Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ry7VowTJVhTiCxZx8IAsV6mm2FQ.roa
File: ry7VowTJVhTiCxZx8IAsV6mm2FQ.roa (raw, json)
Hash identifier: euO5KDVp9A9EyuHCfOQyhlqSY+KF+Q14f2gj5Gn5mN0=
Subject key identifier: AF:2E:D5:A3:04:C9:56:14:E2:0B:16:71:F0:80:2C:57:A9:A6:D8:54
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 106E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ry7VowTJVhTiCxZx8IAsV6mm2FQ.roa
Signing time: Tue 16 May 2023 08:36:12 +0000
ROA not before: Tue 16 May 2023 08:36:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.58.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4206 (0x106e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:12 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AF2ED5A304C95614E20B1671F0802C57A9A6D854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9c:45:8c:d4:bc:da:d7:05:5b:c7:4a:6a:32:
52:89:ba:fc:85:fa:1a:2e:fa:ff:10:35:5f:a6:64:
7e:32:5a:f4:79:09:35:54:64:b8:a7:fb:8e:80:cc:
3c:f8:fd:67:2c:29:2d:ed:ff:ce:d3:17:c6:17:7c:
c7:15:bb:52:68:8d:bc:65:60:dc:ba:75:6c:64:90:
2d:dc:6f:5b:51:70:69:95:50:3a:b0:b7:1d:a3:09:
04:ee:4d:6e:1b:c1:d6:cf:a6:df:14:d9:90:b6:d9:
f8:ef:23:89:9f:16:1d:79:b9:3a:7d:87:93:b2:76:
4f:3b:5b:7b:da:ba:9f:c3:c6:ef:56:a0:27:ac:d8:
17:c4:91:cc:6b:53:e9:ca:1c:de:4d:14:de:3d:1b:
39:f7:42:f7:8a:19:6b:f3:fb:84:73:1a:3d:4e:20:
97:ce:b7:a3:cc:7b:f8:96:26:b5:3a:f5:8b:06:3f:
50:8c:3f:cb:47:3c:90:59:d8:53:c6:01:3e:a3:f2:
a2:f2:fc:09:da:9a:17:c0:57:98:cd:c3:8b:6d:54:
d8:65:5f:c0:b8:b4:8b:69:ca:e4:3d:31:36:7a:8c:
ba:b2:b9:0d:94:ea:e5:c6:e2:35:cf:b2:af:df:c3:
ff:79:76:88:bf:f4:b2:11:30:f4:f0:0c:3a:e2:cc:
74:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2E:D5:A3:04:C9:56:14:E2:0B:16:71:F0:80:2C:57:A9:A6:D8:54
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ry7VowTJVhTiCxZx8IAsV6mm2FQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.96.0/21
Signature Algorithm: sha256WithRSAEncryption
69:a2:f0:57:c0:8b:03:7e:c5:2e:92:67:c6:6a:eb:46:e0:18:
a7:2a:54:e3:db:c5:4d:39:27:6a:9a:e3:25:9e:b1:96:b5:3f:
49:ba:de:86:12:2c:6d:a7:39:06:19:ab:14:a1:76:b0:5d:ca:
93:13:02:ed:ec:62:ae:d2:c5:9f:a4:07:4f:0b:0f:92:18:19:
6d:97:6d:1c:62:62:ef:47:d2:6c:2f:e0:f6:82:f8:13:5d:eb:
e3:79:45:4e:92:c4:0a:e6:24:6c:6a:59:9a:8e:5d:cd:52:40:
99:d1:82:be:c8:cd:88:9f:da:f3:1f:a2:29:ac:4d:a9:d0:60:
c1:6d:a2:8c:75:9e:f7:89:46:31:78:51:cc:b8:81:fa:88:57:
84:e5:92:0e:b4:35:36:43:12:c3:40:e8:ff:92:8d:b0:e9:b8:
ca:f8:37:62:7b:3d:d1:ec:41:8e:b4:7f:7b:22:91:74:c0:70:
2b:f3:36:0e:3e:a8:2b:75:7a:76:c8:3c:fc:d5:84:8a:4e:e6:
ab:fa:09:3e:ce:a3:a7:bb:1f:02:b8:75:e8:1e:55:16:20:1d:
fb:0c:1d:3a:42:ee:a5:63:d2:8b:9a:20:5a:6f:99:d8:26:c1:
e6:07:27:24:c7:71:6a:e4:b6:5f:3d:cf:93:21:45:d4:24:24:
e0:b3:78:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org