Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/r4KQKC-5CpIJGqyRNN9vRBQPQVY.roa
File: r4KQKC-5CpIJGqyRNN9vRBQPQVY.roa (raw, json)
Hash identifier: u1ou/K3ghmhHDfT+IDfvZKrERxyQ+Ndpq853ZjRqnbo=
Subject key identifier: AF:82:90:28:2F:B9:0A:92:09:1A:AC:91:34:DF:6F:44:14:0F:41:56
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/r4KQKC-5CpIJGqyRNN9vRBQPQVY.roa
Signing time: Thu 15 Sep 2022 02:40:14 +0000
ROA not before: Thu 15 Sep 2022 02:40:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 2404:0:1000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AF8290282FB90A92091AAC9134DF6F44140F4156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:58:26:91:75:d5:e8:4e:b9:97:29:48:47:e2:
18:13:d5:e0:18:7c:1a:54:42:63:cb:70:43:fa:16:
e9:fe:fa:e0:6e:26:8b:a1:23:60:1b:c5:ab:ae:06:
71:98:fc:f9:e5:bc:03:03:38:0c:ac:b9:66:a7:79:
fb:1c:12:4d:62:ac:3a:0e:8b:1f:0b:47:03:11:d5:
2d:50:62:60:43:76:78:98:1a:8a:25:7f:92:51:f0:
79:ae:3d:68:44:83:23:bb:d0:8c:48:3b:91:8a:1e:
f1:52:8d:cd:8f:ce:e9:3c:f7:b1:b8:33:24:99:ba:
dd:01:2f:6a:a4:51:aa:dc:7e:99:e0:90:36:74:39:
93:be:ac:d9:04:4f:6c:b4:e6:57:17:c5:d0:7d:06:
11:1d:a9:0d:f4:4c:9e:11:86:b8:cc:e1:9f:e3:c6:
75:c8:00:4a:3b:3b:c0:42:81:47:97:c0:c4:b5:dc:
f1:4a:e1:3e:d4:43:03:cb:53:eb:81:c8:23:c5:05:
40:db:39:43:0b:13:20:68:4e:14:99:03:dd:93:44:
af:73:a6:95:14:dd:cd:f1:d1:18:f5:d2:84:19:d6:
c8:a9:52:82:4a:4a:8e:0f:82:2f:72:70:ca:04:21:
52:d6:85:3f:2c:36:b7:fa:56:93:97:dc:1a:27:68:
19:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:82:90:28:2F:B9:0A:92:09:1A:AC:91:34:DF:6F:44:14:0F:41:56
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/r4KQKC-5CpIJGqyRNN9vRBQPQVY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
c1:79:bd:9f:cf:7a:8d:75:9b:ad:06:de:5d:72:6c:bc:0e:87:
14:87:6b:9d:76:38:4a:3d:42:57:4d:31:eb:61:72:55:0e:c9:
8a:31:e3:47:16:8d:01:91:d8:21:0f:df:ca:e5:0e:6a:8c:a8:
f2:cf:de:51:a3:40:8a:90:12:c0:af:d3:b2:25:0a:6c:7d:1d:
ce:3b:fb:ee:2f:0f:25:e0:3e:6a:ea:46:20:b4:38:5b:86:fe:
3d:1b:61:ba:4d:fe:43:9d:29:41:b9:e8:90:3d:24:c1:42:eb:
3e:c2:7d:48:32:24:94:b9:d8:74:12:7d:4f:14:19:21:2c:54:
90:b5:c1:7d:a5:dc:74:0c:34:d8:ac:f2:f0:34:45:70:99:6f:
75:79:33:41:1a:6e:57:87:f5:d7:4c:e2:ad:80:fb:30:f2:9f:
75:a9:59:9c:11:bb:94:b7:2b:3b:ba:c3:ce:e7:2e:7a:71:cf:
48:14:93:32:10:cb:5b:9b:e2:1a:04:ce:84:9c:55:0a:14:8f:
9e:67:8f:ed:4b:06:9a:2e:09:c1:87:ff:ab:4f:b4:71:6b:e4:
12:6c:8d:a6:1a:29:c2:ca:20:28:cd:84:2e:61:0b:33:d3:f3:
4e:18:01:f3:9e:69:75:ca:1a:28:78:50:d3:2d:79:1b:2d:b3:
12:cc:75:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org