Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/y0-rKHBE2NAzyn8J3EXs_YMaGts.roa
File: y0-rKHBE2NAzyn8J3EXs_YMaGts.roa (raw, json)
Hash identifier: mqnpPHOduHjZXUQOcSEgF9lc6mNUiy04pEDtJzQrVM4=
Subject key identifier: CB:4F:AB:28:70:44:D8:D0:33:CA:7F:09:DC:45:EC:FD:83:1A:1A:DB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 106B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/y0-rKHBE2NAzyn8J3EXs_YMaGts.roa
Signing time: Tue 16 May 2023 08:36:11 +0000
ROA not before: Tue 16 May 2023 08:36:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4203 (0x106b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:11 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CB4FAB287044D8D033CA7F09DC45ECFD831A1ADB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5d:48:3e:3e:bb:f9:b8:22:4e:57:03:18:9c:
d1:6d:c5:ed:65:f5:dd:ff:33:44:1a:28:de:59:64:
7e:bc:8b:34:07:93:f0:17:7a:bd:7a:27:2a:da:7e:
5b:92:05:3c:43:f2:5d:83:5b:d6:e8:a5:fb:5d:54:
99:52:e2:aa:00:b5:3f:2d:ed:76:1f:7b:9e:a8:af:
a5:08:b5:07:74:86:bc:bd:d8:5f:5a:b2:35:87:d6:
83:26:89:3e:e2:b8:b5:77:38:ed:c2:28:82:7c:d9:
06:cf:a1:a3:8d:b7:0d:2f:6a:af:43:d8:46:3a:40:
c3:a3:74:51:5a:d3:32:cd:c1:21:27:ff:c4:7c:38:
59:06:40:14:8f:b1:23:b3:db:b5:54:fe:b2:28:1f:
e8:cd:5d:df:1c:ab:5d:d7:49:d2:d2:f9:5b:99:4a:
03:32:84:e3:78:05:22:fd:6a:02:6f:1a:8a:5a:63:
89:e9:c5:60:2b:85:cf:57:b6:04:c3:12:4f:ff:c9:
ef:d5:75:b6:6c:6e:c8:47:e4:73:4a:76:50:90:5d:
bf:93:4f:f3:9b:c0:20:42:cd:90:56:e2:59:e3:46:
ea:1e:fa:4f:a0:37:77:d5:70:a4:0f:c7:54:fd:86:
b4:b0:bc:a2:03:ff:6c:e4:ef:eb:e7:94:4d:e4:15:
5f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4F:AB:28:70:44:D8:D0:33:CA:7F:09:DC:45:EC:FD:83:1A:1A:DB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/y0-rKHBE2NAzyn8J3EXs_YMaGts.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.208.0/21
Signature Algorithm: sha256WithRSAEncryption
c0:04:16:ad:95:af:99:6f:87:41:85:c1:98:7c:40:37:49:c8:
6f:61:6b:7b:98:73:cf:4f:61:27:1a:c0:e2:7a:24:38:b6:be:
71:ff:2d:d5:0a:24:aa:8f:a2:86:1f:6b:ad:28:99:c6:ae:71:
97:b3:04:28:4f:28:a4:7f:b8:da:dc:f3:d6:d1:54:13:af:27:
54:ee:bd:d0:19:fc:fe:79:74:9a:03:94:cf:05:05:49:50:9e:
9d:aa:8b:7d:83:9d:45:a1:f9:4e:67:e7:18:cc:f0:fa:ae:95:
8c:8f:3c:6b:8a:2b:4a:3f:3c:b9:b3:1b:e2:ff:57:14:94:4d:
71:98:5e:ea:8a:99:24:b0:68:82:aa:d3:a2:0c:47:45:ce:ce:
56:55:9b:fd:37:8d:b7:00:97:9b:27:61:28:fc:20:65:1e:ab:
94:c4:cf:11:dc:47:70:47:d3:a7:6f:b3:87:20:a7:13:f7:bf:
59:b1:2d:b2:e7:41:85:78:0c:c0:f6:d4:bb:83:f7:df:cc:68:
f7:7b:37:04:17:ce:c0:ca:db:b1:7c:b7:e3:99:70:fc:c8:8c:
3d:2d:cd:ee:4e:fc:40:84:2b:f8:05:d8:da:5b:dc:e7:fd:1a:
7e:d2:bf:d7:76:25:d4:37:e2:d9:34:33:f3:d4:03:7c:6b:4e:
72:46:97:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org