Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xIfH6ONewHYzWXz0Gft70sXCIAw.roa
File: xIfH6ONewHYzWXz0Gft70sXCIAw.roa (raw, json)
Hash identifier: OyFnqCra9MwtapCVjbitflPcwM9WV78QCSzirahMzcc=
Subject key identifier: C4:87:C7:E8:E3:5E:C0:76:33:59:7C:F4:19:FB:7B:D2:C5:C2:20:0C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 098E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xIfH6ONewHYzWXz0Gft70sXCIAw.roa
Signing time: Tue 29 Sep 2020 10:02:00 +0000
ROA not before: Tue 29 Sep 2020 10:02:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 219.91.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2446 (0x98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:02:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C487C7E8E35EC07633597CF419FB7BD2C5C2200C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ff:f8:51:a3:de:ca:4f:37:5d:68:ca:04:ec:
8d:95:35:a8:82:3e:d9:c8:aa:85:23:58:8f:e5:f2:
56:9c:3e:fb:35:3e:e1:76:b5:e5:63:10:4a:f3:be:
da:2f:7c:e6:af:70:99:ce:20:82:9d:e5:13:d6:be:
c2:d5:6d:66:27:1c:46:f3:4f:5c:5d:6d:0f:c7:cf:
00:39:7f:d6:fe:9e:eb:13:e6:d0:d6:f2:82:56:8a:
ee:1b:a5:2d:88:a8:64:35:02:4a:df:d4:d3:f5:df:
34:12:69:8f:72:d8:ac:19:86:64:34:f0:db:5b:68:
3b:38:09:33:f3:a6:82:c9:4b:77:b0:f4:95:b0:13:
a5:8d:34:81:43:30:7d:88:a4:6d:d8:00:d6:bb:f4:
be:af:15:ec:9a:ea:b4:25:19:44:be:4f:7c:15:4f:
5e:a6:df:a9:b8:b4:af:ed:82:a8:ff:ad:96:65:dd:
d4:3b:e1:0e:ff:1e:e0:24:00:1b:0f:57:e0:e7:13:
a2:a5:5e:47:83:81:6c:1b:24:d5:f4:4a:6c:88:a6:
b8:01:85:9d:8a:45:c8:c4:a0:73:30:97:4d:3d:12:
62:10:c2:b9:ed:5e:4c:c4:98:93:09:b9:c3:8c:20:
f7:e1:a8:f9:c6:62:13:64:8d:7f:4a:4d:79:5f:a7:
9b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:87:C7:E8:E3:5E:C0:76:33:59:7C:F4:19:FB:7B:D2:C5:C2:20:0C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xIfH6ONewHYzWXz0Gft70sXCIAw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b4:d0:4b:00:a3:9a:85:2b:8e:a5:c5:9c:14:07:82:05:d3:06:
7e:a3:3e:e1:ed:36:82:97:e5:61:8b:49:c9:80:6c:44:8e:4e:
f9:ba:e8:bd:8f:e3:62:23:4f:a1:4f:02:73:b0:69:43:51:95:
da:8b:37:af:00:07:82:b3:26:e4:1f:9f:6a:e9:8c:40:83:c7:
44:8d:24:34:38:af:02:75:fd:2b:c9:d2:83:0d:56:b0:0a:28:
5a:ca:36:b5:d6:2d:ea:11:2a:86:cb:43:56:c4:44:2b:82:3f:
11:3d:18:dd:0c:b0:4b:02:64:8b:e2:62:5a:2c:aa:bc:b3:5c:
c3:9d:67:bf:0f:65:b8:2a:3e:50:1b:a2:11:21:6d:c4:33:03:
c0:b8:29:d8:64:e9:22:e1:fb:cb:90:84:3b:88:e4:51:fa:70:
a8:72:c7:c5:79:1c:98:6c:65:78:fb:37:0e:f1:e2:44:1e:a7:
9c:a7:96:38:78:a0:12:90:57:6a:ed:fa:c0:37:6c:5b:95:83:
c2:71:87:ba:f7:32:44:be:d8:64:c7:e2:4c:a3:e6:62:cc:2a:
fa:94:d5:09:9e:f1:d1:a3:08:ad:0b:21:51:66:55:4b:e3:54:
54:e4:1f:3f:b1:6c:4a:c8:c0:88:87:d9:6c:46:b4:11:5c:cf:
40:f8:d9:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org