Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/wdmRj-R4HEzFV7HBWxGCZcbIU9k.roa
File: wdmRj-R4HEzFV7HBWxGCZcbIU9k.roa (raw, json)
Hash identifier: 9r1YRIwgct5ToTz2vBeP9M7UQU1xhafrWAYnYnolrUQ=
Subject key identifier: C1:D9:91:8F:E4:78:1C:4C:C5:57:B1:C1:5B:11:82:65:C6:C8:53:D9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E35
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wdmRj-R4HEzFV7HBWxGCZcbIU9k.roa
Signing time: Wed 29 Sep 2021 02:40:06 +0000
ROA not before: Wed 29 Sep 2021 02:40:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 219.91.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3637 (0xe35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C1D9918FE4781C4CC557B1C15B118265C6C853D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6d:ca:d0:25:a6:7c:e5:b0:7c:b1:2a:de:11:
97:50:2e:f4:ab:7a:2a:18:fc:3f:f5:7e:52:1c:0e:
94:37:fa:14:28:bd:9d:10:7a:21:35:28:db:ad:12:
84:00:3a:1d:47:11:e1:aa:d8:b1:77:4e:4b:70:9e:
15:89:62:4e:c0:30:02:05:e6:b7:3e:a6:c9:d6:f2:
a6:06:25:8d:bb:3a:af:97:77:26:8b:81:ab:38:17:
4d:eb:55:11:3d:fa:29:4e:22:86:b6:de:e6:fd:c3:
28:60:fd:ab:5e:7a:1b:76:e7:5d:34:b7:0a:9f:fe:
eb:1c:08:fb:66:cb:6d:42:fd:91:55:f1:f5:6f:d0:
52:0e:46:d9:79:ee:1c:c8:f4:c8:b4:ba:47:21:45:
a6:9a:db:c5:a2:e7:72:83:af:94:98:29:47:29:ae:
9b:b6:6f:37:0a:f7:c4:78:75:29:fe:f7:47:fb:78:
6c:3f:ad:d5:ef:b1:08:b3:0d:17:a4:9c:30:eb:76:
7b:d8:ad:19:5e:2c:83:cc:b7:1b:d2:7c:88:42:ea:
8c:9b:4e:ca:a9:fa:e7:66:c2:94:84:05:31:96:d5:
5f:84:04:74:a2:c7:5e:ab:35:c5:21:59:93:86:8d:
31:05:26:db:94:b5:0c:da:68:00:9f:ec:55:d3:0a:
81:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D9:91:8F:E4:78:1C:4C:C5:57:B1:C1:5B:11:82:65:C6:C8:53:D9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wdmRj-R4HEzFV7HBWxGCZcbIU9k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/18
Signature Algorithm: sha256WithRSAEncryption
04:b3:cc:b8:64:0a:7d:06:69:16:6a:65:0a:6f:31:17:72:50:
b5:2f:20:c2:87:b9:24:fa:8f:fa:2a:de:85:fc:87:70:8b:53:
3f:b2:f6:1d:69:0a:8c:f1:1f:bc:36:b3:51:b1:93:d3:85:3d:
94:87:8d:d7:c4:cc:75:4a:69:63:3a:65:ec:4f:53:3f:cd:85:
cc:1a:5a:46:f1:bd:6e:42:e7:97:9c:99:98:34:89:17:f2:7d:
21:0f:c6:f7:e7:86:22:f8:be:65:e9:ce:3a:ad:13:43:2f:90:
40:6a:10:39:1b:67:fa:a9:95:f9:69:61:d6:7a:2a:89:89:f7:
8c:cf:ff:1b:d0:ca:48:bb:c3:b3:dc:83:99:a8:d8:c5:f7:d2:
54:ce:f3:44:3f:b7:1d:ce:a1:7e:0e:94:01:14:88:f7:ed:73:
92:d7:d8:92:50:00:ee:7b:c0:22:06:27:a6:be:d4:ae:ea:fc:
71:e9:cb:99:22:ea:da:16:b7:66:08:fa:76:c5:d9:ff:4e:69:
f0:d9:8b:01:57:18:99:3f:80:4f:12:ac:c9:ed:d4:9e:cf:71:
09:53:9b:5f:ee:fb:d9:81:01:5f:f0:53:35:cb:38:1b:23:a0:
22:7f:84:a2:b6:ee:9a:eb:37:63:90:ea:63:13:6f:c9:ef:cb:
1e:d8:40:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org