Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/yWA8XsAG7IJBT4adTkdB0fMNZoI.roa
File: yWA8XsAG7IJBT4adTkdB0fMNZoI.roa (raw, json)
Hash identifier: MTTL6qrZ+tEXCJ6K2irBy7XyQDLJ51/4x7I87yppu5g=
Subject key identifier: C9:60:3C:5E:C0:06:EC:82:41:4F:86:9D:4E:47:41:D1:F3:0D:66:82
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E54
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yWA8XsAG7IJBT4adTkdB0fMNZoI.roa
Signing time: Wed 29 Sep 2021 02:40:15 +0000
ROA not before: Wed 29 Sep 2021 02:40:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.58.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3668 (0xe54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C9603C5EC006EC82414F869D4E4741D1F30D6682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:86:63:e7:22:a0:68:42:6e:fc:1b:ef:d1:
02:1a:c0:43:a4:1c:71:d1:8f:1a:bf:2e:32:46:b2:
c0:65:d8:79:28:bc:07:8d:4a:ca:b2:2b:2e:9f:46:
52:52:93:f3:1a:fd:a8:40:33:23:69:c8:0f:c9:d7:
76:f7:3f:eb:6d:a8:14:45:26:c9:fd:33:45:63:df:
b0:99:af:93:e2:1c:1a:e9:d9:64:fd:ef:90:3e:62:
c7:99:db:fe:f7:90:cf:20:0d:20:b6:39:5e:d9:82:
63:27:34:01:25:e6:b5:27:1f:72:b3:b3:38:70:00:
cd:2e:da:3d:e5:00:a2:9e:72:24:ed:30:0d:0e:29:
7a:b5:43:0b:b1:d7:41:17:0f:bc:aa:f8:bc:87:1f:
33:d7:ff:79:2a:62:97:d8:48:46:bf:4d:b7:f9:58:
b5:18:6b:2f:c0:0a:b7:6f:d8:a4:a0:82:fb:19:93:
f7:cf:cf:cd:cd:1d:5c:db:20:ab:4e:fe:fd:f6:9c:
47:2a:4e:2a:86:10:ef:8a:e8:fd:db:19:aa:38:d8:
16:49:2b:ee:4a:1c:8f:a4:5e:a5:75:32:32:cf:fc:
85:7b:db:29:37:f8:32:72:c9:b4:8a:0c:14:ee:2a:
67:3a:52:48:cd:f8:c6:09:55:f3:1c:d6:97:4e:18:
a0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:60:3C:5E:C0:06:EC:82:41:4F:86:9D:4E:47:41:D1:F3:0D:66:82
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yWA8XsAG7IJBT4adTkdB0fMNZoI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.112.0/20
Signature Algorithm: sha256WithRSAEncryption
71:c4:31:7c:15:90:e2:ba:5c:8f:b7:14:cb:03:66:7e:95:9d:
53:57:c4:41:00:f4:5e:9b:ea:be:52:c6:c2:5a:bd:af:3d:c8:
16:f6:f3:e6:5a:45:d9:40:b5:d6:74:8b:21:b2:6d:f7:c5:c2:
e9:75:15:8f:55:ca:72:56:47:84:a7:65:5f:86:85:15:ed:23:
25:14:6c:95:cb:2d:1c:93:ba:b6:e5:c8:25:3a:58:a8:7a:69:
07:dc:4d:64:ee:04:2f:48:b4:3d:6d:8f:f5:06:d6:e4:ac:7d:
03:11:98:49:ba:c9:69:fe:b4:15:b8:a8:da:8e:e1:54:d6:dd:
2a:6d:02:f3:0f:2a:21:55:6b:26:ad:40:ac:75:9b:79:1a:e2:
b0:19:52:22:ce:02:69:a1:dd:f4:4e:15:65:ef:96:91:19:6c:
87:4a:41:56:af:fa:5e:0d:e4:fc:24:24:5a:2f:be:32:94:8e:
39:af:a1:7d:7a:1d:99:b1:b9:45:55:d5:0c:b4:c1:cb:fd:2e:
f3:dd:a5:42:42:30:a8:64:30:45:8c:24:04:81:3b:c8:e8:81:
ec:da:7a:22:58:7d:68:84:9f:b6:ed:45:d8:ce:d0:a4:dc:10:
50:e7:d1:79:12:fa:73:9f:44:1b:91:c1:cd:5d:86:b0:f3:ad:
9e:05:1c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org