:d2:f5:f4:1c:98:19:1a:a5:46:16:56:
65:86:aa:f5:68:c9:f3:1e:51:d1:ad:47:9c:e5:74:
5a:f9:71:1b:f1:a9:9a:51:d9:0c:de:ce:b0:4e:fe:
dc:b2:0d:ea:d7:c2:7e:8f:35:ac:45:88:2d:d5:65:
77:15:21:15:d4:25:e9:86:cc:c9:d7:90:45:ad:ac:
03:d6:c7:a8:71:0d:5f:82:9d:15:2a:e9:1c:83:d2:
10:2d:a2:e9:e6:9c:ed:95:cc:cf:04:c9:b0:4b:ab:
6f:d8:13:29:88:d8:4d:89:f4:8b:f7:da:3d:c1:e8:
ee:8a:a0:49:f4:2d:97:68:7b:5c:0f:48:1d:fe:fb:
47:4c:57:98:30:3f:d2:b0:30:cf:59:62:47:d1:c2:
df:1c:f1:89:bb:f6:fd:23:99:81:80:fb:62:24:63:
fc:16:08:b5:b8:64:91:0e:cf:ad:06:cc:d4:55:ef:
24:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:CF:C7:22:EE:94:BE:6A:E0:45:24:96:0A:8E:EE:47:42:9A:E0:3A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/os_HIu6UvmrgRSSWCo7uR0Ka4Do.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.64.0/18
Signature Algorithm: sha256WithRSAEncryption
56:17:1e:1d:ed:ba:1e:07:94:e5:b5:c2:5b:53:07:6e:be:70:
a8:04:f9:31:f5:fd:53:b4:3d:79:73:ff:6d:76:77:96:b1:58:
f7:22:3d:cc:47:f5:67:39:13:7f:99:5e:9e:cd:8b:b6:38:c7:
2d:58:b4:90:44:0d:17:37:7c:4b:82:3c:1a:8c:a6:9c:da:a6:
42:b1:c7:90:f1:c8:c0:8f:33:da:11:44:f2:ef:2d:61:ef:9d:
54:ac:bd:29:8a:e8:ad:49:75:90:09:68:72:10:d9:d6:30:30:
dc:9d:11:1b:ef:47:0f:aa:57:8a:ae:43:7c:29:68:9f:84:5a:
a8:c3:a7:f5:23:0a:21:d3:c4:19:e3:a4:53:39:fd:04:6d:00:
d9:58:09:07:73:e0:19:38:05:ea:44:20:6d:fc:d8:36:18:28:
09:51:d3:83:b0:e9:29:39:63:4d:62:9a:a6:84:44:4e:7a:62:
4e:e2:8b:7f:c1:0f:2b:6a:df:bc:1d:37:88:bf:11:41:24:3d:
a0:3b:e1:c0:1a:6c:ba:da:bf:e4:72:35:8c:d9:9f:f8:9c:eb:
ba:08:9f:13:9c:e6:38:b7:52:25:6a:4b:1b:c2:6b:9c:ed:17:
fd:04:c7:9d:11:65:15:24:7f:eb:7c:0a:88:a2:5b:24:d3:f8:
b0:6a:7f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org