Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/p0tKhhENJGavLGM83H2J3fh9oYY.roa
File: p0tKhhENJGavLGM83H2J3fh9oYY.roa (raw, json)
Hash identifier: m/ysyMkJ4Xz7mOqxNH0FDvSxbPm+8nabimX/S+wxOvI=
Subject key identifier: A7:4B:4A:86:11:0D:24:66:AF:2C:63:3C:DC:7D:89:DD:F8:7D:A1:86
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 131E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p0tKhhENJGavLGM83H2J3fh9oYY.roa
Signing time: Fri 01 Sep 2023 08:05:24 +0000
ROA not before: Fri 01 Sep 2023 08:05:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 14
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4894 (0x131e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A74B4A86110D2466AF2C633CDC7D89DDF87DA186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d3:fb:ed:ee:75:66:64:09:43:15:3e:d1:93:
c8:9d:96:0c:dd:fa:75:21:b9:07:db:6c:a8:87:92:
1b:ac:61:00:d4:c0:e8:7a:97:42:23:3e:28:9a:a5:
d6:87:4a:40:cb:85:77:11:1e:30:64:30:b1:1f:f1:
59:f4:03:d4:56:54:35:f2:d7:e6:e6:fd:b7:79:94:
92:40:91:68:b4:4a:0c:3d:a8:e1:4e:05:62:1c:fc:
de:b8:54:17:34:b2:ce:92:3b:2b:32:b2:51:97:f4:
d1:1e:5a:d6:53:72:5f:20:78:24:4e:a4:f5:14:8b:
5f:61:1e:dc:bc:d5:9a:a3:6a:f4:5b:b2:3f:20:e8:
ac:70:c4:3b:3d:28:8c:d8:d3:a2:2a:7a:8f:c8:6d:
cd:8e:b7:d9:b9:2d:3c:de:15:fe:4e:7b:9c:30:3c:
9f:f4:58:ef:f3:de:a8:fc:0e:cf:f1:c5:74:fd:19:
18:d4:f6:be:3a:cd:1f:f2:2c:c7:d0:53:53:08:f4:
81:ce:40:e2:88:02:31:83:83:52:e0:28:3b:4b:e7:
43:86:dd:2d:b2:da:87:ca:00:29:a0:7a:86:63:cd:
ce:03:aa:16:3b:ae:44:5f:9e:dc:16:0c:18:88:96:
e8:1d:f9:3d:93:a8:1b:e4:98:f3:67:8b:ea:c4:5f:
e0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4B:4A:86:11:0D:24:66:AF:2C:63:3C:DC:7D:89:DD:F8:7D:A1:86
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p0tKhhENJGavLGM83H2J3fh9oYY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
c0:f3:71:fa:76:0f:4e:7e:44:0c:63:cc:9e:90:30:4e:57:b4:
83:fc:36:27:5c:a6:3c:3f:c3:2e:1e:75:58:26:e6:0b:e7:d0:
f8:21:57:8a:47:13:98:c3:c6:45:54:28:f7:ae:55:d8:c4:4b:
df:3a:a9:88:e4:a3:10:9e:81:c6:87:7d:c4:3a:34:15:22:2f:
84:1a:4b:8e:8b:0b:d2:48:c0:32:39:eb:6e:00:4b:b7:c5:45:
fc:d6:be:7f:8a:5b:e0:28:51:a8:d1:c5:71:5d:49:f8:66:f0:
35:f6:ac:01:f2:68:79:e9:3b:13:eb:ac:96:d6:7e:fa:b9:90:
38:48:62:b6:d2:3c:e5:87:6e:bc:d9:26:89:69:cf:06:e8:42:
16:ea:45:c6:63:19:53:40:ef:be:19:6c:f6:86:4e:4a:9e:36:
8b:cd:5f:5b:a1:cc:a0:bd:de:7c:9a:98:9d:99:34:55:61:d9:
65:25:47:d2:31:df:b0:4b:bf:2b:db:84:47:79:38:7c:80:86:
34:08:7e:ea:a5:87:b8:2b:22:eb:95:09:ae:4e:11:ec:54:d5:
66:1a:73:0f:8d:7e:02:e3:f1:68:ce:f1:c3:52:b0:6b:41:19:
02:05:ec:3d:7b:d7:10:ab:02:0c:35:1b:7f:2d:9d:86:69:95:
27:52:0d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org