Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/rRAgTdM3ZBaXVEWgsDNgWnwlLPo.roa
File: rRAgTdM3ZBaXVEWgsDNgWnwlLPo.roa (raw, json)
Hash identifier: r6nOQ7tEeTUiM8nT7XC3h7ZO58zTn/2JpFBnbc9nRYI=
Subject key identifier: AD:10:20:4D:D3:37:64:16:97:54:45:A0:B0:33:60:5A:7C:25:2C:FA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08F0
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rRAgTdM3ZBaXVEWgsDNgWnwlLPo.roa
Signing time: Tue 29 Sep 2020 10:01:16 +0000
ROA not before: Tue 29 Sep 2020 10:01:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2288 (0x8f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AD10204DD3376416975445A0B033605A7C252CFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6a:4c:44:4c:a3:b3:58:cd:86:c8:e6:1c:76:
91:d4:8a:e4:d7:39:59:ef:db:7f:1f:7e:cd:de:cc:
7c:c3:91:e4:e5:f2:7c:a6:7e:1a:cc:7d:da:5d:1f:
44:a7:c9:20:06:b8:00:0f:4c:ff:6a:33:78:c5:5f:
b2:5f:18:18:86:bc:f4:f8:fb:69:41:1e:70:97:ca:
e2:60:cf:d1:8a:59:ca:5a:40:1e:3c:45:13:f2:72:
b9:6b:be:db:a9:aa:4f:6c:ad:89:3d:5c:30:33:aa:
fa:25:df:6d:97:78:04:43:6a:61:92:b1:4e:83:3c:
a0:b0:ee:56:de:21:12:e4:1b:bb:4a:ce:a0:3e:b0:
ce:36:bc:e3:80:1b:97:cc:2d:61:2b:d3:37:0c:9c:
eb:fc:55:8c:bd:28:3c:ce:8d:66:2c:4d:32:1a:cc:
a9:8c:ac:40:30:d7:31:61:ca:f4:65:38:1c:7f:ca:
1c:21:a5:8b:a8:47:bf:d6:84:f3:b1:49:99:23:9e:
17:93:8e:29:43:c7:5f:78:7b:fb:36:c8:e3:c1:89:
f8:1a:84:24:00:ba:80:92:c9:69:c6:85:cd:31:d3:
d9:6f:d1:01:56:e4:a9:3c:04:68:64:51:b1:8c:5a:
cf:1e:fa:a3:b8:21:6a:13:12:9d:57:57:fc:49:f3:
ae:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:10:20:4D:D3:37:64:16:97:54:45:A0:B0:33:60:5A:7C:25:2C:FA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rRAgTdM3ZBaXVEWgsDNgWnwlLPo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
31:cf:c6:07:20:71:48:6d:54:5b:eb:5c:bd:be:7f:3f:68:1b:
fc:d4:b7:25:f4:01:c3:f0:30:7d:27:34:54:29:2e:53:23:04:
81:3c:07:14:67:9d:79:ab:88:3e:5a:f3:6e:62:03:0b:09:b1:
5e:45:e9:1f:67:f6:0f:fa:6f:a6:a1:be:03:38:a1:82:f3:98:
ba:67:b4:b4:f8:6d:27:51:36:80:fd:70:d9:d6:dd:1f:a0:00:
02:bc:9b:aa:4f:cf:5c:13:ce:1c:09:c3:27:3b:31:7c:aa:03:
29:4d:96:3d:09:47:8e:10:6c:f7:8a:5c:fb:71:fa:dc:9a:e4:
39:95:ac:9e:06:53:7b:c4:8e:04:0e:bb:3d:32:43:d6:1d:fb:
6b:2b:15:0a:56:43:69:ba:c9:56:a7:15:d9:b0:63:12:ab:4a:
e6:6f:ba:bc:6a:57:0e:18:b2:06:f4:1a:33:5c:22:40:88:f2:
21:58:62:41:a8:f0:a9:c7:f1:7a:3a:7c:91:40:83:5b:17:2d:
a6:df:8d:18:93:1a:e1:75:ed:51:ac:a2:a8:d4:0d:ea:d1:ab:
12:56:07:3d:ba:cc:e7:cb:f9:b5:f0:64:89:b4:f4:c0:8c:f8:
3e:04:67:77:fb:1c:59:e8:30:fd:2a:b7:65:eb:96:a6:72:28:
76:ac:8d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org