Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/19dhz3NdMcKgF-HKwwQOOkdrxZ0.roa
File: 19dhz3NdMcKgF-HKwwQOOkdrxZ0.roa (raw, json)
Hash identifier: kW5JU8rqd4LmyvbSw0yxYozrfuCCwBiLiTPpOld/BMs=
Subject key identifier: D7:D7:61:CF:73:5D:31:C2:A0:17:E1:CA:C3:04:0E:3A:47:6B:C5:9D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 12E7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/19dhz3NdMcKgF-HKwwQOOkdrxZ0.roa
Signing time: Fri 01 Sep 2023 08:05:08 +0000
ROA not before: Fri 01 Sep 2023 08:05:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 124.218.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4839 (0x12e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:05:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D7D761CF735D31C2A017E1CAC3040E3A476BC59D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2a:28:6b:0b:fd:6d:bd:1e:f1:f0:82:44:bc:
4a:6c:94:62:7b:7b:76:b6:56:ad:bd:e8:e7:1e:ef:
f7:20:e5:aa:ff:a5:e5:63:10:70:0e:b5:73:38:06:
5b:3b:75:09:58:ab:be:34:d3:e4:fa:71:ed:c8:b2:
15:6e:a9:55:c4:b8:fc:ab:0d:00:d6:72:d2:24:c3:
46:ff:ac:0e:af:9e:3a:66:cc:2c:e3:ac:86:71:2d:
0b:c1:21:ef:7e:88:5f:05:ec:1f:1e:8a:b5:31:80:
24:9b:e7:e9:14:42:20:2f:70:2f:f3:aa:78:01:56:
23:e6:0d:d0:0b:66:c3:76:30:65:70:ba:6e:88:54:
f8:ad:18:50:e4:bb:85:73:ca:5b:11:99:27:45:51:
60:1f:3f:78:61:e9:6f:21:d4:a6:1b:24:9c:18:28:
52:6f:cf:1e:1c:d5:bd:56:26:87:7e:8a:61:ac:70:
aa:04:fa:e7:96:cf:e6:38:93:05:53:3f:50:e3:e8:
62:a1:3d:aa:1d:cf:1b:e5:2d:ca:8f:20:1f:7c:d8:
5d:b6:52:b4:1b:8e:74:89:64:b4:38:b5:7e:a5:d1:
b1:d3:3b:73:de:cf:7c:ff:83:84:e0:e1:22:26:ee:
e2:60:7f:4b:78:6f:ae:f9:a2:fc:18:f6:57:2a:96:
ea:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D7:61:CF:73:5D:31:C2:A0:17:E1:CA:C3:04:0E:3A:47:6B:C5:9D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/19dhz3NdMcKgF-HKwwQOOkdrxZ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.68.0/22
Signature Algorithm: sha256WithRSAEncryption
69:d4:94:8e:99:c9:d9:28:2d:b1:3a:79:2c:98:ba:0c:30:ac:
70:d0:ee:f7:6a:a3:ab:b7:6e:1f:c5:21:db:c6:13:8a:2d:0e:
2f:12:94:d4:46:d1:c9:20:c6:61:c7:f3:c7:a8:2c:72:57:4e:
7e:26:6d:dc:30:39:40:5e:a4:2c:a0:78:44:83:7e:87:42:f4:
f3:7e:58:a7:80:f4:f1:6b:e1:01:17:d7:b9:9e:29:87:1e:ca:
dc:04:f5:f0:27:d5:06:be:e6:b7:d2:8e:c3:d1:56:ac:fd:88:
49:8a:6f:6c:3a:a3:f4:69:71:a5:65:71:1b:f2:71:29:df:8b:
a5:0a:23:38:47:e0:e1:66:b0:1a:14:81:39:9b:ce:b1:ca:3a:
6c:b6:ea:ce:f0:0b:6d:0c:0d:12:7d:3c:98:f5:a3:fc:e0:50:
3c:c1:7c:29:ab:97:46:7f:70:f0:7d:9a:e9:90:78:7b:99:02:
e2:2e:7d:f6:63:cd:bc:08:05:d9:f2:58:3b:e8:9b:76:4c:da:
b1:63:3e:a9:f8:c2:22:ca:48:98:d7:06:c0:4c:b3:3f:41:a8:
5f:d8:72:9d:23:3a:66:82:72:a8:1e:6f:16:d2:bb:78:2e:05:
c3:59:bf:f8:8e:bf:0c:b0:0f:8f:d4:2e:70:73:17:d0:7c:24:
1b:63:ce:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org