Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/sgREHj5hl_Cypsii3uMp1PJwq60.roa
File: sgREHj5hl_Cypsii3uMp1PJwq60.roa (raw, json)
Hash identifier: WIRQDP7dlmH6ZEumxeJYJyz+HH8jjdNEf/Ia2aq2Dqk=
Subject key identifier: B2:04:44:1E:3E:61:97:F0:B2:A6:C8:A2:DE:E3:29:D4:F2:70:AB:AD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sgREHj5hl_Cypsii3uMp1PJwq60.roa
Signing time: Thu 15 Sep 2022 02:40:34 +0000
ROA not before: Thu 15 Sep 2022 02:40:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.202.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B204441E3E6197F0B2A6C8A2DEE329D4F270ABAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f0:7b:b7:7b:b2:41:1d:ec:15:45:62:13:ab:
d3:bd:d3:fc:5f:3f:65:a8:fc:62:46:d9:34:7f:b6:
00:b1:7a:6e:d3:c6:10:ec:49:dd:02:e7:0a:a1:b0:
04:e1:74:48:c1:db:55:81:9c:12:46:9e:11:1e:7c:
01:85:48:13:b2:75:1e:cd:5b:dc:02:39:53:a7:ec:
7a:8e:37:9c:af:af:c1:52:50:60:a7:5c:6f:7e:37:
a2:16:a0:57:9a:87:cc:df:0f:09:96:4d:d5:87:31:
aa:21:bc:dc:81:d6:2b:c9:5b:ec:96:56:9c:36:d3:
6d:be:93:dc:c2:2b:bf:30:f0:e7:41:d4:e2:19:95:
ff:1b:7b:b5:f3:95:a6:f4:9b:df:3a:a6:a9:92:f7:
d9:57:2f:f2:0b:9b:90:32:69:e0:49:ac:a1:b3:36:
11:b3:a5:1e:e8:20:b8:fe:2a:05:0f:a3:e4:65:d4:
88:24:e7:1d:88:b0:80:99:77:85:9f:61:79:27:82:
63:f2:98:ea:88:52:09:01:24:c3:c5:01:ee:25:19:
db:ac:c2:58:d3:83:19:9a:09:ec:d0:03:ab:f9:2c:
c7:b2:d5:88:82:ad:66:24:2b:ab:2f:ec:e4:9b:ef:
fb:9d:49:4f:cb:3d:01:4f:87:36:38:6e:9f:5f:65:
13:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:04:44:1E:3E:61:97:F0:B2:A6:C8:A2:DE:E3:29:D4:F2:70:AB:AD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sgREHj5hl_Cypsii3uMp1PJwq60.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.32.0/20
Signature Algorithm: sha256WithRSAEncryption
91:de:90:22:8e:79:ba:07:96:fb:7a:02:8c:ea:95:55:41:06:
60:66:2a:97:3a:42:52:e3:ee:bf:86:6a:1d:2c:dc:6b:94:f6:
33:f9:9c:03:92:86:6f:ef:c3:3e:80:17:c0:e1:fd:c6:54:ee:
de:e7:70:5a:0b:85:ad:b5:8c:ab:8a:3a:b8:cf:b9:6c:4b:cc:
86:b3:43:8e:fd:0f:e7:ba:0e:4c:ab:60:7d:ab:56:d0:40:ba:
1f:7b:74:3c:d2:13:7b:14:2e:39:54:f4:c7:76:5b:b3:ae:43:
df:0e:6a:af:42:9b:bb:51:a9:5e:af:d3:c0:46:ed:e2:c1:96:
33:63:a9:41:7d:e8:f9:30:04:a8:13:df:54:ef:9c:81:ec:7d:
1e:c3:c7:6c:5b:bc:fc:a1:03:fa:bd:96:23:7f:72:74:52:cf:
1b:69:67:c0:f2:3c:ae:52:6c:85:60:6f:18:f8:d2:62:f3:d1:
53:54:04:f3:c1:48:f1:f6:b7:89:89:15:58:af:7c:8a:2e:46:
79:57:85:91:c3:43:82:ca:ef:5c:af:f0:66:1b:12:bf:ce:0b:
0d:64:cd:be:3c:ff:46:72:43:a6:9d:41:5e:ac:89:82:f2:09:
49:a7:35:9c:9c:df:86:f7:e9:84:c1:73:20:c3:91:76:cc:12:
c3:bd:18:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org