Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/tQDnKIyZtbo6yjjJsWuWYFXNykM.roa
File: tQDnKIyZtbo6yjjJsWuWYFXNykM.roa (raw, json)
Hash identifier: 6PZhoqYqrNnyeqo0f9PuLWdNONN/cncPkoyK8XIcGcY=
Subject key identifier: B5:00:E7:28:8C:99:B5:BA:3A:CA:38:C9:B1:6B:96:60:55:CD:CA:43
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DEB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tQDnKIyZtbo6yjjJsWuWYFXNykM.roa
Signing time: Wed 29 Sep 2021 02:39:44 +0000
ROA not before: Wed 29 Sep 2021 02:39:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 210.202.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3563 (0xdeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B500E7288C99B5BA3ACA38C9B16B966055CDCA43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e8:8e:52:a1:a2:34:e9:99:ff:1e:13:bb:8e:
02:49:2e:23:a6:0c:84:96:8c:5a:23:a1:09:2b:a5:
b9:01:d8:30:58:b2:8e:ba:67:c9:c8:ed:49:aa:d5:
8c:26:ce:55:18:7a:81:79:02:87:7f:53:03:12:3d:
1d:8b:10:8a:be:ab:bb:00:0b:e5:de:78:ec:07:00:
cb:3e:00:ee:a3:b0:24:c9:8e:95:69:b2:0a:00:59:
95:83:04:1c:f6:d4:e2:2c:d3:0c:be:46:56:8b:4f:
01:3f:0f:d4:d9:d1:4e:18:6a:a4:1c:0c:0f:e1:8e:
b4:7a:02:72:b8:ef:29:fd:08:34:28:ec:3c:f4:49:
5f:7b:f5:43:02:7c:57:40:cb:e7:ee:b6:a2:61:a3:
2e:f6:b9:15:d3:c0:ee:54:19:80:00:9e:96:70:e5:
5e:0a:6c:74:7c:70:e1:4c:4b:af:93:05:6f:ec:89:
43:3a:9e:19:e0:85:5c:f1:82:5d:6b:4e:56:0d:ee:
f2:53:c6:58:16:d9:32:86:9b:f5:a2:db:01:7f:79:
9d:d6:5a:82:ac:bc:80:15:0f:d6:12:3b:50:94:43:
b1:da:45:0c:5c:7b:04:0d:ba:d9:ef:59:7e:13:82:
05:de:ea:c0:47:d2:89:d1:1e:3e:f8:65:9c:75:ee:
a0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:00:E7:28:8C:99:B5:BA:3A:CA:38:C9:B1:6B:96:60:55:CD:CA:43
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tQDnKIyZtbo6yjjJsWuWYFXNykM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
38:89:90:54:dc:df:0c:2b:ee:78:56:52:9b:bb:6f:dd:1b:f0:
7e:76:01:fe:44:1e:f3:0b:d0:6f:c2:2d:3f:22:73:bb:a4:ee:
95:f1:cc:1b:07:b1:df:98:ca:60:da:f9:aa:16:45:63:ed:a6:
f3:b8:69:62:eb:13:45:3e:ed:aa:e9:c7:7f:25:ac:e1:f1:33:
51:f8:04:92:bd:de:d7:e6:43:3d:3f:1c:8c:ad:a3:65:6a:ec:
3d:a2:40:90:ef:1b:a1:f3:a8:65:8f:30:5f:73:7d:86:55:4c:
cc:6b:44:4a:ac:88:3f:19:ef:ec:5f:94:18:46:b1:be:cf:d7:
f0:c1:9c:16:1f:61:91:e4:1d:93:8b:d6:4a:6b:4d:6c:f0:91:
38:3c:f4:1f:eb:fd:04:fc:5d:aa:82:a4:0b:8c:3e:84:0e:6e:
7e:79:0e:88:df:65:0b:83:4f:88:af:d8:42:a1:45:82:f1:a9:
be:59:14:cc:ca:6d:54:e1:27:53:6b:b0:75:c6:fc:3f:90:92:
76:3a:76:40:13:ba:3b:84:32:2b:07:4f:4f:b4:d3:7f:50:b2:
ac:53:30:ff:cb:f5:71:6d:f8:50:a4:cc:23:38:c7:53:84:a4:
ba:23:b1:a4:2a:77:01:aa:c0:8d:07:1d:9b:33:76:c3:47:bd:
16:c2:da:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org