Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/pDYq1XJrCVsnXcILZ-0c5ln_-hU.roa
File: pDYq1XJrCVsnXcILZ-0c5ln_-hU.roa (raw, json)
Hash identifier: W4pPnDpv8aiTXFoMzmc5lptGbLSW+VFRJOsTg4Ii1+Q=
Subject key identifier: A4:36:2A:D5:72:6B:09:5B:27:5D:C2:0B:67:ED:1C:E6:59:FF:FA:15
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 113F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pDYq1XJrCVsnXcILZ-0c5ln_-hU.roa
Signing time: Mon 07 Aug 2023 07:41:47 +0000
ROA not before: Mon 07 Aug 2023 07:41:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 124.219.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4415 (0x113f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 7 07:41:47 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A4362AD5726B095B275DC20B67ED1CE659FFFA15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:60:62:2d:9e:54:50:37:3a:6c:bf:cf:ca:
bb:6a:29:b7:25:29:eb:4a:07:3b:78:67:ab:c8:f1:
55:7a:2c:4a:79:35:42:f3:b9:6b:b9:6a:20:0a:29:
8d:37:d1:8f:71:60:0c:29:58:58:92:69:b0:51:84:
ae:5d:ad:88:20:df:e3:46:68:94:e0:3a:9b:74:53:
3b:2a:12:cf:7b:21:bb:97:c1:92:7e:a2:bf:1c:8e:
b9:66:0d:ec:8c:a7:7f:e2:2b:d6:51:92:ec:fc:15:
04:ad:8d:ca:a4:3b:84:f2:8f:b4:0f:14:3a:99:3c:
26:1c:6f:99:56:9c:ba:8b:15:79:15:4d:f9:57:d0:
30:84:e0:f8:e9:d8:59:b5:e1:01:e5:34:be:a4:54:
13:7e:bf:4b:33:5a:54:00:c2:a7:88:a5:37:40:09:
6e:6e:06:2a:e5:c2:ef:99:26:b1:6f:09:da:ed:28:
cf:ab:35:f7:73:33:f0:94:57:17:5b:8d:8f:22:54:
0e:a4:9e:0a:51:00:ec:b7:d2:a0:4f:e6:34:84:fa:
36:99:e8:3a:4b:36:5e:51:cc:9a:ac:37:2e:0a:28:
2d:cf:66:49:e4:f5:c1:39:2c:6c:3c:89:51:e9:38:
04:c2:e0:8e:8a:93:cd:16:ad:41:01:ed:d5:02:6c:
97:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:36:2A:D5:72:6B:09:5B:27:5D:C2:0B:67:ED:1C:E6:59:FF:FA:15
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pDYq1XJrCVsnXcILZ-0c5ln_-hU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
86:f7:70:93:4a:29:45:93:c7:ef:f3:63:f0:3e:b2:29:11:d5:
60:05:2d:81:73:1f:e0:0a:f3:99:50:b6:47:6c:b5:c0:7b:18:
49:f9:30:09:b6:a6:e3:93:4f:4a:62:e2:3e:82:e7:4f:9f:ab:
f5:35:88:8b:f0:a4:90:6a:fb:02:4d:29:f5:6e:0f:73:a6:72:
c6:8f:ec:7e:8e:59:d7:14:f3:60:c8:41:97:92:3c:e0:7b:33:
1b:5a:bd:3e:cb:04:59:bb:d6:b0:33:f8:0f:e8:8e:51:f8:8c:
c6:8c:29:25:d0:72:7e:dc:11:ad:82:06:9c:2e:85:90:45:da:
1e:d0:25:64:bd:aa:47:49:65:72:1d:c9:44:09:a5:6a:ed:1a:
18:b0:dd:8d:2c:c4:f1:ec:68:c1:2c:74:5d:e3:96:0f:55:61:
2e:7b:e6:1c:94:aa:2d:13:0c:0c:37:d0:aa:77:19:90:45:e3:
07:2d:5a:b4:fe:ad:a6:b2:2d:ff:91:2f:7e:c9:04:e2:fd:7f:
b5:cf:51:ce:2e:6e:83:b5:07:d1:ba:ee:a2:f0:a5:45:a1:0c:
47:35:d3:30:48:c1:63:fa:d2:9c:74:7c:90:37:22:7d:b8:ec:
d1:8f:2a:42:d6:c4:6e:44:4a:06:07:c8:23:40:bb:ca:d3:3f:
4e:7d:4c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org