Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/rGUrDSqK406HaRXwHchChDjX5uM.roa
File: rGUrDSqK406HaRXwHchChDjX5uM.roa (raw, json)
Hash identifier: Isw3W6IO7XMrMGvvb0arUUda34VI034iaLOZp461bBI=
Subject key identifier: AC:65:2B:0D:2A:8A:E3:4E:87:69:15:F0:1D:C8:42:84:38:D7:E6:E3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 112A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rGUrDSqK406HaRXwHchChDjX5uM.roa
Signing time: Tue 01 Aug 2023 05:14:28 +0000
ROA not before: Tue 01 Aug 2023 05:14:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 60.244.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4394 (0x112a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 1 05:14:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AC652B0D2A8AE34E876915F01DC8428438D7E6E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d3:12:d9:f6:36:99:12:7a:b5:1a:37:7f:1c:
b5:60:2f:5f:80:b5:47:24:1b:3e:e5:45:75:37:c4:
34:d8:f9:9c:59:25:5e:c3:19:a4:ac:59:d1:d1:e4:
d4:6b:31:2d:4f:05:53:b0:aa:09:ab:21:a3:ba:2c:
e9:94:0f:65:dd:50:9e:f5:45:6a:52:44:de:bf:6e:
1c:78:80:8f:b5:08:dc:21:24:cb:1a:a1:b5:a2:08:
54:a2:d8:2c:5b:46:89:3c:2a:27:ef:07:c9:4d:ac:
42:b2:07:4b:9c:14:fb:10:d7:01:f7:7b:a6:4b:20:
76:a6:46:e6:4e:ce:48:39:47:d4:62:9d:aa:11:25:
9d:bf:fe:9d:2e:19:b7:2b:50:eb:3a:94:27:94:84:
1f:90:a7:e3:5d:b5:e1:d0:87:0a:44:eb:d9:b4:1d:
bb:7a:bc:97:52:5a:56:7d:d5:2f:de:87:30:6c:3e:
14:d5:59:6c:d8:45:16:17:21:f1:3e:22:05:45:ce:
4b:6c:65:c8:08:43:57:16:98:1b:44:cb:43:0f:13:
30:12:8d:ee:59:59:a6:9f:5f:6c:93:39:59:95:0c:
d0:94:9a:27:a5:e6:25:1b:6e:70:f7:97:29:3b:73:
66:dc:fb:d5:1f:0b:8c:22:01:55:e5:0d:c0:f5:a7:
c7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:65:2B:0D:2A:8A:E3:4E:87:69:15:F0:1D:C8:42:84:38:D7:E6:E3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rGUrDSqK406HaRXwHchChDjX5uM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.1.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:dd:6e:5a:48:5f:60:79:ec:92:c7:59:5a:61:00:2b:bb:0a:
11:89:69:5f:ea:55:1b:ee:21:9e:94:bb:6b:07:19:7a:17:96:
9e:b8:93:cd:e8:d3:ca:e8:f1:39:3d:c7:60:f4:0f:a6:a2:59:
dc:d2:c4:ea:23:69:e2:23:24:a5:2e:cb:ba:82:37:da:5e:15:
1a:42:67:d0:ec:56:21:a8:85:cb:86:88:59:d7:c8:f8:e0:d1:
e6:0b:f6:be:99:f6:6f:95:ab:c5:5e:a8:8b:f2:c4:78:ce:1f:
af:d0:8e:1f:4b:5a:a7:e7:d7:eb:91:b2:8f:28:f5:55:84:45:
69:d9:7c:2f:7f:7b:13:22:4e:54:b5:f4:f8:83:c2:6c:46:70:
11:1a:6f:ac:71:53:91:a2:e6:3a:bc:2c:d2:39:62:a0:93:08:
33:c3:86:91:9e:74:24:80:50:e4:b2:13:bd:83:e7:1a:1a:56:
c0:92:d6:9f:1c:a5:dc:89:a5:30:ad:e1:81:af:9e:44:4c:0a:
de:cd:82:e4:54:8f:6f:c0:30:9b:6b:f7:f0:12:28:0e:73:1f:
40:78:e4:de:72:16:e3:79:4e:4d:74:5a:57:3f:e0:95:cd:46:
49:64:2a:49:3b:16:2e:37:d0:b8:c9:69:8a:a2:4b:34:25:a9:
6b:8a:00:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:01 2024 by rpki-client on console-ams.rpki-client.org