Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/yMPjQ0bHvrGXpGUxHJljJvvreoE.roa
File: yMPjQ0bHvrGXpGUxHJljJvvreoE.roa (raw, json)
Hash identifier: Yun5/9iFFpybY09UAYLtmZHxwZm65bDCbIUrebThpkw=
Subject key identifier: C8:C3:E3:43:46:C7:BE:B1:97:A4:65:31:1C:99:63:26:FB:EB:7A:81
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 107B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yMPjQ0bHvrGXpGUxHJljJvvreoE.roa
Signing time: Tue 16 May 2023 08:36:16 +0000
ROA not before: Tue 16 May 2023 08:36:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 222.156.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4219 (0x107b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C8C3E34346C7BEB197A465311C996326FBEB7A81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:af:22:f0:af:3f:8d:26:89:b7:37:7f:ec:63:
59:ac:c5:ae:da:fb:dc:a0:54:88:86:56:72:53:33:
0f:16:25:76:7b:6b:4e:d7:5a:c3:e7:e3:f3:49:23:
c5:61:3b:cb:b6:39:b2:5b:02:93:f7:f4:89:00:a2:
99:5f:e7:35:0c:a8:c1:8d:ed:1f:1d:fc:e2:ce:d9:
a2:32:4d:61:5d:3a:62:8f:a7:5e:ae:fc:b1:41:7e:
b0:b0:ef:de:ff:aa:dc:5b:43:ab:bf:31:c8:1f:22:
73:ff:73:4e:13:aa:10:e1:6e:59:34:c8:69:60:15:
48:77:d5:eb:35:78:fc:be:6c:e7:70:a4:48:65:38:
2a:86:34:42:fb:7f:cb:3b:f1:0c:f4:08:6f:3a:da:
30:8b:89:c1:fa:4c:81:2a:8e:ea:06:32:07:2b:91:
57:9a:a8:f4:c9:83:a0:e8:88:1a:6e:73:a9:c6:20:
83:17:6d:ea:7b:5f:40:28:ca:ea:ca:b5:fc:7a:a6:
92:a3:b3:7f:10:65:3b:6d:29:fe:5e:7d:17:c0:0c:
fe:0b:b7:53:72:39:d7:af:fc:c4:67:f4:ab:43:4d:
b3:e7:66:6e:28:90:27:ea:28:c9:8f:87:21:50:ed:
3e:7f:ed:fd:64:8b:d8:91:00:b6:96:ab:0f:75:7e:
82:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C3:E3:43:46:C7:BE:B1:97:A4:65:31:1C:99:63:26:FB:EB:7A:81
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yMPjQ0bHvrGXpGUxHJljJvvreoE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.254.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:4e:cd:79:b3:ba:91:dc:df:94:46:5a:a0:ea:e0:5b:d9:98:
c5:75:1d:08:0f:f7:9a:3e:63:5a:93:a0:2d:dd:05:6e:bc:e9:
98:09:e9:8b:fb:77:95:d4:14:ca:48:95:a9:45:01:5e:ea:ba:
ac:ff:29:59:e2:31:7b:fd:a4:0f:f3:be:9b:88:99:0c:b1:e5:
f0:0f:7d:79:5d:96:89:ff:38:b6:31:3a:25:65:df:8a:b1:07:
06:b9:0f:e0:7f:f8:ff:6e:cf:98:f3:b1:8b:6f:4d:37:e0:16:
c3:57:15:71:d3:f2:44:46:98:60:2e:60:f1:9e:b4:93:89:bc:
24:36:4c:8f:bd:de:0c:5b:92:2f:71:7a:cf:ee:95:cb:82:ea:
70:0a:4b:3c:0c:0e:00:d3:28:e6:b3:a8:00:bd:64:e5:00:cd:
88:ae:db:74:6b:68:02:ca:7c:16:f0:62:cc:60:cf:92:6c:56:
83:e3:40:57:00:3d:58:5d:ff:14:e0:6f:11:e2:f7:b4:37:3b:
d1:a7:36:76:98:a6:8c:9c:02:f3:77:c7:87:06:b9:39:46:ae:
b9:08:05:fe:d0:e1:fc:46:89:6a:40:c1:a8:94:c1:d1:ce:a8:
4e:fe:c2:06:6f:18:11:bc:51:37:63:99:45:ba:ac:fb:cd:65:
cd:0f:d2:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org