Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/zZIqn0EwCLULXCttaeSVsPpttsk.roa
File: zZIqn0EwCLULXCttaeSVsPpttsk.roa (raw, json)
Hash identifier: WqUIZL5njVKetyeJ0e4ro4qyfAsP8L8BX2WElqfFN2w=
Subject key identifier: CD:92:2A:9F:41:30:08:B5:0B:5C:2B:6D:69:E4:95:B0:FA:6D:B6:C9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 104B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zZIqn0EwCLULXCttaeSVsPpttsk.roa
Signing time: Tue 16 May 2023 08:36:00 +0000
ROA not before: Tue 16 May 2023 08:36:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 219.91.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4171 (0x104b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:00 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CD922A9F413008B50B5C2B6D69E495B0FA6DB6C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:55:f3:97:da:20:51:e0:dc:a6:96:b3:6e:fa:
cc:30:25:a5:e4:d0:cb:99:de:80:b7:d9:e3:10:fb:
91:b6:3c:07:0f:8b:46:6a:81:c2:76:42:8b:e3:f4:
9e:e6:ca:86:36:b1:18:18:26:9c:f5:25:07:f5:89:
47:9b:b4:af:2b:0b:66:64:1b:b6:8a:bd:88:8a:af:
92:f4:ae:52:dd:ee:36:a0:59:60:2b:53:b1:e4:8f:
9b:62:99:b5:3b:d1:62:28:e5:79:a3:84:fb:cb:e8:
1f:8e:f5:72:35:53:8c:35:03:ad:4b:32:e3:bc:56:
a0:0c:10:75:82:bb:6d:d4:d7:c9:ce:23:3d:b0:a1:
c1:b7:a0:7d:fe:b7:ed:6c:52:ba:df:f2:dd:89:bb:
2a:63:47:a2:01:57:71:c3:39:07:58:72:5d:a9:02:
46:0b:fb:b8:d5:f2:4d:9e:f2:ff:46:b0:f8:68:f1:
7c:f9:19:cb:91:23:ee:af:8c:f5:c0:fe:a1:f1:7c:
c3:3c:d8:d6:f3:fe:bc:ca:0d:96:01:25:e7:aa:e7:
cc:6a:60:70:7e:4f:dd:0e:6c:c3:ea:25:d1:7a:ab:
c8:f7:74:fa:67:c5:e3:ee:0e:82:9f:8f:6e:d2:f7:
01:1a:0f:8e:cc:11:38:8c:ca:c6:6f:6a:03:89:40:
ae:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:92:2A:9F:41:30:08:B5:0B:5C:2B:6D:69:E4:95:B0:FA:6D:B6:C9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zZIqn0EwCLULXCttaeSVsPpttsk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b0:31:1c:f4:e2:5c:77:6c:2b:02:1c:f0:f5:52:e8:14:2d:ab:
ce:2c:06:95:85:9c:0c:c0:f0:c6:8a:b8:fb:61:76:42:3b:98:
87:18:70:36:e3:0d:b4:4c:e8:e4:15:4d:29:61:b6:9e:b7:7b:
16:74:fc:c1:0b:e4:b5:b7:16:43:6b:c1:5f:e4:c1:ae:c0:35:
e9:fc:e7:5d:d5:5d:4f:04:af:5d:d8:85:f6:a7:32:8b:8e:f9:
2b:df:3b:f7:32:ac:4c:d7:b4:65:3a:4b:2b:94:b4:b5:78:e0:
7d:44:87:24:0b:c8:8d:9c:b7:a1:49:6e:07:a8:c2:07:5e:bb:
b3:b0:78:29:32:db:45:eb:4a:8e:80:21:f6:e0:0a:46:09:ab:
41:df:7a:47:7f:08:72:e9:42:5d:4b:2b:ef:90:ae:bd:cf:14:
08:46:51:30:12:5b:9b:c9:ba:cd:6b:2f:c8:9e:3a:d3:b0:dd:
6d:03:22:28:55:71:b7:47:82:59:b4:d5:72:4b:35:4e:a3:f6:
9d:f0:31:f7:71:2d:a4:aa:4d:dd:e1:21:0c:a1:d2:a8:4b:9c:
be:43:d4:12:4c:88:9c:1a:c1:a4:98:db:6a:91:dc:b2:4f:b2:
c2:cd:f7:b0:90:d4:21:90:30:b9:bc:08:c6:7c:67:19:14:d5:
db:de:68:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org