Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vBE3tk_EeY6VqDTch23ydrMrPJ8.roa
File: vBE3tk_EeY6VqDTch23ydrMrPJ8.roa (raw, json)
Hash identifier: 6jzoKWqQQsAnwvFXXdpr6x0ZOH5DeWw95N6x7WvlJVU=
Subject key identifier: BC:11:37:B6:4F:C4:79:8E:95:A8:34:DC:87:6D:F2:76:B3:2B:3C:9F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1296
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vBE3tk_EeY6VqDTch23ydrMrPJ8.roa
Signing time: Fri 01 Sep 2023 08:04:40 +0000
ROA not before: Fri 01 Sep 2023 08:04:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 203.79.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4758 (0x1296)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BC1137B64FC4798E95A834DC876DF276B32B3C9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a3:ae:c6:c3:75:2b:5a:77:0b:d3:66:77:41:
03:37:03:93:68:99:07:56:82:de:30:9e:29:01:af:
09:f1:6d:8e:c2:77:68:d4:bb:06:0e:3b:b6:b8:d7:
d5:ad:9a:a0:c0:78:2e:08:f4:81:a6:7e:4a:f9:70:
dd:0a:d0:74:51:bd:69:c4:b4:2b:fd:6c:e2:80:7c:
64:09:dd:0f:e5:21:8c:fb:4c:e7:32:c0:9f:6a:ad:
3a:89:6f:14:d2:aa:6c:a0:20:6e:8a:7f:3f:9e:5e:
ea:d5:22:d3:96:71:95:0d:9c:ab:e8:79:4e:15:25:
a5:4a:57:a8:21:6c:24:25:bc:2a:dc:7e:b8:42:74:
a3:98:3d:d7:82:80:a3:1f:ab:b8:f3:d5:9b:18:d2:
b0:99:6d:3f:f4:2a:62:04:b0:a2:62:f5:78:8d:2b:
4e:6c:08:37:aa:bc:d7:1b:1f:b3:d7:2f:e3:51:b1:
54:67:50:fc:c9:5a:64:28:0c:33:4a:12:30:f8:c2:
25:55:3b:fe:45:5b:08:87:6e:e9:8b:b1:72:fd:3b:
d7:59:87:ba:e5:fa:4d:83:e5:d3:dc:53:f5:fb:4b:
9c:91:ab:d9:28:34:7e:33:39:64:8e:5d:cc:2c:d7:
b6:a6:e7:98:09:ae:ed:d2:4f:32:d6:15:b4:0b:c4:
5d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:11:37:B6:4F:C4:79:8E:95:A8:34:DC:87:6D:F2:76:B3:2B:3C:9F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vBE3tk_EeY6VqDTch23ydrMrPJ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.196.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:ce:25:15:1a:de:26:56:b4:b9:bd:5a:39:b2:9f:72:aa:58:
fd:71:8b:30:17:2b:97:28:9a:5c:af:ab:ad:ce:85:3b:22:a0:
c3:ca:8c:a0:35:da:7c:fd:5a:82:2d:56:78:ef:bf:af:71:da:
eb:10:f6:27:c3:c9:41:11:1d:9c:c0:ca:15:1c:15:59:a0:cc:
09:22:2c:f1:3c:e4:7e:9e:72:a9:08:c7:94:03:79:91:41:69:
88:ba:23:1d:76:76:0a:25:89:a2:5d:f6:b9:8d:3a:eb:75:e2:
9a:1c:01:42:c1:99:88:ac:dd:bd:3b:04:c1:06:10:e8:f8:b8:
85:92:4c:b6:4d:0a:e5:6a:c3:31:cb:be:7a:5e:53:a1:e2:f4:
fb:ed:a7:63:4a:f4:c0:e2:20:e3:86:62:53:2a:0f:c8:8f:40:
2c:ec:7b:8a:0f:04:74:ff:ef:f9:4f:bc:86:e5:cf:0b:2a:1c:
dc:bc:53:b1:5a:8b:b4:30:40:b1:80:b7:9b:c0:05:3a:62:1a:
56:53:e5:92:e9:b9:4f:26:a3:f6:b3:11:0b:c7:dc:73:b5:af:
d0:e4:42:41:09:ca:25:d7:24:db:b8:ee:88:09:54:c3:76:33:
74:35:8a:fe:5b:46:5c:ca:5c:db:5d:54:7e:c1:72:e2:c5:46:
9c:c3:8f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:50:43 2024 by rpki-client on console-fra.rpki-client.org