Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/sz9Ey6lS2TNaopKCmjLKgIX5Dko.roa
File: sz9Ey6lS2TNaopKCmjLKgIX5Dko.roa (raw, json)
Hash identifier: FmktsLGNO4O6z5Prx+OXXmyL8EcjqroQ1ZFhwbwfF80=
Subject key identifier: B3:3F:44:CB:A9:52:D9:33:5A:A2:92:82:9A:32:CA:80:85:F9:0E:4A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C5F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sz9Ey6lS2TNaopKCmjLKgIX5Dko.roa
Signing time: Sun 07 Feb 2021 11:35:52 +0000
ROA not before: Sun 07 Feb 2021 11:35:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 222.251.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3167 (0xc5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B33F44CBA952D9335AA292829A32CA8085F90E4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4c:91:fd:e3:eb:3e:8d:ee:b9:a6:7d:f1:62:
d0:82:54:e4:a0:be:8d:93:eb:c2:1c:fa:c3:21:e4:
02:f5:c9:44:b1:20:0e:5f:01:0e:c7:22:7b:9b:c8:
f3:0e:6d:0e:06:65:21:4f:76:60:42:4e:aa:80:45:
b8:50:cf:f6:c9:77:39:07:08:45:af:9b:4a:ba:52:
38:ff:35:cd:b0:67:01:05:2b:31:37:d0:fa:9e:18:
25:8b:9b:ac:3c:fb:fc:ec:bb:8d:98:9f:c2:40:37:
99:d1:5d:a0:65:07:e8:18:e0:0c:7a:3f:3f:f3:8b:
6a:d7:cc:c7:d1:a3:68:93:31:ba:01:6d:06:cc:04:
41:a3:ef:dd:32:5d:a7:2b:0c:0a:a9:3e:c7:87:b4:
a5:23:b5:49:01:62:45:56:c2:ea:55:e4:3e:de:52:
a8:df:7e:8e:40:61:a9:6d:fc:8d:75:91:1b:6b:5a:
cb:5f:ce:9d:38:7c:3a:eb:c0:da:7b:c4:44:5e:08:
64:e7:86:26:b2:6e:fa:6c:9a:ac:e4:cc:f5:60:72:
d6:f3:3e:ad:b5:6e:37:8c:dc:da:d5:1f:e4:61:88:
2e:2a:b5:77:e0:a1:e3:25:4c:09:3c:d8:17:f9:85:
ce:76:8a:37:39:6f:d0:b4:fa:04:d9:7a:f3:57:43:
ba:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3F:44:CB:A9:52:D9:33:5A:A2:92:82:9A:32:CA:80:85:F9:0E:4A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sz9Ey6lS2TNaopKCmjLKgIX5Dko.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.251.0.0/18
Signature Algorithm: sha256WithRSAEncryption
a1:98:92:a1:ee:52:82:5d:94:64:61:8b:b8:39:48:f3:5a:f9:
69:b4:5f:02:87:9c:82:83:94:99:b8:e8:e2:d7:61:ca:51:e5:
c5:03:42:e5:a1:29:33:53:dc:fb:7e:70:f4:ab:cb:12:8a:37:
76:30:48:3c:2b:00:44:8a:6f:42:7b:19:79:c9:62:68:5f:45:
6b:d9:36:4d:62:98:6e:70:44:ab:6c:a5:5c:b6:58:c6:17:2b:
be:05:13:ad:69:ec:a9:81:f4:86:9f:0c:fc:f3:c7:53:6b:59:
25:b3:68:1f:cd:e9:35:10:d4:ac:a6:d0:f0:ef:47:40:67:a5:
0b:3b:ff:42:31:b9:55:fa:a7:f4:2f:c8:cd:af:48:99:0f:a0:
9f:f7:3e:3f:6d:e6:d4:cd:4b:cb:cb:96:bd:53:a0:b3:9b:19:
38:4d:ff:88:89:d5:0e:44:05:5f:e4:ce:a9:c8:82:ea:07:a0:
ba:ec:01:c7:cd:ed:3c:49:6c:96:31:da:c9:8d:43:12:c9:32:
5b:5c:54:cb:da:eb:6e:6c:16:2a:c2:57:1b:7a:dd:68:e7:db:
34:3f:4e:09:29:07:f5:82:33:cc:d9:fe:8c:76:04:02:9b:7c:
0e:26:ce:40:10:ec:ba:be:1c:3f:e7:49:33:2f:73:34:8d:0c:
8a:c2:ee:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org