Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/v2l6jippE5fWaRCHk7NXCEhoeFc.roa
File: v2l6jippE5fWaRCHk7NXCEhoeFc.roa (raw, json)
Hash identifier: +GfYTDEXCs29USYSw4+Spp+/HfXjtiTlGRtWtk5ANrY=
Subject key identifier: BF:69:7A:8E:2A:69:13:97:D6:69:10:87:93:B3:57:08:48:68:78:57
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 114F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/v2l6jippE5fWaRCHk7NXCEhoeFc.roa
Signing time: Fri 11 Aug 2023 09:08:46 +0000
ROA not before: Fri 11 Aug 2023 09:08:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 222.250.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4431 (0x114f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 11 09:08:46 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BF697A8E2A691397D669108793B3570848687857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6a:77:ff:9e:1b:df:f1:60:e8:3b:cc:46:c9:
58:35:f1:3b:b4:90:1a:9b:b1:bc:60:88:4d:ba:62:
35:77:34:2e:af:2b:2a:71:2f:31:0f:6c:92:9a:2f:
10:90:3a:8c:74:d5:e1:74:12:08:0e:60:cf:e6:23:
62:b7:1e:8d:c9:12:3f:dd:04:06:ad:d8:4e:42:1f:
8e:89:8b:4b:5f:82:c4:09:53:5a:de:b3:1f:98:fd:
f4:c2:2f:7b:1a:c2:5f:61:f2:b2:0b:90:19:40:3e:
d6:07:17:34:1d:5c:67:ee:a1:ce:00:c9:a2:11:08:
58:69:93:7c:f6:be:a5:81:db:ab:68:36:13:f0:ed:
c7:29:ed:0d:53:18:d5:25:bf:60:98:93:5f:6c:95:
e6:30:4f:66:24:06:de:30:46:f4:e5:f3:d9:ab:5e:
d3:af:2f:15:f6:22:71:df:9e:c9:6d:f8:51:24:16:
d4:05:52:bf:e2:b5:50:5c:71:a4:52:14:d9:4c:8d:
9b:80:c6:6c:c5:35:65:c2:d5:58:fe:50:c9:5e:4d:
bd:e0:0f:97:80:51:15:d0:c7:d5:4c:fa:b5:cf:2f:
f5:44:01:d0:48:49:be:f6:b7:6f:5e:6a:3a:b1:29:
31:2f:f0:d6:56:7b:76:6f:c1:30:f6:a7:bc:d6:00:
4f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:69:7A:8E:2A:69:13:97:D6:69:10:87:93:B3:57:08:48:68:78:57
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/v2l6jippE5fWaRCHk7NXCEhoeFc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.0.0/18
Signature Algorithm: sha256WithRSAEncryption
3e:91:c0:30:41:81:40:ac:f9:b4:88:de:7b:38:41:cd:80:dc:
8c:7c:df:fa:c3:5f:2c:cb:9e:03:89:37:f0:26:38:74:f7:6c:
97:11:c7:85:b1:15:2c:92:5e:ed:5c:a8:aa:56:09:4e:f3:ae:
88:91:6a:93:4d:d7:ba:1e:2f:79:8c:21:37:32:0f:8f:78:ee:
b7:60:50:27:d9:9f:f8:4b:d2:72:ec:8c:e0:13:6a:fe:c9:7b:
ef:ee:9e:aa:a1:9b:e1:f3:fb:ce:fb:ee:0e:ee:fa:30:e1:65:
43:51:61:a6:8f:70:9b:aa:82:76:e2:cb:4d:20:40:55:0d:a8:
2e:c7:62:b6:64:31:12:17:15:8a:ba:ed:03:74:07:81:9c:dd:
43:7d:99:07:58:0a:52:d3:1d:7f:d8:3f:e7:4b:aa:d3:d1:45:
b0:2f:43:24:15:98:db:11:4b:5b:08:74:34:e3:66:d8:ed:46:
36:5f:25:49:d8:37:a1:ea:96:40:ca:d8:94:24:1a:1a:e1:a4:
37:5d:14:12:6e:d8:e7:da:16:e7:79:91:67:67:7b:12:d4:73:
df:ed:9d:a1:c4:93:b8:de:59:04:0d:98:1d:b9:1c:50:99:cb:
78:e6:0e:66:cf:f2:7b:2e:17:1d:92:2b:60:6e:f4:66:7b:55:
0b:14:b3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org