Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/r8fSNaCA9m4mpKAn3TrsAveh138.roa
File: r8fSNaCA9m4mpKAn3TrsAveh138.roa (raw, json)
Hash identifier: rEPQyl8pszfyx3f4imtJtCVci1rhIofDD7VXXzx13B0=
Subject key identifier: AF:C7:D2:35:A0:80:F6:6E:26:A4:A0:27:DD:3A:EC:02:F7:A1:D7:7F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/r8fSNaCA9m4mpKAn3TrsAveh138.roa
Signing time: Thu 15 Sep 2022 02:40:11 +0000
ROA not before: Thu 15 Sep 2022 02:40:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131591
IP address blocks: 103.231.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AFC7D235A080F66E26A4A027DD3AEC02F7A1D77F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fa:d0:47:79:b0:85:b3:6a:31:cf:0f:52:4b:
5d:16:7b:f3:27:00:2d:0a:2b:fc:40:6c:25:21:5a:
48:85:6f:53:47:0d:a1:5c:0b:b4:95:ce:35:e5:8e:
ef:7e:65:94:b0:88:45:51:d9:da:99:7b:ea:7b:3b:
0a:60:a2:e2:08:fd:51:40:ac:cf:35:c4:2b:57:b4:
0e:65:d9:32:1c:86:3b:23:4c:72:b9:e2:70:12:a9:
ba:db:d3:ae:9f:6b:4a:60:b8:4c:b4:ef:fc:0c:36:
20:9c:05:7a:09:c9:ea:5b:7f:a0:5a:a9:b7:29:72:
a1:21:ae:9f:db:76:1c:95:db:cf:73:ea:82:ad:89:
2a:ee:d3:d7:06:a2:3a:ad:e3:dc:c7:96:06:77:e6:
0d:d7:17:70:23:85:9d:f8:08:79:51:e4:3f:ac:4a:
b5:48:41:c9:18:cd:f2:c7:8c:b2:fb:d5:e2:1c:d5:
55:6f:f5:71:f3:0f:f9:1c:74:78:55:7c:7c:33:99:
32:af:4e:87:51:8c:4c:21:0e:cf:80:fd:1c:c5:5d:
f3:6f:21:5d:b9:71:67:83:a5:e4:9c:c0:59:40:b5:
b3:10:d0:d7:e4:63:8c:b0:46:bf:51:47:48:e4:7b:
e6:8d:a4:a5:52:59:88:11:c0:02:37:44:ec:4c:60:
f8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C7:D2:35:A0:80:F6:6E:26:A4:A0:27:DD:3A:EC:02:F7:A1:D7:7F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/r8fSNaCA9m4mpKAn3TrsAveh138.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.231.50.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:63:08:31:18:a5:86:5e:47:43:6b:c6:bf:b2:24:ed:cb:0e:
51:cb:7d:50:4d:0a:47:8b:83:3e:1d:6f:9e:a5:7c:18:fa:1a:
a9:5e:64:d2:6a:a3:20:a9:68:67:a5:c6:31:59:34:c4:45:4b:
25:83:41:54:13:7b:89:7c:66:76:d3:5c:bc:25:24:50:8d:e1:
39:66:25:3f:0c:51:80:de:7b:4f:e5:49:fd:36:6b:f4:97:76:
48:49:29:76:64:11:11:5b:a4:32:7e:d5:7c:13:f3:c9:86:43:
58:10:75:59:99:dc:19:4e:22:4c:0d:e3:20:76:60:cc:47:f4:
c3:d7:a5:59:68:d2:f8:95:e1:8c:01:5a:e6:a6:7e:f2:2a:d9:
9d:14:23:c9:fc:43:69:aa:86:d7:fa:cc:b6:a9:98:9d:58:0f:
62:9e:55:9c:7d:50:95:0d:02:6c:8b:31:58:bc:2e:6d:63:88:
27:75:9f:3f:f9:7a:72:bc:cf:7f:c4:99:79:2b:21:b6:b2:57:
73:ac:40:81:f7:f7:37:86:61:6c:da:88:c1:37:2d:34:e7:8e:
47:39:b5:5e:27:95:cf:2a:03:e5:81:6b:a2:fc:55:b8:77:a7:
8f:bd:2f:4b:17:07:55:e6:7c:d9:3b:0f:9d:a7:87:1f:5f:64:
07:67:3a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org