Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/pP_55aCJkRcyMgKayUfq6Xza68o.roa
File: pP_55aCJkRcyMgKayUfq6Xza68o.roa (raw, json)
Hash identifier: 0vH67MlAIMGtFaAs5NSdFGkZSXiDEbodsWRCc+s2XRs=
Subject key identifier: A4:FF:F9:E5:A0:89:91:17:32:32:02:9A:C9:47:EA:E9:7C:DA:EB:CA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10C6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pP_55aCJkRcyMgKayUfq6Xza68o.roa
Signing time: Tue 16 May 2023 08:36:36 +0000
ROA not before: Tue 16 May 2023 08:36:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.200.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4294 (0x10c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A4FFF9E5A08991173232029AC947EAE97CDAEBCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:84:99:ac:94:77:8e:56:5a:de:76:89:74:d0:
c5:96:41:61:88:a5:2a:02:0a:70:83:b1:62:96:d9:
ec:dc:cc:b0:38:f4:8a:e8:34:98:0f:de:95:57:f9:
ad:3a:01:89:bf:55:49:1b:61:a9:90:41:50:8c:d9:
99:3b:6c:0d:c7:42:26:38:d6:a5:93:2e:e7:c9:09:
dc:83:fb:a0:84:b0:d7:05:55:48:16:4f:3e:3f:0c:
12:5a:3a:b6:de:c2:9d:69:3c:d9:79:01:f0:f5:0e:
5d:09:82:4a:64:a3:ff:78:f4:af:ba:2a:1d:7b:26:
c5:c2:82:b9:a3:96:65:b3:af:38:1f:45:df:86:3f:
50:9a:2b:ae:47:99:48:cc:44:2e:11:7b:a6:3e:81:
52:96:16:a9:53:48:8b:a2:83:66:f2:41:a7:f1:e1:
9b:8e:0c:8f:b8:a1:f1:54:b3:82:a6:11:8a:a8:1f:
49:08:aa:a3:66:37:ce:0f:45:36:bd:d7:bb:e9:87:
c9:76:b0:f7:7d:4c:40:8f:15:5d:78:bb:a6:2a:06:
aa:3e:f2:d7:bc:e5:36:93:86:37:6f:c6:cd:81:10:
ce:33:7f:3a:90:9c:e7:b7:94:60:e3:09:8a:00:03:
6a:0a:97:ae:67:cb:bc:a0:c1:a6:c8:ef:02:36:43:
b4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:FF:F9:E5:A0:89:91:17:32:32:02:9A:C9:47:EA:E9:7C:DA:EB:CA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pP_55aCJkRcyMgKayUfq6Xza68o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.200.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:54:aa:9f:0d:c0:6e:a9:50:65:ab:e4:21:ba:17:8f:ce:d2:
6a:e7:8d:ae:97:2c:60:35:31:92:dc:65:64:f7:d9:8b:b5:5e:
93:fd:81:7b:5c:18:2b:53:cf:e0:b1:a0:05:9f:f7:59:ba:ea:
ad:bc:af:00:a2:87:44:64:23:f5:95:9f:f1:c2:11:e0:b2:26:
0f:c7:19:fd:0b:96:75:d8:2a:46:0f:1e:9b:69:e6:4f:43:8a:
f5:de:65:9e:bf:24:9d:f1:1b:28:c2:dc:1e:b8:6a:d2:3e:03:
b9:9a:fc:f9:8e:5c:10:8a:53:4a:51:bc:5f:37:f5:6b:8a:01:
f2:3b:1c:d2:bf:52:cc:97:43:b5:e2:5b:8f:d9:50:65:f8:98:
e6:4e:ff:43:bc:f1:c2:2f:48:13:11:45:1a:9d:21:89:24:05:
c8:a7:0e:f0:28:e6:df:d0:9f:24:29:d1:e8:a8:0c:a9:8b:de:
e9:69:95:e0:2c:80:f0:d4:5d:6e:bf:a9:9e:91:4b:8f:89:56:
e8:b0:24:f0:23:22:17:e8:b2:39:9e:6d:76:d8:07:c6:a8:d9:
f9:42:1d:d4:a7:f4:52:f3:46:b9:a0:92:e1:63:6e:f3:66:47:
67:62:f6:0f:5b:b6:5a:d4:09:6c:bb:f5:d6:e6:81:2e:c7:7d:
44:3a:33:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org