Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/wKrQvy_1lxkE-QL4zT5dUcr50v8.roa
File: wKrQvy_1lxkE-QL4zT5dUcr50v8.roa (raw, json)
Hash identifier: 4Cptr3Olz2cFqjqrnZ9uZui3ED+xf/OJbKZeXH5m3zM=
Subject key identifier: C0:AA:D0:BF:2F:F5:97:19:04:F9:02:F8:CD:3E:5D:51:CA:F9:D2:FF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wKrQvy_1lxkE-QL4zT5dUcr50v8.roa
Signing time: Thu 15 Sep 2022 02:40:17 +0000
ROA not before: Thu 15 Sep 2022 02:40:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.85.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C0AAD0BF2FF5971904F902F8CD3E5D51CAF9D2FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bb:5b:5e:ec:6a:74:f5:e0:90:97:d6:6d:1a:
04:4d:6e:d4:a4:97:b0:7c:ea:06:aa:85:08:c6:7a:
64:0c:f7:98:ed:f5:97:2d:15:45:e4:06:f1:bd:39:
75:18:ac:c2:76:a5:b8:bc:83:fd:9b:c3:51:15:e4:
94:1d:31:d9:d9:fb:0a:c6:46:9d:cf:59:b1:c3:b9:
0f:3d:d3:45:2c:3c:6d:ca:0a:2e:24:f9:1e:eb:85:
99:1e:76:e9:14:03:50:28:bc:15:b5:b9:b7:1a:ef:
9c:2b:64:c9:c1:8f:c9:24:20:47:fc:10:87:48:be:
b4:17:88:c7:6a:fe:75:12:20:bc:c4:92:0d:36:01:
33:05:23:42:12:5a:b1:46:d2:38:00:a4:bb:db:43:
bd:0a:95:b6:95:10:19:5a:d7:5b:3b:7d:a7:91:f4:
46:eb:60:35:59:16:0c:85:d2:ab:8d:fe:cc:34:96:
b8:f6:88:6d:cc:ba:69:d4:64:72:8c:c5:20:97:02:
13:3f:ec:bc:99:c1:0e:3c:e1:f7:cf:cd:89:db:23:
a5:bf:17:23:be:07:6a:c4:34:e6:bb:51:89:87:6e:
4a:46:8b:f0:0d:bb:db:a8:d8:fa:00:b9:22:b9:93:
24:a9:10:69:47:d6:ab:c6:12:79:e0:1b:c3:87:11:
f9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:AA:D0:BF:2F:F5:97:19:04:F9:02:F8:CD:3E:5D:51:CA:F9:D2:FF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wKrQvy_1lxkE-QL4zT5dUcr50v8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:92:86:a3:1c:8d:0b:21:43:ca:64:a9:fc:61:74:be:10:20:
47:46:1c:b1:c3:89:6c:c8:e1:dd:63:0b:8e:fd:21:9e:5f:50:
fd:fe:bd:71:5b:c0:66:88:38:01:4e:4e:b5:a1:93:01:e1:d0:
5f:a0:3f:bb:07:92:fc:5f:62:60:fc:ab:e2:57:11:dd:70:d2:
71:50:ee:56:ee:77:62:81:c0:af:e8:76:8f:1d:57:08:20:58:
69:eb:ce:15:d6:b3:c8:c6:86:f8:9e:2c:f6:94:40:e3:54:c5:
8b:0f:f0:a1:15:bb:1b:f8:2e:bd:1b:7e:25:71:d1:8d:03:e3:
13:dd:56:d4:59:79:3e:4c:46:f1:38:c1:c6:ba:79:24:d6:7e:
c2:34:b9:03:e1:e8:e0:ba:95:1f:fd:e6:f6:7f:9b:ee:61:e4:
64:9f:5c:7a:22:90:46:71:77:cf:51:c9:78:57:74:63:d0:e0:
77:19:bd:c8:5d:6f:e7:18:04:82:88:42:78:ef:d7:a3:84:8e:
76:f4:25:fc:63:2b:9f:f2:bb:6c:25:1f:4f:60:3d:24:9c:22:
49:6e:40:ed:8c:ff:f7:a0:38:63:ff:ae:ce:b3:30:1a:54:5c:
4d:24:f6:ad:b1:08:96:b1:f0:12:98:86:53:5b:6e:f1:e4:e0:
8a:da:d6:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org