Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/pNZ8brG6vgsdGCayZe0tK6kbulM.roa
File: pNZ8brG6vgsdGCayZe0tK6kbulM.roa (raw, json)
Hash identifier: tBG3+hCvFc3hPi6UWaqFsw9ErAACTiEgaC+KTlHunl4=
Subject key identifier: A4:D6:7C:6E:B1:BA:BE:0B:1D:18:26:B2:65:ED:2D:2B:A9:1B:BA:53
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12FA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pNZ8brG6vgsdGCayZe0tK6kbulM.roa
Signing time: Fri 01 Sep 2023 08:05:14 +0000
ROA not before: Fri 01 Sep 2023 08:05:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 218.35.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4858 (0x12fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A4D67C6EB1BABE0B1D1826B265ED2D2BA91BBA53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1f:80:bd:3c:63:ae:7a:57:cd:c2:f8:d6:be:
41:35:79:c5:36:0d:f9:ae:61:a0:aa:f3:33:84:d9:
37:8b:7e:87:61:93:3a:e0:00:95:e6:67:c8:f0:db:
4b:6f:20:69:46:d5:bc:8e:60:1e:2b:74:f0:47:75:
fa:5f:57:9f:69:da:e1:a2:9e:00:e7:b7:52:83:74:
c8:0d:11:38:5d:77:bf:a8:6f:d0:be:0c:8a:37:f8:
d8:fe:5f:5d:62:46:36:1d:91:74:6e:72:5f:d0:ef:
5c:46:b1:75:43:12:f3:cd:e3:e0:96:4d:4d:29:1d:
82:ad:62:a9:19:7d:8f:20:32:80:89:f3:51:4d:3b:
0c:6c:98:e3:1b:e4:6f:95:d8:c2:e4:6c:8a:76:bf:
97:35:cb:9d:c1:68:73:4a:67:73:09:22:f6:8c:d2:
4b:f3:47:f0:37:12:e3:39:30:62:b6:f7:82:19:d3:
6d:c9:6e:3c:a3:ba:d0:70:68:68:02:2f:ff:07:76:
df:25:50:5f:10:3e:26:51:73:62:74:07:57:f0:9c:
03:f1:57:f5:a4:f5:f4:74:b3:6d:84:b3:d4:97:0f:
98:83:05:a6:f9:0a:1e:35:7f:7c:2a:40:9e:70:40:
ea:87:97:df:0b:82:ab:28:4a:e2:ba:10:fb:12:96:
e1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D6:7C:6E:B1:BA:BE:0B:1D:18:26:B2:65:ED:2D:2B:A9:1B:BA:53
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pNZ8brG6vgsdGCayZe0tK6kbulM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
06:9c:57:a5:58:50:74:ba:81:48:4d:7e:c9:a0:f0:e2:b6:f6:
14:64:63:98:02:90:49:0c:73:19:b8:35:f6:9e:94:ea:66:fc:
fb:82:a7:b5:f3:ee:c7:e1:97:87:b9:b4:44:a5:e2:e1:99:07:
1c:7d:a3:54:03:69:c2:58:2e:d3:f7:21:36:ab:7b:7c:96:69:
b6:eb:a8:67:da:cf:29:13:d9:5d:c8:8c:40:55:3f:c2:a1:d6:
c3:ff:97:89:89:8b:ea:5d:d4:a2:67:1c:b3:3d:65:f0:e0:f1:
12:4b:f0:60:36:9e:fb:93:45:e2:17:4b:ff:07:80:f5:7d:76:
79:93:2b:45:d9:9b:61:29:48:70:9c:6f:49:33:3c:37:b3:1d:
6d:f1:62:e8:3b:f9:50:75:73:a9:cf:73:60:a0:71:c2:74:6e:
3e:68:38:24:ae:3e:ca:12:68:e7:26:12:52:39:ab:9d:6b:b8:
10:26:a4:45:ce:10:a8:be:a0:63:53:ec:e4:0f:50:37:05:f1:
c5:b6:21:82:b7:0e:fb:4b:c0:5c:40:34:cf:aa:16:73:e1:02:
7f:17:f6:26:d1:37:62:8c:32:b9:8a:10:cd:e4:83:e3:17:2b:
5c:00:7e:01:22:8e:a6:a9:dd:c2:43:b9:e1:92:da:63:56:16:
68:39:d3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org