Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xU0YXNTVev2AYkYzkFw9DMNQMqw.roa
File: xU0YXNTVev2AYkYzkFw9DMNQMqw.roa (raw, json)
Hash identifier: nSCpRxMs79onKYSiCxkcg4v8Wg7Tm34sUzElknJBjNs=
Subject key identifier: C5:4D:18:5C:D4:D5:7A:FD:80:62:46:33:90:5C:3D:0C:C3:50:32:AC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1024
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xU0YXNTVev2AYkYzkFw9DMNQMqw.roa
Signing time: Tue 16 May 2023 08:35:48 +0000
ROA not before: Tue 16 May 2023 08:35:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4132 (0x1024)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:48 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C54D185CD4D57AFD80624633905C3D0CC35032AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:4b:96:68:b9:7c:ab:86:fe:80:24:48:5c:
95:d1:af:f0:ec:bc:6e:6d:dc:7e:70:b5:a6:62:bb:
01:86:f2:42:1f:6c:5e:9b:3f:50:22:5e:4a:e7:b6:
09:58:94:03:94:10:dc:12:56:2c:42:85:9d:94:f8:
25:51:02:c7:7b:87:3d:ad:c6:77:40:55:26:2d:7b:
92:e8:66:69:a0:b2:fe:0d:95:d2:6e:c7:af:b2:c5:
01:4a:fa:f0:b5:1e:b2:94:68:84:84:b3:07:5b:1d:
00:a2:c2:64:ee:d9:f0:b8:8a:f6:f0:fb:8c:ab:1a:
ea:8d:2d:a0:55:0a:75:34:d3:c2:5b:ab:13:4d:d2:
06:e3:77:d3:ec:cd:93:07:f9:dc:39:8d:9c:98:aa:
a3:4b:09:77:88:20:b6:70:9c:2d:94:69:49:82:cb:
eb:67:7e:7c:ef:62:cb:8c:5b:f9:85:b2:12:cf:a8:
44:a9:cf:dd:16:e3:85:ef:da:5c:bb:2d:f2:0e:ab:
e0:02:39:f8:f4:e2:96:f6:bd:02:8c:66:bc:ad:a6:
22:1b:4e:24:c7:01:5b:9c:d5:da:c8:5f:ca:7a:5c:
f2:73:64:ac:36:6e:61:bb:3b:4c:3a:b1:99:72:58:
6d:45:30:23:b7:b0:a0:1a:06:67:10:f2:2f:69:06:
fb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4D:18:5C:D4:D5:7A:FD:80:62:46:33:90:5C:3D:0C:C3:50:32:AC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xU0YXNTVev2AYkYzkFw9DMNQMqw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/19
Signature Algorithm: sha256WithRSAEncryption
4f:8f:6d:0a:40:13:1a:22:94:dc:e7:25:44:70:70:db:d6:4a:
34:7e:06:4d:59:31:b2:b1:fe:f8:5f:66:2d:e2:b2:d8:c8:5a:
54:22:95:fd:bd:db:d5:7e:a8:1f:e5:6e:a3:fd:1e:bc:96:c0:
48:f1:a9:6b:d9:43:83:ca:6b:3c:fe:43:18:91:5c:5c:f6:3b:
87:b7:5b:cd:ef:77:73:ad:bf:af:8d:4e:94:6e:31:16:24:ef:
60:3b:01:ad:a6:3b:5d:13:50:6e:75:0e:ee:df:a9:c5:15:ee:
1e:80:8d:17:c4:dd:fb:90:e2:c6:b7:45:04:33:3d:1f:71:fb:
1e:15:4a:d1:2c:64:e3:68:b6:d1:d8:01:58:25:cb:b7:ae:2c:
7b:d8:59:ed:fb:72:ae:fc:13:82:13:f1:fa:09:a0:6f:d5:bf:
8b:74:6f:f8:a6:9d:88:d5:69:09:93:32:25:20:6b:6c:e1:41:
60:d8:5f:2f:38:13:70:49:23:27:26:9c:21:aa:99:da:35:19:
1b:2d:f4:cf:d8:2e:fc:e2:1e:ec:79:7e:63:93:89:ac:fa:23:
49:66:96:74:cb:a2:2a:a7:df:fe:4a:18:a5:16:6c:bf:99:9f:
1b:41:21:6e:b6:bd:42:1f:8a:9f:30:52:ae:02:78:59:3c:20:
43:db:81:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org