Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/zMDMz687tj-5CjBWPFOguzs-oaQ.roa
File: zMDMz687tj-5CjBWPFOguzs-oaQ.roa (raw, json)
Hash identifier: JRZxXu7Gdge2nFM+P+7mX6SsclQzlImlYTeVn75IgXM=
Subject key identifier: CC:C0:CC:CF:AF:3B:B6:3F:B9:0A:30:56:3C:53:A0:BB:3B:3E:A1:A4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C2D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zMDMz687tj-5CjBWPFOguzs-oaQ.roa
Signing time: Sun 07 Feb 2021 11:35:10 +0000
ROA not before: Sun 07 Feb 2021 11:35:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.63.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3117 (0xc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CCC0CCCFAF3BB63FB90A30563C53A0BB3B3EA1A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9f:fb:77:b4:17:a0:f5:50:d7:61:c4:7a:69:
d0:dd:bc:7a:70:8c:21:d8:97:52:c1:b2:ea:58:53:
41:2e:d8:c0:1c:0a:8b:00:04:45:00:30:a6:40:da:
25:cf:76:e6:66:9b:c3:20:58:65:f5:cd:91:f3:91:
30:1c:dd:bb:b6:c9:d9:bc:5e:6e:7f:19:21:0b:51:
ed:68:42:fb:d3:d5:39:c3:89:26:91:1e:31:22:3a:
61:d0:fc:c2:39:7a:66:df:95:4c:28:56:68:8e:6b:
df:ca:bb:ca:3d:f7:cd:5a:51:18:7b:82:b7:e2:5e:
0b:b0:e8:1a:b4:d5:ac:77:68:42:91:da:59:c4:bb:
30:a8:a6:4a:5c:32:1c:ec:e3:08:07:67:e8:b1:bb:
54:6e:c3:b5:88:00:de:8e:56:f2:a2:58:a9:0b:c7:
46:c6:10:f1:15:09:17:77:fb:c5:87:c4:8f:85:1c:
d1:bf:18:31:52:9b:b1:25:35:01:fc:dd:d8:2d:6c:
78:d6:61:96:fa:f5:a8:f8:66:85:5b:62:98:7e:4b:
26:0b:0b:b3:1a:83:c1:8b:43:ae:31:81:1f:a4:fb:
06:75:8b:57:29:09:dd:7d:b1:c2:e7:6f:1f:2f:8c:
66:5b:8e:c3:95:d8:83:b2:2c:db:fa:24:5b:70:4a:
56:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:C0:CC:CF:AF:3B:B6:3F:B9:0A:30:56:3C:53:A0:BB:3B:3E:A1:A4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zMDMz687tj-5CjBWPFOguzs-oaQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/19
Signature Algorithm: sha256WithRSAEncryption
87:38:75:7c:2c:33:5f:af:44:a5:9c:0d:7e:0a:a4:84:46:b5:
62:79:60:79:9f:94:57:8d:bd:95:bb:88:96:ce:00:09:ca:fb:
5f:dd:f9:bc:a5:77:58:21:ec:cd:6d:e7:fa:6a:69:71:3a:d5:
6f:63:ff:26:53:d6:45:1f:1b:58:b9:6d:6f:1c:75:d2:7c:5f:
79:c4:87:c8:1c:2e:93:68:15:06:e5:7d:84:57:c7:06:18:2f:
c4:32:9d:2e:1a:13:5b:a7:82:9b:3c:18:ef:2e:4e:72:e6:ad:
69:c8:8c:36:13:11:e5:b9:f6:7d:09:9c:49:6e:f2:cd:82:bf:
eb:78:24:cb:1c:62:a9:15:72:2c:ee:21:17:18:54:b3:ea:9f:
a5:38:dd:78:08:52:72:01:73:81:09:e1:1a:01:73:eb:38:7c:
9b:4a:83:fe:91:83:02:d1:3d:69:84:9b:18:39:ac:88:31:53:
cf:a8:0f:ff:7a:7c:4b:54:14:c2:22:63:48:00:32:96:84:ce:
00:bd:e2:f1:05:e1:75:d0:eb:85:54:f8:2d:e7:9d:3e:3e:90:
63:ad:27:36:ad:54:fc:91:f2:a6:5b:2d:11:af:b7:3f:7a:11:
89:c9:0a:80:97:f1:ae:10:a0:5c:01:e7:78:c8:e7:18:4a:62:
4d:9a:c5:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org