Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vWsrSO1X7lliSi-iyb0Z2pSguv4.roa
File: vWsrSO1X7lliSi-iyb0Z2pSguv4.roa (raw, json)
Hash identifier: CaoyoHvZL3TlhdoZJE0/+q3oCilFCw70ZDXG3jcTTHI=
Subject key identifier: BD:6B:2B:48:ED:57:EE:59:62:4A:2F:A2:C9:BD:19:DA:94:A0:BA:FE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BCD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vWsrSO1X7lliSi-iyb0Z2pSguv4.roa
Signing time: Sun 07 Feb 2021 11:33:55 +0000
ROA not before: Sun 07 Feb 2021 11:33:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 210.200.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3021 (0xbcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BD6B2B48ED57EE59624A2FA2C9BD19DA94A0BAFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6a:f0:6b:a5:89:04:77:91:25:45:ad:d5:46:
d3:d1:16:2b:b1:47:c5:2c:5c:cd:37:8b:74:d3:97:
db:7c:7b:97:eb:d4:4f:2c:b1:da:e7:dd:82:a6:15:
4c:a8:04:b0:a1:7d:7f:04:7f:81:eb:e1:27:73:ef:
1a:ec:56:6d:0e:a9:eb:28:94:ae:07:6c:0b:40:d2:
e9:e7:71:9d:5a:64:7b:3b:ed:0a:19:9e:04:67:29:
d5:7f:74:98:8e:85:9e:93:80:f6:7f:c8:ad:ad:fc:
39:fe:b6:ad:49:8b:18:47:77:ca:de:30:fe:00:64:
ab:67:27:de:16:0b:d9:9a:22:76:c4:6b:ff:6e:da:
15:f0:a4:9d:d3:02:d3:eb:7d:37:dd:35:de:4f:17:
28:4d:99:0b:e4:d9:5c:db:d8:4a:28:81:dc:3e:06:
b5:35:d4:9b:70:70:b7:b2:d1:38:44:9f:bf:b1:19:
b5:be:56:58:74:ff:b5:44:bb:d1:91:ec:80:c2:ac:
6d:6c:e3:a9:22:9e:30:47:68:16:7c:10:da:b2:5b:
52:c8:a9:e9:bb:e4:05:a7:ef:d4:04:aa:88:e9:aa:
73:3c:05:ae:d3:55:ce:df:d8:4f:53:db:27:35:a0:
7a:4a:31:b1:ea:59:cc:1e:e4:b5:83:97:cf:79:87:
2c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6B:2B:48:ED:57:EE:59:62:4A:2F:A2:C9:BD:19:DA:94:A0:BA:FE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vWsrSO1X7lliSi-iyb0Z2pSguv4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:ee:e9:fe:a9:61:10:30:57:24:e7:6f:e0:68:a0:96:b0:d7:
95:c8:aa:d3:20:2a:fc:6f:ea:c9:1a:1c:59:9c:3f:28:76:d3:
e2:e4:2e:27:6d:95:25:ad:94:2e:4c:ea:6d:ab:1f:9a:35:8f:
02:95:46:27:bf:87:9d:63:00:71:ed:76:82:34:fb:04:f0:39:
89:7b:ea:d2:9c:5f:f9:68:5e:af:31:ab:7a:f5:21:56:99:d4:
6e:0e:ce:14:8a:0b:2d:8d:f9:d3:1c:73:0c:12:54:aa:ea:34:
a7:1c:90:a2:83:a0:8b:e5:2c:27:c3:79:98:6e:16:aa:e1:2e:
03:98:d2:bb:ea:91:3c:7b:a4:98:65:cb:29:96:37:50:89:fa:
50:cf:c4:b7:3a:39:4e:88:21:a0:1e:eb:56:9b:9c:0d:82:38:
45:78:1d:06:58:fc:ca:d8:41:b5:d5:93:6d:65:5a:ae:19:f9:
61:da:89:59:41:3d:3e:58:32:49:ae:7c:fa:c2:81:8a:8f:2f:
79:86:71:4f:0d:3c:fd:03:21:96:f7:33:9a:02:e5:27:3d:05:
d4:46:0f:7f:22:fe:28:0f:70:9e:65:29:59:96:26:75:62:22:
9c:16:57:d4:97:0f:0c:49:a1:3a:d0:7a:f4:0b:51:bc:5f:62:
38:64:be:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org