Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vXlnK3cwyVd9an2AQnRxfLBzBjw.roa
File: vXlnK3cwyVd9an2AQnRxfLBzBjw.roa (raw, json)
Hash identifier: gSh6pz1mumHECZl3J0gEHSHha+NMn5TqMnbd2hkWiuM=
Subject key identifier: BD:79:67:2B:77:30:C9:57:7D:6A:7D:80:42:74:71:7C:B0:73:06:3C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vXlnK3cwyVd9an2AQnRxfLBzBjw.roa
Signing time: Thu 15 Sep 2022 02:39:51 +0000
ROA not before: Thu 15 Sep 2022 02:39:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 223.22.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BD79672B7730C9577D6A7D804274717CB073063C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a5:79:30:a1:f3:ec:7b:71:a6:cd:21:c3:29:
b2:60:a1:d0:64:f6:96:bd:3f:1c:49:51:dc:8f:7a:
2f:a0:36:18:e0:a5:8f:50:e9:f0:e4:28:1d:0b:7e:
d1:06:2f:b1:b2:b6:1d:ae:2e:1a:92:fc:c7:ce:7c:
e2:35:0c:25:f9:fd:6a:ab:f6:56:86:50:42:b6:81:
81:85:04:96:b8:43:d9:f4:95:b9:17:3c:b6:4b:8d:
10:db:05:a0:f1:f7:5b:bd:27:ae:e9:5d:3c:fb:6d:
e3:73:f8:06:71:e0:3b:13:50:f6:ae:2c:aa:f5:9d:
18:42:73:d4:4a:04:05:2d:f9:3e:fd:7c:fa:c4:50:
43:d6:c5:35:f4:70:bb:b5:bf:71:92:93:68:7c:b7:
25:f5:81:c6:0f:3f:97:8a:d8:7e:ff:a9:44:23:70:
e9:2d:81:22:46:4a:a2:d9:80:73:37:30:6d:1d:fd:
44:5e:94:75:0a:76:ba:28:4a:2a:75:6f:6a:f2:09:
5a:9a:3b:93:94:b2:50:b1:f3:9c:0c:4b:a6:4f:64:
95:ff:e0:51:55:dc:fd:df:6b:1b:20:49:06:52:c8:
1b:80:9a:c7:d4:60:ce:f7:34:b4:d1:46:88:0b:04:
88:b5:f9:df:7b:d2:61:47:62:45:1f:89:ea:1e:35:
5b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:79:67:2B:77:30:C9:57:7D:6A:7D:80:42:74:71:7C:B0:73:06:3C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vXlnK3cwyVd9an2AQnRxfLBzBjw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:2c:11:2c:80:73:74:7d:64:38:69:42:6c:72:fa:44:5f:ac:
60:b3:2e:dd:04:12:8c:bc:9c:68:e6:00:c5:68:da:41:2e:97:
ab:d2:8a:91:aa:57:09:d2:8d:ed:d3:43:13:25:a9:f4:3a:44:
49:15:ce:8b:7d:ed:32:bd:2d:9e:97:50:3a:67:66:1c:c5:67:
cd:1a:a5:7b:f6:5c:36:7a:66:1b:43:2b:52:29:7c:bf:d0:9c:
3d:5b:7a:3b:19:5e:6f:ee:d8:46:95:47:dd:c6:0d:9b:b8:c9:
fb:b6:cd:2c:72:b2:90:28:a9:21:3e:01:fb:8c:29:31:2f:90:
13:49:1b:b1:22:41:ed:11:6b:cd:4a:23:a8:a9:55:94:14:d4:
15:56:03:23:62:45:b1:59:16:d1:4c:76:64:68:fa:d0:7b:33:
2d:f5:d4:0e:6a:74:f9:d8:c4:3d:30:a7:0a:fd:d0:ed:83:0f:
13:58:63:30:0b:6c:62:ca:2c:cc:ba:70:b0:af:29:f7:3a:28:
1d:9a:80:c7:bd:d7:32:07:0d:bf:56:58:7a:86:77:1d:7a:a7:
8b:0e:b6:ad:94:7c:cb:c4:54:6d:bc:56:4a:ee:53:ea:01:11:
8d:b2:3b:f1:9e:06:98:a6:e7:f6:ae:96:f0:91:ea:14:1a:e6:
8b:b0:f0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org