Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/p08kp4rCFApwanQ_X44_tG2Bo9s.roa
File: p08kp4rCFApwanQ_X44_tG2Bo9s.roa (raw, json)
Hash identifier: /8cJ31XoIl563gaIxBk2g66UF8Yrcg3ri9WNk1guxu4=
Subject key identifier: A7:4F:24:A7:8A:C2:14:0A:70:6A:74:3F:5F:8E:3F:B4:6D:81:A3:DB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1267
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p08kp4rCFApwanQ_X44_tG2Bo9s.roa
Signing time: Fri 01 Sep 2023 08:04:24 +0000
ROA not before: Fri 01 Sep 2023 08:04:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 210.63.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4711 (0x1267)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A74F24A78AC2140A706A743F5F8E3FB46D81A3DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:08:37:87:e7:48:87:cf:38:c7:91:f6:9d:69:
ab:e6:ba:a9:8c:57:d1:5d:fe:4c:64:9e:1f:5f:a5:
1c:15:85:a2:b9:da:2d:a0:83:af:f9:4e:ac:30:00:
62:01:fd:9e:3e:6c:e5:7f:ab:1c:f8:2e:8d:8a:bc:
e4:0e:52:e1:78:84:4e:6d:e4:a9:40:ac:eb:11:74:
6a:ba:1a:11:cd:d2:b1:cc:1a:8c:bb:97:9d:7d:94:
39:3c:79:91:36:fd:09:52:21:e0:d0:f9:15:f8:a7:
34:62:7f:ce:df:dc:10:e6:58:28:53:49:cf:94:bb:
83:ff:20:50:6e:28:c7:8f:f8:31:4f:5d:b9:bd:fd:
f9:9b:67:82:55:55:3a:41:54:2c:25:c7:69:f1:be:
b4:74:4b:19:b0:91:01:a7:21:80:a1:75:cd:3d:77:
25:b8:a5:7c:6c:3d:af:68:5d:21:e9:15:87:2e:ba:
34:4e:31:6a:f3:ed:55:01:91:fa:3e:0c:8f:b2:57:
a4:fc:b9:14:d7:57:85:09:51:1b:d1:58:c4:f1:7b:
d5:82:4e:17:c0:19:5a:2a:dc:bb:6e:e5:38:9b:59:
81:b7:18:57:f8:21:c1:da:33:4f:a9:43:27:dd:5e:
fc:16:d7:95:27:0f:bd:a5:ed:33:a0:95:36:1b:50:
5b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4F:24:A7:8A:C2:14:0A:70:6A:74:3F:5F:8E:3F:B4:6D:81:A3:DB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p08kp4rCFApwanQ_X44_tG2Bo9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.240.0/24
Signature Algorithm: sha256WithRSAEncryption
08:9f:a0:9c:74:dc:22:17:a2:40:15:aa:3e:59:3c:99:7e:d4:
97:f0:53:c9:39:b6:77:aa:65:1c:7a:65:55:cf:6b:2f:b5:41:
9e:44:cf:54:db:2d:d9:5e:9c:40:92:9f:c6:97:2b:d7:f1:f4:
e5:d4:ed:e1:08:89:86:de:17:e1:b9:4f:8c:08:d3:fb:14:51:
6f:40:89:d0:df:70:23:e7:44:b6:40:35:9d:43:c9:47:f6:6b:
f8:82:35:ea:50:a8:5d:f1:e8:ac:dd:07:52:f2:33:0a:57:3f:
12:eb:fb:93:9c:09:c0:9e:df:f5:7b:cb:47:2f:fb:ea:d3:17:
c9:6a:a7:99:76:d0:83:26:3f:fc:58:ed:3b:9c:c5:54:77:0f:
e6:bb:43:8a:c5:aa:25:15:47:06:5a:98:b4:1b:2b:84:09:04:
d9:30:7d:21:f5:be:59:0a:a8:c5:06:67:3d:4e:a9:1a:ef:ad:
77:b3:0c:e0:ab:7e:f7:f5:f4:10:4b:87:75:52:b0:20:49:b9:
96:d8:d7:3e:96:aa:cc:9f:eb:a9:ea:02:f9:db:34:79:f0:d8:
e9:59:06:07:ae:55:58:06:35:28:b5:a3:7c:9d:a2:c6:c7:c2:
4e:c2:cc:40:fe:85:97:5d:c7:42:c0:95:15:7d:16:99:24:ad:
be:a5:3e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org