Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/zp-TXLyQDUfj5oaZ--ZeBrtVDmA.roa
File: zp-TXLyQDUfj5oaZ--ZeBrtVDmA.roa (raw, json)
Hash identifier: ranY8aAhbX+3ekd0N7O4jmp+VOfg8lZEFCp6w7i86Po=
Subject key identifier: CE:9F:93:5C:BC:90:0D:47:E3:E6:86:99:FB:E6:5E:06:BB:55:0E:60
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1044
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zp-TXLyQDUfj5oaZ--ZeBrtVDmA.roa
Signing time: Tue 16 May 2023 08:35:58 +0000
ROA not before: Tue 16 May 2023 08:35:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131591
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4164 (0x1044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:58 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE9F935CBC900D47E3E68699FBE65E06BB550E60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ef:a3:4d:e9:27:e8:70:a8:01:f8:27:23:21:
55:41:72:d2:08:db:93:07:b4:fc:06:68:1c:8d:dd:
e9:8e:45:d2:5d:54:52:dc:c1:92:e6:dc:31:87:64:
e2:a9:e7:23:68:76:12:39:34:fb:54:80:26:99:57:
06:ed:6c:f6:be:54:ac:36:d2:af:73:b2:87:42:83:
25:38:bb:44:43:fc:af:a0:ff:d8:52:86:fd:6a:8d:
26:80:3e:5a:c0:12:85:d1:c0:21:9c:d1:4b:74:23:
27:07:f5:77:13:d2:35:01:40:b1:bb:cb:36:f0:3b:
01:95:91:6b:6e:96:52:eb:c4:d5:0c:df:06:63:b5:
b6:04:a9:a8:9a:af:b7:1b:f8:80:71:93:3a:2d:65:
ef:45:c2:d1:54:ed:39:25:e5:db:aa:43:1c:de:eb:
8f:30:ef:59:a0:37:3e:a4:dc:39:93:2c:48:1b:c0:
c5:c4:3a:c5:fc:1d:77:62:94:1f:86:c8:56:bb:fd:
30:5e:59:16:ab:bd:73:a0:a7:60:ff:58:9e:78:8f:
2d:3c:e0:c2:6b:96:ca:52:1b:bb:b3:8b:28:5c:c2:
1b:7d:04:61:cb:e3:e7:5e:83:63:7e:49:2d:e2:05:
71:c4:f9:57:f4:61:31:05:fd:53:86:69:3f:5a:29:
7b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9F:93:5C:BC:90:0D:47:E3:E6:86:99:FB:E6:5E:06:BB:55:0E:60
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/zp-TXLyQDUfj5oaZ--ZeBrtVDmA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
29:96:47:47:26:06:f3:48:a4:30:70:81:2f:2d:5b:24:82:3c:
79:4a:67:57:f4:90:0d:68:37:14:7d:d7:99:31:44:00:17:76:
8e:11:37:7e:f0:7b:ce:40:ab:7d:f1:c6:20:ff:a9:e3:be:ab:
b7:7b:cb:2b:b6:8e:ba:1b:e8:47:39:8b:f1:c2:f1:b2:53:3a:
d0:18:97:a9:88:4a:ab:74:15:f9:c4:5f:23:19:4f:f7:d2:06:
39:50:7e:4f:10:86:3b:c9:ae:ed:11:3d:b5:80:30:cb:e6:5c:
af:5e:a3:ee:4f:64:b2:b2:8e:bf:9f:3a:c2:10:dc:af:c9:67:
ef:dd:fe:ff:b8:fa:e2:cb:46:89:d5:80:fc:25:cb:82:15:3b:
96:3b:80:33:c7:63:f6:22:4c:8f:b5:39:2b:f5:bb:39:d8:72:
03:fa:19:a0:b1:fa:ac:ac:2d:98:85:2c:be:1e:68:29:7a:5c:
0b:69:d7:c3:a7:eb:b6:b0:aa:10:34:5b:c3:19:d4:c3:cd:8a:
d0:49:a9:18:ea:c6:93:1c:7e:9f:cd:d6:74:45:89:3c:66:3c:
6a:9b:f1:67:d8:a8:8e:28:ae:d0:68:52:ab:3d:25:98:0c:95:
35:1e:5e:2b:8f:20:ba:88:5d:c5:7d:c3:a9:32:a9:f7:c0:7a:
a9:af:4f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org